Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/2Js6fh3p2PE6goTb3eSMdrjK99U.roa
File: 2Js6fh3p2PE6goTb3eSMdrjK99U.roa (raw, json)
Hash identifier: n93oNwdWoUTh8PpiRWi0yHga81tJ7xnDauR9cv4SRjI=
Subject key identifier: D8:9B:3A:7E:1D:E9:D8:F1:3A:82:84:DB:DD:E4:8C:76:B8:CA:F7:D5
Certificate issuer: /CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615
Certificate serial: 0186758E2DED736F609B45E9C36BF3ED809C
Authority key identifier: BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/2Js6fh3p2PE6goTb3eSMdrjK99U.roa
Signing time: Tue 21 Feb 2023 19:58:17 +0000
ROA not before: Tue 21 Feb 2023 19:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.109.96.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 08:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:8e:2d:ed:73:6f:60:9b:45:e9:c3:6b:f3:ed:80:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd8f9c03e757f3db514ca38d15ada451fa2e9615
Validity
Not Before: Feb 21 19:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d89b3a7e1de9d8f13a8284dbdde48c76b8caf7d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c5:d8:ba:8e:07:cd:1e:1f:da:3f:36:74:11:
77:e4:fa:c5:9c:59:b5:9b:45:83:fe:6a:08:ed:5a:
78:f7:d1:2d:73:b1:cc:25:fa:96:6c:93:9d:ef:39:
26:35:50:3c:c5:5c:69:d0:e4:87:b4:15:ab:8c:41:
a1:de:23:63:6b:41:18:5f:7b:2b:1f:29:45:0f:ae:
6a:12:3c:c1:98:f3:31:70:fa:3c:ea:56:b3:e2:0b:
ce:84:2f:3f:80:fc:82:41:99:76:dc:43:53:42:dc:
22:56:33:91:78:7b:99:f7:89:bc:f2:d4:5a:9d:2e:
76:b6:52:9f:d1:3f:d4:6c:07:b2:48:24:77:41:ab:
eb:fc:8a:eb:97:dc:5c:09:cf:dc:c5:5a:98:52:3e:
a4:3a:5e:de:de:84:42:73:a8:b6:4d:c8:5a:10:0c:
74:8b:e6:08:e4:08:01:f1:bb:89:8f:aa:38:ed:fa:
a1:96:e1:5f:47:a2:da:ec:5d:34:3c:42:63:cf:f3:
60:d2:00:c5:25:3e:00:16:1d:d4:f7:10:be:75:5b:
d5:c9:bc:3e:8a:d8:1e:86:47:36:9c:5f:a4:86:dd:
9d:e5:19:aa:07:d9:64:92:4e:22:bb:ac:db:d7:12:
4d:01:c8:df:d0:ce:aa:38:f9:7c:d3:13:e1:c7:4e:
9c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:9B:3A:7E:1D:E9:D8:F1:3A:82:84:DB:DD:E4:8C:76:B8:CA:F7:D5
X509v3 Authority Key Identifier:
keyid:BD:8F:9C:03:E7:57:F3:DB:51:4C:A3:8D:15:AD:A4:51:FA:2E:96:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vY-cA-dX89tRTKONFa2kUfoulhU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/2Js6fh3p2PE6goTb3eSMdrjK99U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b83e47-bc04-492d-9a07-ecdd8174007a/1/vY-cA-dX89tRTKONFa2kUfoulhU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.96.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:f1:13:c7:fa:dd:60:02:52:1f:2b:ea:4a:a0:a1:81:ad:29:
47:47:c9:e5:9c:04:2e:2a:fc:5a:6a:64:59:43:0a:91:35:60:
3b:41:ba:c4:00:30:27:a7:15:3c:dc:1a:c0:40:0e:40:13:2e:
7d:f6:21:18:b2:f5:eb:8b:3f:ce:f6:80:54:b3:4d:8f:a4:e9:
e4:c2:98:90:b4:5c:b3:e6:0e:bc:29:ca:d7:cc:43:8c:aa:23:
9f:8f:dc:db:bf:7f:2c:9e:41:a0:02:24:ef:e9:a2:1c:65:3e:
60:78:91:1c:3d:6b:7e:bb:86:90:4f:04:4f:50:9e:31:13:25:
ea:c8:bb:90:c4:f8:75:7a:4d:93:76:44:86:24:04:04:a7:53:
67:30:70:4c:6a:c5:df:8d:2f:d8:4b:00:aa:2a:45:3d:24:4a:
b4:50:48:94:15:84:d6:0b:41:a6:c5:62:16:cc:08:d0:2f:2a:
d7:f2:19:26:80:21:09:3e:21:0f:3a:6f:ae:94:00:c0:4d:0c:
22:65:1d:4d:45:01:b1:cb:8f:6b:0e:69:1a:ec:c3:09:96:57:
1e:82:85:d6:50:86:1d:3d:70:3f:01:ba:02:03:b5:bf:36:7a:
1f:1a:a6:80:4e:3d:91:2f:44:78:97:6e:95:93:04:7c:5b:c1:
18:2a:dc:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:09 2024 by rpki-client on console-ams.rpki-client.org