Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/RpMeSlz-gpSF_-eDfYMWSM7BbN8.roa
File: RpMeSlz-gpSF_-eDfYMWSM7BbN8.roa (raw, json)
Hash identifier: IHY8YmX3ff+lo5TNOJDEqAE9ctGT3bPbw4qzfqSUVDU=
Subject key identifier: 46:93:1E:4A:5C:FE:82:94:85:FF:E7:83:7D:83:16:48:CE:C1:6C:DF
Certificate issuer: /CN=a0dbd5d1f86dd9dd66606a14d31d64cb0eaac83b
Certificate serial: 0188990D577D982A25DD4B30F0506055BF04
Authority key identifier: A0:DB:D5:D1:F8:6D:D9:DD:66:60:6A:14:D3:1D:64:CB:0E:AA:C8:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oNvV0fht2d1mYGoU0x1kyw6qyDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/RpMeSlz-gpSF_-eDfYMWSM7BbN8.roa
Signing time: Thu 08 Jun 2023 03:29:28 +0000
ROA not before: Thu 08 Jun 2023 03:29:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.200.210.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:99:0d:57:7d:98:2a:25:dd:4b:30:f0:50:60:55:bf:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0dbd5d1f86dd9dd66606a14d31d64cb0eaac83b
Validity
Not Before: Jun 8 03:29:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46931e4a5cfe829485ffe7837d831648cec16cdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a8:ed:43:d6:42:e9:e8:01:43:37:30:60:3d:
ea:dc:67:80:8c:f8:99:66:b6:f7:49:55:f2:a3:67:
b3:13:a7:fc:63:12:41:4f:49:67:68:b2:7f:5f:ee:
10:21:81:89:aa:42:81:5a:cc:e1:e6:1e:ee:80:45:
41:a5:70:0c:f0:d1:ed:f0:85:21:b7:5f:37:e8:51:
c6:2e:87:44:0e:d6:ed:a8:4b:6c:13:ff:3a:e4:b9:
47:68:3a:44:b9:0f:9a:90:75:3e:c5:10:76:cf:0f:
f3:86:33:df:e8:df:80:1c:b4:b5:35:48:af:64:71:
44:85:31:b5:68:1b:66:ba:9b:7f:f9:fb:2f:86:5d:
91:86:bf:82:77:20:68:62:55:0c:1a:5b:ac:24:21:
e6:37:40:13:e7:45:2a:57:86:bc:7d:6a:6f:cb:69:
40:8c:6e:8c:ba:37:0b:48:9d:6a:ca:3d:0b:a8:8a:
e7:4a:05:8d:d2:e4:e1:c3:2e:75:59:1b:e6:41:a9:
a2:d9:47:72:76:f6:2c:d3:ef:bb:0b:4a:67:e4:c7:
a3:33:6b:f6:9a:c1:c2:b8:29:45:e3:34:8c:0e:da:
2e:d7:09:15:8b:7d:91:86:71:85:d4:28:12:7d:ac:
58:63:2e:28:9f:47:3d:4f:48:d2:b9:9e:97:14:fb:
f2:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:93:1E:4A:5C:FE:82:94:85:FF:E7:83:7D:83:16:48:CE:C1:6C:DF
X509v3 Authority Key Identifier:
keyid:A0:DB:D5:D1:F8:6D:D9:DD:66:60:6A:14:D3:1D:64:CB:0E:AA:C8:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oNvV0fht2d1mYGoU0x1kyw6qyDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/RpMeSlz-gpSF_-eDfYMWSM7BbN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/1d4cfc-8e5c-457c-9620-135c91ec199e/1/oNvV0fht2d1mYGoU0x1kyw6qyDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.210.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:3a:d9:d2:2f:c0:ba:7d:75:cd:ac:8f:07:ac:08:9f:eb:0e:
ed:82:18:d9:8e:5e:ab:9b:85:3c:d6:99:5e:30:6d:bc:ea:7c:
c6:78:42:a9:44:c4:e9:f5:36:f6:19:ca:3e:b9:79:d4:8a:d4:
47:13:b1:93:fd:7c:52:ce:96:3e:64:e6:f3:aa:c9:6c:cc:2b:
68:97:00:bb:df:bb:c6:d2:bf:45:63:eb:d7:65:86:72:a6:8a:
10:20:b1:22:e1:34:d1:20:f3:3f:d3:94:c2:b6:e9:a7:26:74:
54:23:6d:13:ff:5b:8f:c5:16:df:2c:76:ae:86:05:9b:f3:ba:
82:73:17:2a:41:80:56:b7:19:a3:d4:a1:ad:ed:86:ef:3e:07:
e5:e0:60:a5:6e:f4:e5:60:9b:32:2c:f0:e7:f7:ac:49:26:42:
7f:a0:43:bd:63:86:bb:24:4d:14:2d:3d:21:f1:a7:0c:be:b9:
79:71:93:ac:5f:e4:89:77:45:ae:f8:fa:06:56:f9:1d:38:8c:
74:a5:fd:c5:89:ef:10:17:a5:92:7f:67:d0:01:44:64:54:7a:
5e:62:fc:b4:1c:99:77:49:c2:38:76:75:02:9f:2e:83:5d:e9:
a1:bc:13:b2:de:13:60:f1:24:49:9f:16:49:87:51:12:8a:04:
58:c7:1c:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:17:07 2024 by rpki-client on console-ams.rpki-client.org