Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/3kcbLJRX8SnHzRhUqmSmKiC-dEw.roa
File: 3kcbLJRX8SnHzRhUqmSmKiC-dEw.roa (raw, json)
Hash identifier: 5PpD5720UzaLKDBQevMox9twnMsv7wcGl2qjgtH9Acc=
Subject key identifier: DE:47:1B:2C:94:57:F1:29:C7:CD:18:54:AA:64:A6:2A:20:BE:74:4C
Certificate issuer: /CN=1e514098a5a9736cda4303e0495e94652390aa91
Certificate serial: 018708A1644031056AD393B1A636AE12B8CC
Authority key identifier: 1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/3kcbLJRX8SnHzRhUqmSmKiC-dEw.roa
Signing time: Wed 22 Mar 2023 09:23:27 +0000
ROA not before: Wed 22 Mar 2023 09:23:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60068
IP address blocks: 185.207.164.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:08:a1:64:40:31:05:6a:d3:93:b1:a6:36:ae:12:b8:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e514098a5a9736cda4303e0495e94652390aa91
Validity
Not Before: Mar 22 09:23:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de471b2c9457f129c7cd1854aa64a62a20be744c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:46:16:ae:68:66:d4:0f:01:e7:68:74:4f:a5:
91:14:3f:20:92:b1:e4:ed:9a:44:5a:96:9a:e6:6c:
34:9d:0f:a1:48:13:87:2b:c8:4e:3d:ba:88:cd:89:
e7:5a:eb:9f:26:cb:ee:a8:a8:2c:0e:e4:9f:8b:12:
95:60:6a:7e:35:38:e2:6a:41:cc:e8:f2:b6:e7:a1:
c5:2e:31:f6:57:5b:0e:5e:2a:f0:02:8e:45:20:c0:
ed:fe:0e:86:75:d9:a2:10:09:86:45:8f:9d:52:dc:
e4:cb:c8:2a:d6:20:3d:bb:6c:e3:63:8a:f2:e6:01:
82:b9:d8:89:0f:b3:d6:b7:ac:af:1f:ec:de:2a:fc:
6f:f4:c4:ab:9b:da:6a:f5:19:11:17:b1:ac:5c:d8:
ea:da:a1:e9:6c:d4:13:c6:d8:bf:b2:d5:8a:3e:dd:
6f:2c:c9:36:7c:e8:40:0e:6f:c7:5d:c6:6e:5b:47:
16:5e:c4:06:6b:59:b1:83:de:62:db:25:64:1d:81:
81:48:db:7e:eb:37:06:af:73:06:8f:1c:14:d8:66:
78:f1:4d:d0:5d:1d:fd:91:6d:2b:50:fc:b3:20:fd:
7e:a5:c3:9c:11:58:d2:a7:6f:59:62:36:a6:c1:37:
d2:d9:de:c5:e5:b5:e7:15:db:5e:ff:f7:b5:a0:55:
9a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:47:1B:2C:94:57:F1:29:C7:CD:18:54:AA:64:A6:2A:20:BE:74:4C
X509v3 Authority Key Identifier:
keyid:1E:51:40:98:A5:A9:73:6C:DA:43:03:E0:49:5E:94:65:23:90:AA:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlFAmKWpc2zaQwPgSV6UZSOQqpE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/3kcbLJRX8SnHzRhUqmSmKiC-dEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/35dfcb-d92d-48fe-9dad-854381686c7b/1/HlFAmKWpc2zaQwPgSV6UZSOQqpE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:f4:14:da:45:b5:f5:00:6b:bd:ae:2a:12:74:ac:27:ee:d7:
ad:c3:20:d2:88:f8:65:d2:a1:46:c3:1a:45:a1:6a:cf:ef:61:
81:f7:27:1e:8d:0f:a8:69:b5:7b:77:02:b7:e9:c2:30:49:9e:
6f:64:0c:ed:cb:59:e8:1e:79:29:cb:e6:16:6c:99:2c:60:d5:
2c:29:b6:3c:b3:a0:44:e0:3b:7b:51:fa:b5:53:8c:5d:5a:75:
89:fe:ff:1f:8b:98:85:b6:81:e8:9b:6e:88:45:b0:e4:65:c6:
f6:bf:15:64:6f:3c:59:cb:ed:35:f8:36:ff:0a:e9:a0:53:5a:
7b:07:c0:0e:d7:38:56:48:95:79:ad:95:9d:94:87:ae:d6:ab:
76:07:9f:cf:62:d6:66:af:b3:10:64:0c:e8:4d:3d:e7:eb:42:
6a:d2:b4:76:fd:a9:e1:77:7e:3a:34:41:d9:0b:73:6e:c2:82:
b7:98:ac:ec:19:62:42:2f:ef:b3:f8:c1:0c:30:82:5c:68:60:
a0:7c:ac:40:76:4b:c0:04:59:72:59:a0:4a:d3:88:03:89:07:
8d:7f:24:a8:22:03:bc:e6:5f:82:ad:25:16:ae:41:f2:9d:13:
eb:e1:c5:b5:aa:c4:5a:e3:28:c4:e3:da:60:5f:9e:90:3d:4b:
26:0c:3e:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:38:25 2024 by rpki-client on console-fra.rpki-client.org