Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/DQeoC8UgRZ4MZYOX1VPKH3NeIKg.roa
File: DQeoC8UgRZ4MZYOX1VPKH3NeIKg.roa (raw, json)
Hash identifier: REQWpVPaNdcJUdvLefmZvBLqUUsuV+cdijPxB0lo7Ys=
Subject key identifier: 0D:07:A8:0B:C5:20:45:9E:0C:65:83:97:D5:53:CA:1F:73:5E:20:A8
Certificate issuer: /CN=336f6ac82f6f28e3d3e5b66475594d8318e75ab3
Certificate serial: 01856ED4AB7FDFCDC1BC96230F71AC181F62
Authority key identifier: 33:6F:6A:C8:2F:6F:28:E3:D3:E5:B6:64:75:59:4D:83:18:E7:5A:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M29qyC9vKOPT5bZkdVlNgxjnWrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/DQeoC8UgRZ4MZYOX1VPKH3NeIKg.roa
Signing time: Sun 01 Jan 2023 19:35:09 +0000
ROA not before: Sun 01 Jan 2023 19:35:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7155
IP address blocks: 185.109.163.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Mar 2023 20:05:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ab:7f:df:cd:c1:bc:96:23:0f:71:ac:18:1f:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=336f6ac82f6f28e3d3e5b66475594d8318e75ab3
Validity
Not Before: Jan 1 19:35:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d07a80bc520459e0c658397d553ca1f735e20a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c4:83:4b:8d:44:63:9c:9a:bb:52:96:5d:8f:
10:59:8b:47:09:cf:11:2d:b6:f5:ab:b8:57:3c:fa:
6a:f2:e7:f6:54:b5:39:4f:ef:21:4b:99:9d:0d:64:
a6:a8:5c:61:af:40:5e:f4:f9:7e:e4:79:70:f0:d3:
76:8c:35:a1:62:d0:e5:55:ef:4b:9f:c5:70:a9:d1:
b2:bf:d0:d0:87:f4:cf:fe:11:bb:4c:8f:df:ed:9a:
42:66:7d:55:e4:63:1e:e3:fd:db:50:f9:79:10:52:
97:1a:a7:51:c1:c3:2f:db:ad:97:0f:70:fb:05:34:
e4:39:a5:5b:35:cf:8f:0e:6e:af:36:0d:f9:80:58:
20:18:65:50:c6:8e:f8:f9:f2:be:68:02:3b:b0:32:
f7:17:29:55:c5:1d:bc:5f:09:6d:f0:bf:58:b8:dc:
34:52:bb:23:b7:3b:f9:28:f9:e0:52:67:92:8b:ab:
bb:5d:33:55:64:e3:7f:28:66:2e:32:dd:01:9f:9c:
a4:45:a4:96:1f:75:91:4a:d9:4c:27:1f:c9:bf:56:
46:4b:1b:13:13:10:9f:6d:51:a4:3a:29:04:9c:aa:
ce:6b:cf:3f:fe:bf:da:17:e4:48:ab:fb:7b:0e:6b:
a7:3a:d7:a6:82:27:2d:dd:66:5f:aa:72:a7:27:c5:
8e:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:07:A8:0B:C5:20:45:9E:0C:65:83:97:D5:53:CA:1F:73:5E:20:A8
X509v3 Authority Key Identifier:
keyid:33:6F:6A:C8:2F:6F:28:E3:D3:E5:B6:64:75:59:4D:83:18:E7:5A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M29qyC9vKOPT5bZkdVlNgxjnWrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/DQeoC8UgRZ4MZYOX1VPKH3NeIKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/M29qyC9vKOPT5bZkdVlNgxjnWrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.163.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f3:43:c1:12:3f:b4:50:b6:ae:0a:59:69:8f:58:68:ec:71:
df:4f:7b:3a:a3:18:cf:97:2c:af:86:dc:31:71:9e:5b:0b:fa:
2c:b2:d4:8a:ec:7c:5a:0e:1f:44:1c:73:82:78:f6:b2:79:4b:
67:cd:a9:d7:a5:2a:8f:6b:a7:5c:1a:84:d8:b8:fb:22:62:c7:
9b:17:46:89:c1:a1:c4:6b:e6:74:61:ad:54:2a:d0:dc:7b:85:
56:69:af:11:6d:f5:a8:56:6d:ea:29:80:2f:19:c5:de:a9:3a:
b7:12:37:10:66:34:d9:86:0b:7d:ad:08:33:3b:fc:9e:16:5f:
a4:65:c3:f2:79:e5:43:09:63:77:ed:92:97:25:70:5e:59:45:
dd:5e:4a:8e:83:55:b6:cf:d5:52:5f:80:6a:c5:51:9a:34:61:
4f:bc:ce:9a:42:79:98:12:b1:db:6c:53:a7:cf:8a:0a:02:62:
f8:d4:31:66:d4:c6:c8:26:3d:d5:2b:ed:fc:d3:9e:54:11:77:
40:f3:11:20:01:62:0d:cc:b8:af:77:fb:b1:01:c0:de:ac:42:
2e:23:67:45:0a:c0:07:17:4d:81:60:d1:25:d6:be:ff:e8:88:
19:d7:c8:88:81:b5:b4:3a:1e:7f:3b:41:a1:72:6c:5f:ed:17:
90:f4:9b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org