Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/dBY0RvVKRMNEtuthBd9IZa6zB4w.roa
File: dBY0RvVKRMNEtuthBd9IZa6zB4w.roa (raw, json)
Hash identifier: 2GQAZ5fYJvwu/aZ9ilWVnAlThW9wmKdXct5xRfPNdPU=
Subject key identifier: 74:16:34:46:F5:4A:44:C3:44:B6:EB:61:05:DF:48:65:AE:B3:07:8C
Certificate issuer: /CN=ce704858b643266f7c7107721c98f2ba93dd5265
Certificate serial: 018570D547D022863E0DAD281375DB1665BE
Authority key identifier: CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/dBY0RvVKRMNEtuthBd9IZa6zB4w.roa
Signing time: Mon 02 Jan 2023 04:55:03 +0000
ROA not before: Mon 02 Jan 2023 04:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200840
IP address blocks: 185.200.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:47:d0:22:86:3e:0d:ad:28:13:75:db:16:65:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce704858b643266f7c7107721c98f2ba93dd5265
Validity
Not Before: Jan 2 04:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74163446f54a44c344b6eb6105df4865aeb3078c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1f:0d:71:a4:7c:a9:a2:11:f1:1f:4b:6b:5b:
4f:23:7d:5a:e9:72:ef:f4:ca:0c:c6:99:e2:4a:8e:
2d:bc:50:66:14:2d:ad:3e:99:04:52:97:5a:de:39:
3e:13:f2:58:82:f3:65:b4:c9:67:04:ab:dc:6e:b2:
a5:34:60:c8:b6:d3:6d:5c:c0:8e:a9:18:29:b5:63:
78:f3:bd:aa:f9:49:78:6d:11:3b:8a:50:66:dc:61:
d0:83:d6:dd:2f:a8:f5:f7:13:2b:59:01:57:3d:54:
d8:23:fe:74:7e:5a:9a:cf:5f:a3:b0:ca:1f:29:58:
08:86:46:12:a4:50:35:bb:d4:91:a5:9a:0a:69:51:
2d:4e:89:62:36:55:4c:38:80:d8:b5:43:8a:77:01:
ca:62:2f:14:2a:92:e5:5b:72:32:3c:27:23:f7:42:
b8:5c:91:40:66:1a:27:c6:83:ca:72:1c:df:50:9d:
2f:56:86:c3:26:af:27:d4:eb:c3:14:9c:5a:fc:49:
fa:c4:ad:56:70:5a:79:f1:7d:1f:ed:17:e9:eb:45:
b3:fa:8d:c6:0e:7d:5c:c9:30:cf:d4:eb:f5:dd:40:
bb:cb:75:d7:ae:60:49:c2:7b:f8:fe:cb:bb:2c:ff:
b8:5a:fd:9d:a7:9d:e6:75:cf:90:ca:60:41:0a:b2:
c7:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:16:34:46:F5:4A:44:C3:44:B6:EB:61:05:DF:48:65:AE:B3:07:8C
X509v3 Authority Key Identifier:
keyid:CE:70:48:58:B6:43:26:6F:7C:71:07:72:1C:98:F2:BA:93:DD:52:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/znBIWLZDJm98cQdyHJjyupPdUmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/dBY0RvVKRMNEtuthBd9IZa6zB4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/027aae-4922-42a9-a4c9-38f80d6961ec/1/znBIWLZDJm98cQdyHJjyupPdUmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.14.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:bb:3a:8c:2f:b0:90:62:69:24:8a:5a:9e:40:ef:e1:04:bb:
5c:8e:f4:c2:13:f6:67:55:f6:78:a8:2b:c2:1e:b3:d4:0e:0c:
12:86:03:a0:0f:64:37:5a:53:5f:47:82:85:4a:83:ad:df:f5:
de:fe:55:d2:24:4f:d3:fe:63:74:91:d6:0a:3b:7a:6b:f9:42:
73:02:a4:55:43:fc:b6:f9:da:01:44:4a:4c:f1:f9:d6:08:d2:
3e:10:30:64:eb:b9:84:f5:f1:26:8b:68:36:a8:c1:03:62:6d:
c1:ee:a6:1f:86:27:55:ed:c2:a6:2b:15:f7:26:4a:b6:38:ae:
25:d7:33:63:57:64:e7:2c:c1:2a:3c:c8:ca:c9:6b:f0:19:f2:
98:39:9b:ec:52:36:2f:3e:9e:1f:21:60:f9:04:90:99:e5:0c:
11:3f:12:44:9d:16:87:6d:9b:63:1a:0e:67:33:74:5e:a3:20:
95:54:c4:fc:0a:82:4b:63:fb:d2:76:da:16:9d:bf:b2:f4:0a:
09:71:04:86:1a:a9:ba:b6:eb:eb:a3:00:82:c4:e7:c9:1a:ba:
f3:cb:3c:8f:7a:0f:5f:2a:23:9d:2d:e2:34:6e:91:55:e5:35:
bf:df:e3:d9:96:96:08:4d:28:30:3c:2c:c8:fc:7d:e5:12:ee:
f1:03:41:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:43 2024 by rpki-client on console-ams.rpki-client.org