Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/C_Tpap7kxYAX15vB2Eha9Ckbz4c.roa
File: C_Tpap7kxYAX15vB2Eha9Ckbz4c.roa (raw, json)
Hash identifier: 3T1ioT6sJj+2ELX+W5mhGSRBzf/5+auHGpAqRw9ElmU=
Subject key identifier: 0B:F4:E9:6A:9E:E4:C5:80:17:D7:9B:C1:D8:48:5A:F4:29:1B:CF:87
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AC63367C456D9D8471AA61984EE40
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/C_Tpap7kxYAX15vB2Eha9Ckbz4c.roa
Signing time: Mon 02 Jan 2023 17:15:03 +0000
ROA not before: Mon 02 Jan 2023 17:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59631
IP address blocks: 185.83.104.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 21 Mar 2023 14:50:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:c6:33:67:c4:56:d9:d8:47:1a:a6:19:84:ee:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bf4e96a9ee4c58017d79bc1d8485af4291bcf87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:69:65:64:ec:63:07:3d:b5:54:50:1c:6c:30:
e1:cf:24:77:f4:6c:48:05:a2:de:41:a5:38:04:8b:
72:51:cd:65:4a:4a:49:a3:5d:4d:1b:08:f0:b9:5a:
e5:8e:2e:f2:dc:d4:ba:17:9e:b2:48:98:d7:70:0d:
a0:4a:54:21:7b:1c:80:55:fa:32:92:08:97:5f:0a:
4e:45:3f:ea:09:0f:d0:d7:ba:89:5a:16:a3:70:84:
f2:62:1f:e5:d0:12:05:57:cc:ef:a1:75:ff:29:cd:
b7:dd:32:d9:e6:dc:31:8a:33:02:d1:8c:1a:ce:38:
cf:8f:ba:2f:fa:2e:ac:47:43:85:3a:61:60:33:39:
bd:22:e1:93:d1:a5:96:49:9d:31:ad:b8:43:32:79:
76:f7:07:2e:0d:09:ab:f0:2d:6d:54:1a:29:b1:28:
34:33:4b:ca:81:c6:ab:eb:da:11:1c:6b:15:a1:b8:
29:28:a1:18:27:92:4f:a1:38:e5:6f:6e:10:6d:41:
24:9f:d5:dd:ee:55:2d:f5:31:31:8b:0c:dc:4a:04:
b4:10:37:51:e5:6f:bd:4e:56:e8:82:42:55:fa:d6:
21:1e:7b:72:bd:09:37:62:09:fb:29:e2:fd:bc:30:
bc:a0:d2:ec:e3:90:6a:0d:66:92:f6:02:74:56:4f:
d5:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:F4:E9:6A:9E:E4:C5:80:17:D7:9B:C1:D8:48:5A:F4:29:1B:CF:87
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/C_Tpap7kxYAX15vB2Eha9Ckbz4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.104.0/22
Signature Algorithm: sha256WithRSAEncryption
04:fc:06:cb:53:a5:84:2d:b1:0d:a7:81:1a:86:da:11:66:6c:
7c:24:f8:68:73:ae:22:93:3a:75:eb:fb:6b:34:bd:6b:2e:5e:
0d:46:06:f9:e4:26:cf:4c:23:8c:3a:9d:34:c5:0e:b4:03:3f:
aa:60:37:a1:05:eb:4d:4c:0c:54:45:69:f7:72:66:a3:80:7e:
b3:4c:3a:8e:9f:e5:61:72:ae:e5:bc:e8:68:22:09:37:f7:c7:
68:d4:14:39:13:f4:00:42:7b:04:f4:de:b7:0f:c5:af:5b:34:
12:bd:35:e4:aa:9b:2d:e5:a1:0a:f3:f1:3c:bd:4a:f3:a3:f8:
e7:f4:fd:91:0e:cc:46:51:d9:ec:80:af:1f:d4:78:82:0b:8b:
17:9b:d5:13:6e:7e:57:af:c2:e5:22:e6:0d:60:d4:6f:58:8e:
ba:9e:40:59:49:9d:42:c9:36:82:69:3c:4a:84:31:f8:d1:90:
e2:fd:14:2e:1c:c4:ab:93:32:98:3a:eb:87:03:0c:54:97:64:
2c:d7:c1:cd:95:44:51:c2:8e:b0:40:97:02:37:2b:ad:cf:3e:
55:ae:0c:64:09:b0:c7:71:d7:d5:42:04:0c:60:ad:cb:17:c5:
cb:28:a2:5b:db:3e:e2:a5:cf:2e:f5:05:36:03:1f:8b:90:f7:
4d:cf:1a:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org