Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/eAmW0lLKZVNmpizXra_4jcmHjfY.roa
File: eAmW0lLKZVNmpizXra_4jcmHjfY.roa (raw, json)
Hash identifier: emuKLLCqj4fkHq981m4ppRLuf4mrszIFA/S0HxhwkUA=
Subject key identifier: 78:09:96:D2:52:CA:65:53:66:A6:2C:D7:AD:AF:F8:8D:C9:87:8D:F6
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737ABCDD1481E6B7694110CAAFF40513
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/eAmW0lLKZVNmpizXra_4jcmHjfY.roa
Signing time: Mon 02 Jan 2023 17:15:01 +0000
ROA not before: Mon 02 Jan 2023 17:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39744
IP address blocks: 185.216.168.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:bc:dd:14:81:e6:b7:69:41:10:ca:af:f4:05:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=780996d252ca655366a62cd7adaff88dc9878df6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:98:2f:e5:d9:7d:ae:14:5d:da:c6:91:02:c2:
68:5c:e6:b1:2b:93:5b:4d:13:a4:7d:9e:61:84:cc:
51:3b:6c:4c:24:09:c0:9b:8a:53:ac:c1:a2:cd:c0:
e4:58:11:df:42:62:59:4f:d0:92:d4:fc:1a:cc:96:
9c:20:c1:9d:b6:b7:11:47:65:2e:0c:b8:60:a9:bf:
f1:48:3b:8b:9d:21:fd:3d:b4:79:a2:08:2f:61:2e:
c1:b9:de:7f:f5:89:50:40:84:68:4a:e6:f5:f0:cf:
8e:c1:6d:2c:fb:85:d5:09:bb:52:08:78:37:c4:ca:
3f:8f:0e:16:73:0b:8f:ba:5d:c9:94:9a:cb:69:bc:
83:a0:71:7d:13:5b:29:35:fd:de:ff:35:64:a3:3c:
fd:31:ce:8b:72:8e:01:4b:41:55:fb:b6:87:40:a0:
f4:02:63:57:e5:0c:3d:05:e1:5d:f3:23:e8:e5:df:
d7:21:26:d5:ec:2e:3b:8d:3e:93:0f:16:9c:31:93:
a0:fa:13:4f:41:04:af:73:ac:37:3c:7c:13:63:a0:
db:0b:78:7c:b6:da:f0:a5:7f:84:f3:2f:ff:fa:c3:
cf:79:34:84:4c:2c:4f:a4:10:02:a8:2e:fd:5c:68:
da:09:26:49:55:c8:d4:c0:78:ae:0c:12:bc:af:36:
18:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:09:96:D2:52:CA:65:53:66:A6:2C:D7:AD:AF:F8:8D:C9:87:8D:F6
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/eAmW0lLKZVNmpizXra_4jcmHjfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.168.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:4f:81:f6:75:a7:63:a1:82:d6:63:f0:e2:eb:13:92:d7:9c:
c7:94:3a:55:87:bd:94:53:41:08:4a:8e:a2:b8:a0:af:d5:af:
32:1b:c7:18:d4:3b:1a:e7:f1:ef:28:04:c8:a2:5d:23:09:ec:
01:3b:5a:a7:e7:17:4b:1e:82:49:19:22:ae:03:4c:99:23:1e:
89:a5:fb:96:24:9c:06:4f:e1:26:35:dd:f4:2a:c5:ad:ac:56:
ab:6d:dd:08:ab:cf:d4:17:67:02:8a:be:53:57:66:dd:e6:06:
41:67:77:7f:d8:cc:ec:55:3f:3f:1f:63:9c:b2:5b:f6:d1:9a:
2a:80:d2:59:95:e2:a1:74:de:78:27:64:68:60:21:6c:7b:32:
e2:85:a8:eb:b8:2e:bc:90:e3:c2:7d:55:d7:c2:87:3b:ea:fd:
5c:8d:88:ca:21:07:4b:28:e5:32:51:13:d2:e3:38:f6:13:03:
b5:cc:de:91:d4:fc:91:5e:4a:ee:ff:31:95:a2:2b:b6:f2:3d:
34:1f:96:e1:dd:7c:0c:9a:78:67:f1:e4:16:16:96:e5:2d:f2:
06:7c:2e:f5:62:ba:1d:e1:a5:3c:30:5f:5a:2c:fa:32:91:f0:
1c:bf:83:8a:36:ef:0a:06:76:56:3a:e8:00:49:cb:cd:4a:95:
54:30:08:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org