Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/28dDBXNZbjSmancVGXAe5hXWxXw.roa
File: 28dDBXNZbjSmancVGXAe5hXWxXw.roa (raw, json)
Hash identifier: jlMvkf346ZE/6RcJOEEI6m77By/M8EQhFeR4b39mZcI=
Subject key identifier: DB:C7:43:05:73:59:6E:34:A6:6A:77:15:19:70:1E:E6:15:D6:C5:7C
Certificate issuer: /CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Certificate serial: 01856F7991F6609EDBE088DE86F87A8773E7
Authority key identifier: 16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/28dDBXNZbjSmancVGXAe5hXWxXw.roa
Signing time: Sun 01 Jan 2023 22:35:16 +0000
ROA not before: Sun 01 Jan 2023 22:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15510
IP address blocks: 84.19.112.0/21 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Jul 2023 15:21:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:91:f6:60:9e:db:e0:88:de:86:f8:7a:87:73:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16307d29f5543f21ea3009b9523fe71b8f1369ca
Validity
Not Before: Jan 1 22:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dbc7430573596e34a66a771519701ee615d6c57c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2c:8d:ab:aa:19:79:39:81:d2:75:73:9c:8a:
b7:e2:1b:03:8a:64:4a:8f:3a:70:0e:2b:58:6f:c7:
85:7b:e5:68:f0:1a:a5:f6:31:d3:b0:fd:37:52:8b:
80:f3:be:90:77:19:da:23:21:6d:09:f2:07:e7:fd:
35:0e:f2:2a:69:d7:02:bf:33:bb:12:dd:c7:71:91:
dc:77:dc:dc:78:7c:42:82:66:bf:7d:f0:e3:5d:f2:
5d:63:6f:64:74:46:19:b1:c7:0d:bc:31:de:ee:e9:
a9:f9:fd:09:86:d9:38:4e:b0:03:ab:76:ea:1c:35:
2e:e2:72:91:e6:ec:ef:0f:5f:b0:7e:19:47:9a:9f:
d3:2f:91:7a:44:58:e3:01:68:f5:95:86:d6:87:69:
56:bc:7b:46:6e:62:9e:14:b9:e8:41:25:89:04:d8:
60:79:b4:96:80:a7:b4:ef:cc:96:b6:58:51:b8:70:
b5:81:3f:93:bd:f5:fb:f4:65:ce:30:93:c0:c9:87:
24:ab:00:73:50:59:df:04:00:53:4d:c8:4c:c9:41:
c1:fd:e8:2c:70:d8:f7:db:9a:f1:f1:40:a5:c6:89:
1c:c7:da:45:9b:8d:19:ea:7f:f5:dd:23:29:bf:1f:
aa:65:25:53:f1:03:5a:07:bc:80:d9:63:6a:cf:28:
17:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:C7:43:05:73:59:6E:34:A6:6A:77:15:19:70:1E:E6:15:D6:C5:7C
X509v3 Authority Key Identifier:
keyid:16:30:7D:29:F5:54:3F:21:EA:30:09:B9:52:3F:E7:1B:8F:13:69:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FjB9KfVUPyHqMAm5Uj_nG48Taco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/28dDBXNZbjSmancVGXAe5hXWxXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bf5e70-6665-49de-b9cf-4cfe40f07a6b/1/FjB9KfVUPyHqMAm5Uj_nG48Taco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.19.112.0/21
Signature Algorithm: sha256WithRSAEncryption
96:7b:bb:32:35:de:2d:39:36:d7:1c:2d:ca:80:05:16:6b:4a:
f3:71:17:91:f6:4f:83:0c:3c:8a:e0:3f:86:b9:b0:8d:14:26:
c6:3e:35:32:35:80:01:27:5d:7f:ad:f5:5c:c4:54:63:75:0b:
10:6f:0c:65:07:b3:4a:e0:be:17:29:f4:56:fc:16:38:93:aa:
5b:0b:e9:0f:ed:37:36:fb:d2:c9:bb:12:b4:a9:0b:2b:4d:ad:
10:48:1a:d0:f1:af:1c:e9:8e:7a:1f:c6:d3:57:3e:ca:02:6a:
83:11:4a:9d:d7:1b:bd:c0:75:f6:11:ff:f4:13:8c:65:bd:1f:
d1:76:71:92:97:39:23:5e:44:6b:38:1a:f5:6f:ee:8f:1a:7a:
cc:58:48:3d:d4:b5:21:c9:5a:68:b5:af:ab:a0:06:37:18:74:
24:de:42:f0:72:5d:7a:32:11:00:81:73:62:7a:58:71:fb:5c:
f4:76:50:d3:88:14:6e:65:69:7e:5e:42:76:0b:5c:c5:97:4d:
5a:22:81:e5:f3:cb:31:63:25:3c:d0:f3:f8:c5:71:e3:db:88:
fb:d7:b0:81:b5:77:4b:3a:cf:44:8a:0b:b4:5b:12:40:72:2c:
24:6a:6e:7a:39:f2:1c:44:6e:8b:6f:76:15:22:8c:a5:32:b6:
84:e2:59:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:28 2024 by rpki-client on console-fra.rpki-client.org