Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/c6756a-1bc0-4938-8015-dce3fa3fbae9/1/_66nZbtZrQB44lcgdTnOhJUKkpY.roa
File: _66nZbtZrQB44lcgdTnOhJUKkpY.roa (raw, json)
Hash identifier: dOGSz77qbPAFLuJ4LqqNknLuRlE9OGlGk6V7vRxKd7s=
Subject key identifier: FF:AE:A7:65:BB:59:AD:00:78:E2:57:20:75:39:CE:84:95:0A:92:96
Certificate issuer: /CN=e3c85c37ad25274c712c24473e078adce732c1dd
Certificate serial: 01856DAF59F7599C40A006F4DBFE2848F85E
Authority key identifier: E3:C8:5C:37:AD:25:27:4C:71:2C:24:47:3E:07:8A:DC:E7:32:C1:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/48hcN60lJ0xxLCRHPgeK3Ocywd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/c6756a-1bc0-4938-8015-dce3fa3fbae9/1/_66nZbtZrQB44lcgdTnOhJUKkpY.roa
Signing time: Sun 01 Jan 2023 14:14:46 +0000
ROA not before: Sun 01 Jan 2023 14:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21277
IP address blocks: 185.34.16.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:af:59:f7:59:9c:40:a0:06:f4:db:fe:28:48:f8:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3c85c37ad25274c712c24473e078adce732c1dd
Validity
Not Before: Jan 1 14:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffaea765bb59ad0078e257207539ce84950a9296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:61:b9:6a:06:84:21:f8:63:22:16:04:24:4f:
5e:a1:dc:f1:40:a9:13:83:8d:f2:69:d9:e9:cd:8e:
b7:22:96:5e:92:0f:13:da:71:7a:2b:4f:05:16:c1:
0b:57:8a:85:ca:d1:80:e5:ac:91:be:4f:22:96:c7:
92:03:55:53:43:f0:67:e1:5d:72:73:9d:bf:a9:ba:
af:cb:68:c0:fa:be:48:fb:42:2c:12:99:6a:9e:47:
b3:89:95:3c:56:b5:18:a4:41:2b:33:55:de:d3:f7:
a1:fb:0b:74:1b:55:54:6c:c9:dc:e3:9b:63:83:49:
38:18:1d:59:83:cb:2f:d1:44:ad:9d:23:f9:10:96:
01:04:19:36:67:9a:97:df:22:4b:13:43:46:73:3f:
ea:58:6f:c9:e0:0f:b3:d9:2b:90:ce:88:f9:02:8f:
da:b4:5f:71:bd:7b:2a:1f:c2:2c:63:58:e7:e4:ca:
a1:44:7d:b1:73:bf:77:6b:6c:63:32:4e:b3:87:08:
81:43:21:a8:66:7d:83:4c:b1:85:ad:72:d1:da:fa:
1b:60:73:4c:3e:7d:12:84:5c:88:e4:c9:b9:dd:8e:
15:4b:8b:9d:3e:13:b0:03:a8:b8:a7:f0:d9:2d:3e:
78:ac:e3:96:bb:b6:2d:0c:df:be:40:27:75:e2:09:
89:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:AE:A7:65:BB:59:AD:00:78:E2:57:20:75:39:CE:84:95:0A:92:96
X509v3 Authority Key Identifier:
keyid:E3:C8:5C:37:AD:25:27:4C:71:2C:24:47:3E:07:8A:DC:E7:32:C1:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/48hcN60lJ0xxLCRHPgeK3Ocywd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c6756a-1bc0-4938-8015-dce3fa3fbae9/1/_66nZbtZrQB44lcgdTnOhJUKkpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/c6756a-1bc0-4938-8015-dce3fa3fbae9/1/48hcN60lJ0xxLCRHPgeK3Ocywd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.16.0/22
Signature Algorithm: sha256WithRSAEncryption
78:65:c8:d8:1f:b9:31:21:a0:74:83:10:a7:1e:ac:fd:8e:4e:
5b:b9:ba:7a:0a:b2:53:df:5d:61:89:e7:c9:f2:e6:e7:cc:3d:
ae:bc:b3:bd:54:0f:71:5b:bd:2d:30:22:87:f6:85:f2:d3:a0:
cb:1e:c2:0c:e6:a3:0d:5d:96:83:5c:61:b7:6b:11:ce:f4:35:
ad:e8:23:e9:b8:59:c1:4f:b4:4d:3a:dd:f9:cf:a8:04:14:67:
f8:71:d9:8c:99:6e:40:f4:0f:3e:67:54:24:fe:03:93:de:6a:
5d:d3:c0:96:a3:43:98:c9:8b:dc:43:ff:2b:e6:c3:78:fd:88:
0d:cd:c8:bf:35:9b:70:6b:90:82:46:47:a3:74:81:6f:a3:70:
59:3a:ff:a6:30:97:0e:e7:88:03:7f:f8:65:45:2d:4b:00:bb:
7f:44:12:57:a9:07:4c:5d:2f:07:a6:ee:a9:e2:39:22:ed:11:
c0:31:20:1a:1b:43:eb:00:ea:7a:91:eb:99:f5:b9:31:b9:b6:
f1:c0:12:e1:34:92:aa:ae:bd:95:ec:b0:3e:bc:46:f9:84:b0:
ee:eb:c9:ad:76:af:78:00:07:fe:c5:60:4d:20:c0:8c:44:98:
d0:a3:81:32:ab:3c:4a:57:63:ce:55:7c:d3:78:50:4e:5e:98:
99:03:7d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:23 2024 by rpki-client on console-ams.rpki-client.org