Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/DKDofKUBIXlHNsvRnf79rm0gxsU.roa
File: DKDofKUBIXlHNsvRnf79rm0gxsU.roa (raw, json)
Hash identifier: yRLDGUlhNFKFuj3kQN7OMs9eI6oizjbPIyK9gZWci7Y=
Subject key identifier: 0C:A0:E8:7C:A5:01:21:79:47:36:CB:D1:9D:FE:FD:AE:6D:20:C6:C5
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185AAB323649C37559A9B5D27095BF86435
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/DKDofKUBIXlHNsvRnf79rm0gxsU.roa
Signing time: Fri 13 Jan 2023 10:35:44 +0000
ROA not before: Fri 13 Jan 2023 10:35:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200854
IP address blocks: 185.202.164.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 Mar 2023 18:17:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:aa:b3:23:64:9c:37:55:9a:9b:5d:27:09:5b:f8:64:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 13 10:35:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ca0e87ca50121794736cbd19dfefdae6d20c6c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:02:0d:69:fa:54:82:90:4f:fe:2e:65:d4:3a:
16:ee:99:ad:d6:98:8a:75:7a:0f:ec:f4:67:19:2b:
85:fd:5d:92:aa:39:de:ca:5c:97:05:92:5a:17:ed:
89:78:8f:b9:2b:a9:36:a3:f2:28:b9:69:64:ec:6a:
47:a7:79:ce:88:92:6c:0d:e9:94:44:10:95:d2:3e:
b1:81:7a:71:41:70:6b:de:c7:75:d6:4b:9d:e3:ce:
0d:45:97:e3:d4:68:59:9c:f0:9a:64:49:09:6f:5c:
27:d1:ff:6d:95:14:47:79:f8:ba:8b:2b:4a:47:6c:
98:c0:90:1e:f5:d0:9c:d2:5c:1d:fc:d4:ff:ac:61:
d0:64:0b:83:6a:9f:64:69:c2:c6:06:34:06:20:cd:
30:05:65:ed:5c:a9:5d:b9:5e:2d:85:5b:6b:64:b9:
d3:38:72:f1:d3:ba:a4:45:75:47:5c:de:4d:97:f9:
96:1a:16:61:eb:10:0d:9f:a2:07:f5:0e:41:5e:d4:
23:c7:5b:30:b8:7e:63:2d:46:36:85:c7:b0:30:04:
d3:90:2b:d0:c1:4b:30:80:e0:52:6c:d5:85:66:83:
87:5b:11:8d:bd:ec:38:33:d9:fa:d9:cf:a3:2e:13:
57:fd:59:23:a7:8d:ff:12:02:dc:ac:80:80:40:00:
4f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:A0:E8:7C:A5:01:21:79:47:36:CB:D1:9D:FE:FD:AE:6D:20:C6:C5
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/DKDofKUBIXlHNsvRnf79rm0gxsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.164.0/22
Signature Algorithm: sha256WithRSAEncryption
87:05:f3:59:56:90:57:b3:29:f1:a0:bb:61:cd:63:3c:28:68:
ab:f3:3a:78:7d:3d:cb:ef:c0:e2:35:fc:03:92:1c:66:5b:d5:
21:3b:46:ea:c5:c2:74:72:05:92:f4:58:40:b5:77:41:22:22:
14:21:28:11:41:17:23:3c:dd:a6:75:eb:b3:7c:5d:5f:89:69:
70:59:56:24:1d:ec:23:d5:0a:b7:8b:08:4e:67:a8:10:4b:72:
c5:78:02:55:fd:1b:b0:17:ed:d0:70:7a:1c:ac:a7:f9:20:f5:
b7:c2:25:d4:47:69:7e:af:b7:79:ed:08:1b:77:e4:54:10:56:
5d:fc:bb:33:47:f3:a9:75:f7:89:7e:87:b4:8f:eb:5b:af:59:
4b:df:03:6e:45:4d:b3:0f:a7:de:11:53:b3:8e:fd:e6:25:f1:
59:ff:6b:8e:0f:b9:53:cb:c1:58:20:58:a2:4e:2c:09:83:46:
13:fe:b6:36:9c:0c:14:8a:18:d1:16:2e:e5:f2:e0:e0:ce:e6:
10:84:09:b2:c1:1d:f5:17:6c:83:a3:c6:76:c9:37:56:43:5b:
b4:ec:28:f9:8c:54:fc:21:48:86:5c:17:77:63:f0:04:da:54:
97:14:db:3b:bc:8d:e9:2c:44:e6:dc:3c:de:a9:cf:f5:19:fe:
ad:d1:f3:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org