Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/aMlsYjKoYbg9TjfxXIpp4B3Ngdg.roa
File: aMlsYjKoYbg9TjfxXIpp4B3Ngdg.roa (raw, json)
Hash identifier: adoSZ8PGjC+5KOnVgZHxG2OdtwVaLVP7ds+uiFuw3lg=
Subject key identifier: 68:C9:6C:62:32:A8:61:B8:3D:4E:37:F1:5C:8A:69:E0:1D:CD:81:D8
Certificate issuer: /CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Certificate serial: 018CC6B7AE6030735C2EACB60308028A6D0D
Authority key identifier: 38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/aMlsYjKoYbg9TjfxXIpp4B3Ngdg.roa
Signing time: Mon 01 Jan 2024 20:29:35 +0000
ROA not before: Mon 01 Jan 2024 20:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61423
IP address blocks: 185.202.132.0/24 maxlen: 24
2a0a:d6c0:9::/48 maxlen: 48
2a0a:d6c0:208::/45 maxlen: 45
2a0a:d6c0:4::/48 maxlen: 48
2a0a:d6c0:efef::/48 maxlen: 48
2a0a:d6c0:efff::/48 maxlen: 48
2a0a:d6c0:208::/48 maxlen: 48
2a0a:d6c0:8::/48 maxlen: 48
2a0a:d6c0:3::/48 maxlen: 48
2a0a:d6c0:eff3::/48 maxlen: 48
2a0a:d6c0:13::/48 maxlen: 48
2a0a:d6c0:11::/48 maxlen: 48
2a0a:d6c0:eff1::/48 maxlen: 48
2a0a:d6c0:7::/48 maxlen: 48
2a0a:d6c0:eff2::/48 maxlen: 48
2a0a:d6c0:2::/48 maxlen: 48
2a0a:d6c0:5::/48 maxlen: 48
2a0a:d6c0::/48 maxlen: 48
2a0a:d6c0:10::/48 maxlen: 48
2a0a:d6c0:eff0::/48 maxlen: 48
2a0a:d6c0:6::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 01 Feb 2024 11:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b7:ae:60:30:73:5c:2e:ac:b6:03:08:02:8a:6d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=387d6df7eb7542e0333aeedd14adff8f51f8cbd8
Validity
Not Before: Jan 1 20:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=68c96c6232a861b83d4e37f15c8a69e01dcd81d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:65:15:5c:b2:15:c6:69:f5:19:a5:ba:99:4e:
c7:d1:3d:2b:77:06:ae:88:a0:b2:9b:59:5b:cc:52:
80:04:3c:3b:d2:b6:23:60:09:08:86:15:28:72:5a:
e7:9f:63:a0:57:8b:1a:2d:69:a9:69:90:a3:90:93:
cc:0d:cc:04:17:46:ef:bf:67:07:c2:c0:99:09:e4:
7a:de:3b:2e:e9:ec:bb:c0:28:4f:ef:a2:d3:29:bd:
d1:86:c1:5c:a9:f7:4c:5c:c4:f8:a7:c7:77:90:a8:
83:c7:8d:2c:f3:61:42:33:1e:2b:4f:d0:31:99:bc:
71:12:96:b6:c1:ad:38:06:5c:c5:5d:fd:85:08:a2:
47:94:2c:36:3f:0a:6c:28:46:86:81:1c:69:2f:01:
f4:dd:cc:08:5a:a1:56:34:52:4c:ff:fe:da:10:9c:
7b:1c:81:08:96:57:8a:aa:31:bc:bc:ea:5e:29:f2:
e7:98:d3:70:27:5c:a2:51:85:15:66:27:e1:05:be:
a3:16:54:67:05:b7:f6:5b:83:90:da:c9:95:c4:7d:
fc:4a:07:f3:af:67:84:e7:42:c0:90:19:8e:63:9f:
18:f5:99:f1:4a:43:d8:95:77:91:30:21:01:f7:06:
e0:5b:92:c0:fd:d4:18:4b:c2:13:18:65:1c:37:0f:
15:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C9:6C:62:32:A8:61:B8:3D:4E:37:F1:5C:8A:69:E0:1D:CD:81:D8
X509v3 Authority Key Identifier:
keyid:38:7D:6D:F7:EB:75:42:E0:33:3A:EE:DD:14:AD:FF:8F:51:F8:CB:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OH1t9-t1QuAzOu7dFK3_j1H4y9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/aMlsYjKoYbg9TjfxXIpp4B3Ngdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/d4a89c-54b2-445b-bb7c-609a48b2b14d/1/OH1t9-t1QuAzOu7dFK3_j1H4y9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.132.0/24
IPv6:
2a0a:d6c0::/48
2a0a:d6c0:2::-2a0a:d6c0:9:ffff:ffff:ffff:ffff:ffff
2a0a:d6c0:10::/47
2a0a:d6c0:13::/48
2a0a:d6c0:208::/45
2a0a:d6c0:efef::-2a0a:d6c0:eff3:ffff:ffff:ffff:ffff:ffff
2a0a:d6c0:efff::/48
Signature Algorithm: sha256WithRSAEncryption
a9:50:a6:45:5e:2c:b6:49:12:55:e5:b0:9e:ed:53:45:39:97:
1e:1d:2a:e4:b8:37:2f:1b:7e:a7:54:5f:cd:b2:06:a8:d9:39:
e1:41:81:85:29:99:b1:6e:33:39:58:57:22:c5:f6:18:cd:f8:
51:72:19:5a:ea:00:d8:37:85:19:a5:46:8f:c2:3c:d0:a9:85:
0f:d0:1c:09:e1:1e:ad:3e:4d:0a:b2:c4:d3:d8:4f:4f:52:e0:
74:25:fc:d8:bd:37:cb:df:54:46:24:0d:52:a6:c4:5f:38:88:
5c:24:32:97:f2:77:64:04:88:87:53:d3:10:60:c2:1e:32:37:
55:70:fa:30:17:fc:39:38:91:dc:b9:51:73:14:9d:ac:98:9c:
f2:b7:f8:34:e4:a3:43:c5:9b:6c:f0:01:0d:f6:f2:a4:ae:98:
f4:d3:7c:ad:99:e3:a1:b1:e4:ea:dd:81:f3:e8:b8:0c:0d:48:
1a:6e:a0:8a:e6:75:d1:91:db:8e:c6:44:4a:c9:22:82:d9:8b:
eb:64:4f:70:34:e6:d0:15:11:40:ca:b2:ed:b6:54:75:42:85:
d5:d8:99:7b:26:87:60:1f:5b:c0:f6:d0:d0:19:6c:ed:4e:42:
3b:0b:33:fd:f9:f9:ef:04:1c:2e:66:31:fb:17:60:38:d4:da:
9a:ee:55:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:53 2024 by rpki-client on console-ams.rpki-client.org