Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/aJdIYRVnfPBchuEJAqOD-wGXcY8.roa
File: aJdIYRVnfPBchuEJAqOD-wGXcY8.roa (raw, json)
Hash identifier: wO6XcpwG0W0cw9sDB4n2nVusCs04Wtu1HJ09/gkeXDw=
Subject key identifier: 68:97:48:61:15:67:7C:F0:5C:86:E1:09:02:A3:83:FB:01:97:71:8F
Certificate issuer: /CN=49f26233f5bb4226c2a7a7b9003008d19e34785b
Certificate serial: 0185729F0339456C82D79C1C5E7CD8779DD6
Authority key identifier: 49:F2:62:33:F5:BB:42:26:C2:A7:A7:B9:00:30:08:D1:9E:34:78:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfJiM_W7QibCp6e5ADAI0Z40eFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/aJdIYRVnfPBchuEJAqOD-wGXcY8.roa
Signing time: Mon 02 Jan 2023 13:15:01 +0000
ROA not before: Mon 02 Jan 2023 13:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64482
IP address blocks: 185.216.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9f:03:39:45:6c:82:d7:9c:1c:5e:7c:d8:77:9d:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f26233f5bb4226c2a7a7b9003008d19e34785b
Validity
Not Before: Jan 2 13:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6897486115677cf05c86e10902a383fb0197718f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:42:b2:3a:ad:51:5f:c9:b5:8d:3b:76:7b:eb:
8a:f5:08:d5:fd:c0:ec:e5:75:4d:0a:a7:bb:fe:3e:
e6:f3:ac:be:45:18:8c:8d:30:a2:79:9e:c5:09:1f:
1d:09:c5:6b:df:90:3b:b9:9a:40:18:45:69:8d:fb:
73:b4:e6:22:87:48:c6:56:56:00:ce:da:2d:b5:a2:
cc:fb:98:aa:8a:be:0e:d7:d9:2e:4b:31:6c:dc:d1:
22:9b:1f:82:ce:19:1c:36:b3:a1:e6:be:2f:43:fa:
a3:79:17:2b:bc:d1:09:de:94:a9:34:cb:fd:bf:75:
79:34:99:1b:74:6d:64:99:1d:62:16:29:31:9a:dc:
57:89:fd:18:1f:b0:1a:5d:e8:f4:d6:d3:b9:6f:aa:
1a:d5:83:8f:91:8f:46:10:dc:06:9e:64:74:7d:57:
5a:46:fc:20:4f:98:d4:48:02:06:e3:eb:7f:f3:5d:
e1:06:f8:7e:99:88:4e:52:71:1f:96:eb:ad:e5:38:
97:8c:be:5e:52:02:3c:1d:1f:a5:b9:cc:b3:ae:11:
48:d3:b5:1c:b0:a0:cc:95:1b:1c:37:0e:8e:d9:69:
c7:18:f1:cf:66:37:df:a2:29:5d:c9:2a:42:83:c6:
43:e4:18:57:8d:89:80:14:c8:f4:82:1b:3b:d2:f9:
04:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:97:48:61:15:67:7C:F0:5C:86:E1:09:02:A3:83:FB:01:97:71:8F
X509v3 Authority Key Identifier:
keyid:49:F2:62:33:F5:BB:42:26:C2:A7:A7:B9:00:30:08:D1:9E:34:78:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfJiM_W7QibCp6e5ADAI0Z40eFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/aJdIYRVnfPBchuEJAqOD-wGXcY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/8fdf6d-cba6-4494-9028-577e9935bd75/1/SfJiM_W7QibCp6e5ADAI0Z40eFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.10.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:16:28:6b:a4:d4:79:6c:4a:f5:de:59:7c:c8:e1:72:0a:d8:
5f:b2:60:51:84:bc:6e:0a:97:8c:b0:a7:03:2e:f4:03:b4:80:
d5:7c:c3:e9:98:e5:91:ae:e3:5e:19:f6:23:85:e9:8d:b8:c4:
62:18:24:8e:24:7d:25:84:d8:23:c7:a8:44:80:23:3d:60:98:
84:c2:61:1c:1d:cd:16:c3:7d:bf:07:48:75:30:03:60:33:eb:
73:7e:5a:c6:19:49:1e:19:1f:e8:9f:c9:df:b1:59:96:9c:64:
9c:1f:cd:1f:8a:b9:f0:3d:19:d5:3b:06:11:13:e4:17:6d:8e:
c7:de:8d:a5:fa:71:2f:ef:eb:01:71:d3:e0:ef:65:0a:87:a5:
a8:37:02:23:ee:83:58:b3:c0:f2:8b:85:fa:1f:4a:ab:22:74:
97:2d:f1:bb:85:3d:15:2e:d0:4e:d4:f7:fa:82:98:78:c9:23:
c8:eb:5d:26:af:3c:0f:2a:a9:b8:52:1b:76:d7:67:98:c6:39:
34:e4:a0:73:2a:cf:ea:9e:c0:fb:ec:d4:1c:e0:82:da:f9:96:
e4:bf:f1:a3:92:b6:25:a3:ea:b8:8b:bf:cb:40:ab:75:77:42:
67:61:95:2a:0a:4e:29:d8:08:79:03:8e:34:7d:0b:1a:cd:22:
b1:64:6d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:28 2024 by rpki-client on console-ams.rpki-client.org