Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/5caab7-0eb0-429f-a7b0-e7d4551c19ab/1/AomaesjC5ALjQ_grOW96t00Ek80.roa
File: AomaesjC5ALjQ_grOW96t00Ek80.roa (raw, json)
Hash identifier: G7lY89dGc3RU/V6pLQOEHN8YIRA7a1dIiEa60B8Qybk=
Subject key identifier: 02:89:9A:7A:C8:C2:E4:02:E3:43:F8:2B:39:6F:7A:B7:4D:04:93:CD
Certificate issuer: /CN=20f0c4ad1c4b0c536ed18723c8a95a348d28bf65
Certificate serial: 018C3017494E344D93110EF68B6004CBE157
Authority key identifier: 20:F0:C4:AD:1C:4B:0C:53:6E:D1:87:23:C8:A9:5A:34:8D:28:BF:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IPDErRxLDFNu0YcjyKlaNI0ov2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/5caab7-0eb0-429f-a7b0-e7d4551c19ab/1/AomaesjC5ALjQ_grOW96t00Ek80.roa
Signing time: Sun 03 Dec 2023 14:31:21 +0000
ROA not before: Sun 03 Dec 2023 14:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59689
IP address blocks: 185.3.128.0/22 maxlen: 24
2a02:5cc0::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:30:17:49:4e:34:4d:93:11:0e:f6:8b:60:04:cb:e1:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20f0c4ad1c4b0c536ed18723c8a95a348d28bf65
Validity
Not Before: Dec 3 14:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=02899a7ac8c2e402e343f82b396f7ab74d0493cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:25:e9:f5:89:d2:71:c0:42:2f:71:3c:66:0c:
e5:d5:00:19:c6:7c:d3:5c:46:05:b3:83:14:73:ae:
bf:4f:f6:f2:81:49:e7:30:6a:37:57:af:16:b8:c2:
f7:4a:56:53:fe:48:8e:3c:14:41:07:2c:80:98:10:
61:88:b2:56:cd:e0:62:6a:5a:ba:86:7f:5b:42:7e:
17:e7:8e:b9:6b:85:d3:cf:16:e9:60:f4:02:4e:5a:
f2:db:31:71:8e:eb:dc:f5:d2:b3:7b:20:95:29:c4:
a0:c0:b0:0d:75:bf:e0:6c:11:02:20:d5:07:1f:26:
19:0c:fd:6e:77:90:8c:62:33:6b:45:78:7c:1c:ea:
62:0b:05:a9:9e:39:87:2a:f5:16:66:da:13:9f:11:
8b:ff:15:29:56:66:ef:cc:a2:b4:24:d5:c7:ef:7f:
f8:7f:08:24:ff:25:77:b8:98:8a:57:43:78:5f:36:
97:73:b8:a5:47:dd:99:9c:6c:b8:f5:ed:df:d6:c8:
6b:33:2f:db:64:f1:c7:98:6e:24:c5:b2:77:aa:0d:
7a:d8:32:e1:94:ce:3b:62:1b:f1:b1:c4:8c:0d:40:
c7:73:10:42:86:50:0d:ad:1c:c9:34:11:c3:18:f6:
63:d9:10:45:51:d0:77:49:a8:b2:fd:d2:f3:9e:e0:
f4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:89:9A:7A:C8:C2:E4:02:E3:43:F8:2B:39:6F:7A:B7:4D:04:93:CD
X509v3 Authority Key Identifier:
keyid:20:F0:C4:AD:1C:4B:0C:53:6E:D1:87:23:C8:A9:5A:34:8D:28:BF:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IPDErRxLDFNu0YcjyKlaNI0ov2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/5caab7-0eb0-429f-a7b0-e7d4551c19ab/1/AomaesjC5ALjQ_grOW96t00Ek80.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/5caab7-0eb0-429f-a7b0-e7d4551c19ab/1/IPDErRxLDFNu0YcjyKlaNI0ov2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.3.128.0/22
IPv6:
2a02:5cc0::/32
Signature Algorithm: sha256WithRSAEncryption
3d:47:6a:4b:bc:36:de:8c:a3:2d:67:37:22:23:9f:96:c4:5d:
15:39:bc:6f:28:8e:4d:0c:81:20:aa:63:8e:57:73:bc:7c:e6:
cd:ac:ca:0f:29:b5:ed:7b:45:0e:b7:f1:2a:09:fa:00:e8:68:
97:e7:36:fa:ea:6a:7e:8c:ce:c0:a4:60:09:d2:9a:49:4f:1f:
bb:1c:4e:46:9f:2b:37:f3:ef:31:1c:1f:9b:15:29:bc:d8:84:
66:3c:62:79:eb:9a:68:f9:d4:f4:4a:93:55:cf:80:fc:13:73:
7e:11:3f:a6:04:84:da:f9:52:30:ef:9b:89:27:56:03:59:b1:
92:72:ff:4a:0f:fa:e1:e5:88:2b:62:be:fc:45:6a:38:61:f6:
e4:71:3d:6c:b3:59:34:e3:67:33:eb:95:8e:0e:e9:da:d7:0d:
82:75:61:45:9f:42:b3:db:39:82:54:fb:9e:4e:ea:bf:02:b8:
16:84:ea:ce:57:5f:7c:4f:69:23:4e:39:5b:17:09:6f:d0:74:
e6:c8:cc:7b:2b:16:8d:29:5f:71:dc:e3:5b:e2:ec:2a:1c:da:
87:fc:34:6e:56:07:83:7d:de:62:49:e3:89:de:09:69:33:9f:
14:c9:65:6b:97:1a:58:3f:88:05:e4:66:38:cb:70:ce:2f:83:
d5:ce:79:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:46 2024 by rpki-client on console-fra.rpki-client.org