Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/F2kDofKm-RI8ryosUyGiSVNygr0.roa
File: F2kDofKm-RI8ryosUyGiSVNygr0.roa (raw, json)
Hash identifier: P+MO0dAtImoSQqh2Csci3qMmN5AV5AEYiSc0ZuiAqEo=
Subject key identifier: 17:69:03:A1:F2:A6:F9:12:3C:AF:2A:2C:53:21:A2:49:53:72:82:BD
Certificate issuer: /CN=e67bc12b3685716d8ef6567e21904194377be1e5
Certificate serial: 01857283586DE35246521127553E5E282A9A
Authority key identifier: E6:7B:C1:2B:36:85:71:6D:8E:F6:56:7E:21:90:41:94:37:7B:E1:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5nvBKzaFcW2O9lZ-IZBBlDd74eU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/F2kDofKm-RI8ryosUyGiSVNygr0.roa
Signing time: Mon 02 Jan 2023 12:44:48 +0000
ROA not before: Mon 02 Jan 2023 12:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207074
IP address blocks: 185.166.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:58:6d:e3:52:46:52:11:27:55:3e:5e:28:2a:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e67bc12b3685716d8ef6567e21904194377be1e5
Validity
Not Before: Jan 2 12:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=176903a1f2a6f9123caf2a2c5321a249537282bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:39:5b:89:c2:73:bd:66:04:a3:6c:53:0e:7c:
5d:32:c0:de:82:b9:65:87:14:48:a7:fe:10:f3:9f:
71:47:80:12:75:a8:6d:7a:55:6c:53:a6:4e:c3:73:
ab:bc:9d:ec:ad:23:b2:51:e7:b6:33:dd:02:e5:7c:
2b:3d:ff:d0:60:e4:d4:f9:5b:1f:9b:b3:4b:1c:0c:
99:0c:e5:8d:e8:f4:ed:2b:0c:57:dc:a9:f5:db:97:
35:a7:24:16:1b:fa:b0:4a:89:cc:0b:6d:75:89:75:
52:35:bc:05:10:ab:17:64:cb:a0:b4:01:34:dc:02:
75:d8:d8:28:ab:f1:11:27:d9:6a:dd:0e:e9:11:dd:
28:6f:a2:e7:3c:29:a2:a5:ef:7d:9d:cc:67:0c:12:
6b:87:ec:04:82:e0:39:6e:d9:32:2b:a3:ad:99:a1:
88:a6:56:ae:8d:85:ce:77:9b:8c:42:dc:49:8b:de:
e2:ed:76:eb:c2:55:35:50:22:e8:d4:0b:fc:4d:d9:
20:d7:9d:29:ee:ff:91:27:fd:94:2b:c2:97:fb:43:
1e:85:68:66:56:69:6f:e4:7f:8d:5a:78:4f:76:6b:
71:de:8a:dc:96:ce:d0:d4:1d:52:c6:76:ce:99:ac:
67:e0:b2:97:ec:a4:ed:e2:24:32:d9:17:bf:67:6b:
4c:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:69:03:A1:F2:A6:F9:12:3C:AF:2A:2C:53:21:A2:49:53:72:82:BD
X509v3 Authority Key Identifier:
keyid:E6:7B:C1:2B:36:85:71:6D:8E:F6:56:7E:21:90:41:94:37:7B:E1:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5nvBKzaFcW2O9lZ-IZBBlDd74eU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/F2kDofKm-RI8ryosUyGiSVNygr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/5nvBKzaFcW2O9lZ-IZBBlDd74eU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.166.148.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:c3:39:c8:e3:41:bb:9a:60:bb:f4:3b:88:70:9f:25:b9:7d:
c5:7d:88:1d:17:fc:0f:d5:59:9d:93:e8:d0:29:15:62:2d:0a:
29:d4:2b:e7:e3:a7:65:6b:ee:22:e7:7f:7e:4d:a1:c8:bb:b5:
99:07:29:c9:a8:96:9d:e5:ea:cf:fc:a8:df:1e:25:7f:0c:7c:
76:c1:82:c6:64:b8:be:ee:ef:26:de:18:3c:db:83:59:88:7b:
ca:f2:0f:22:a8:13:fd:ed:10:2b:1a:29:07:3c:13:04:07:35:
5f:e9:d9:1f:cf:38:25:a8:1c:a4:1e:aa:ff:24:bf:3f:b8:11:
0b:88:77:c9:43:2e:5a:0e:9e:2a:a6:94:44:34:91:58:f0:07:
cb:c3:99:68:eb:76:46:64:d3:38:b2:6c:09:b9:cf:f0:08:be:
90:2e:6e:cb:46:07:1e:6d:25:d8:99:b1:39:3c:10:65:8a:67:
60:c4:14:f6:5d:ee:76:62:62:2d:8c:77:7d:bd:df:eb:b1:bb:
ff:8d:31:4e:9d:43:bb:a1:af:f1:2c:d1:cf:c7:b9:12:e8:f8:
77:81:a0:29:c1:18:44:76:31:a8:a4:76:4a:f9:01:f1:aa:c2:
0d:43:7e:e1:a4:eb:c5:b3:c9:76:f6:3d:3c:d9:0f:46:26:02:
14:9f:da:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:49 2024 by rpki-client on console-ams.rpki-client.org