Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/D1RdSkM9TUNfKh7tDrnj2hFP33k.roa
File: D1RdSkM9TUNfKh7tDrnj2hFP33k.roa (raw, json)
Hash identifier: hxbNNYEfh8uTTyPzhQtdu0aP4z4m8uV2TbPfuPUq1wc=
Subject key identifier: 0F:54:5D:4A:43:3D:4D:43:5F:2A:1E:ED:0E:B9:E3:DA:11:4F:DF:79
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 0188ACB04526448450F264B17F9878C34102
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/D1RdSkM9TUNfKh7tDrnj2hFP33k.roa
Signing time: Sun 11 Jun 2023 23:00:13 +0000
ROA not before: Sun 11 Jun 2023 23:00:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 185.199.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 12 Jun 2023 13:24:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:ac:b0:45:26:44:84:50:f2:64:b1:7f:98:78:c3:41:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Jun 11 23:00:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f545d4a433d4d435f2a1eed0eb9e3da114fdf79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:ce:0e:ac:5c:b8:f7:df:6e:1b:8d:97:26:ad:
c9:69:b1:47:3a:67:b4:d3:8d:43:b1:b2:6a:43:c9:
4b:e9:5e:4a:a5:01:57:bd:58:4e:2a:d3:31:8b:f8:
34:b2:30:b1:a5:e5:80:6a:cd:3d:41:d1:ec:37:5f:
7c:c5:42:1e:ee:15:1c:a2:85:2a:e3:e6:c9:92:81:
b9:63:a4:ca:12:79:59:da:48:26:f4:f3:59:69:ad:
76:5d:50:61:79:be:89:d8:d5:5b:15:78:6d:df:4a:
3a:7c:33:f6:11:ea:ce:c7:89:24:ee:3d:cd:14:82:
62:a4:3d:2d:0c:d7:84:af:3a:3d:a8:a8:21:30:b0:
b8:64:4e:62:49:e6:ec:b5:70:fe:05:35:94:43:1c:
0e:2a:20:f9:c5:35:77:d5:e6:63:8e:bf:aa:f5:31:
78:cd:0f:33:aa:4f:6e:a3:bf:7d:16:5e:1f:c6:6d:
42:c2:5d:17:a6:59:6c:16:51:80:7a:e1:8c:f6:d9:
38:35:56:cd:cf:5a:09:5a:d3:be:72:42:04:0f:4b:
ca:84:97:d4:43:cd:b6:87:ce:9e:4f:11:72:8e:52:
aa:bb:a3:a0:52:24:4d:80:d2:cf:0b:fe:65:ac:9d:
df:34:e4:78:a9:73:a2:1c:30:db:04:20:8b:fc:c6:
b2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:54:5D:4A:43:3D:4D:43:5F:2A:1E:ED:0E:B9:E3:DA:11:4F:DF:79
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/D1RdSkM9TUNfKh7tDrnj2hFP33k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:18:da:b4:a6:3b:54:36:ac:6d:f1:9b:64:11:25:b7:6b:6d:
b8:21:2b:02:ea:6f:e8:01:af:f4:4f:09:6c:3a:3a:92:52:f1:
40:6a:6a:b8:4b:ec:a7:f1:c8:da:92:aa:13:bd:f5:47:ba:d3:
9f:ce:67:fd:4b:24:3b:6c:a8:46:62:7c:8f:f4:4a:80:a3:1a:
08:93:10:5e:23:03:4f:c1:ee:57:fb:a7:42:54:49:22:8c:79:
9d:1c:c1:57:4a:52:57:a9:4b:6c:f6:1f:5c:47:13:9b:a0:ce:
53:92:d6:11:30:b4:0a:f8:cb:fd:20:a9:00:27:95:ca:6d:0d:
c4:95:6a:3c:f8:f8:14:f7:03:ee:cf:06:ed:69:fc:ed:cb:5a:
67:72:79:9e:0d:a9:69:a6:db:1e:fb:f8:c7:ae:29:74:82:9b:
fb:92:1d:d2:e4:3d:bf:5b:42:89:e0:c6:30:ee:77:f0:d8:eb:
9a:42:30:68:93:c1:07:ae:d3:e9:a4:f2:c7:90:90:1a:33:ac:
70:2a:b7:f2:b3:0e:7a:53:6b:5c:c9:3f:d6:0b:d2:52:bc:59:
78:d3:91:82:4c:ea:3d:f2:3e:13:42:23:d8:1e:fa:82:66:f4:
8a:52:ec:ef:74:c9:98:99:66:68:6b:af:15:a4:90:eb:2b:47:
97:a3:43:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:33 2024 by rpki-client on console-ams.rpki-client.org