Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/3R3ds01cUNja_F6zdLU8lMPa4uU.roa
File: 3R3ds01cUNja_F6zdLU8lMPa4uU.roa (raw, json)
Hash identifier: eJLK/6Pcdl3PLXksXNCovs67jA7XJV6JWzFtDFenSQU=
Subject key identifier: DD:1D:DD:B3:4D:5C:50:D8:DA:FC:5E:B3:74:B5:3C:94:C3:DA:E2:E5
Certificate issuer: /CN=a8d534ba3cb424cf5c5e3ba254ba2325080658b0
Certificate serial: 018A4BA86FF1B23F913E368AEBB3727253A1
Authority key identifier: A8:D5:34:BA:3C:B4:24:CF:5C:5E:3B:A2:54:BA:23:25:08:06:58:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNU0ujy0JM9cXjuiVLojJQgGWLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/3R3ds01cUNja_F6zdLU8lMPa4uU.roa
Signing time: Thu 31 Aug 2023 12:54:04 +0000
ROA not before: Thu 31 Aug 2023 12:54:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.171.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4b:a8:6f:f1:b2:3f:91:3e:36:8a:eb:b3:72:72:53:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d534ba3cb424cf5c5e3ba254ba2325080658b0
Validity
Not Before: Aug 31 12:54:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd1dddb34d5c50d8dafc5eb374b53c94c3dae2e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:52:4a:fb:ae:f7:26:64:e8:b1:92:9b:11:d8:
c3:f9:5a:be:4d:3e:6e:bd:8a:ab:91:d5:b0:0f:19:
c9:b3:84:b0:00:8b:39:8f:81:74:a7:e2:5f:85:a0:
a6:87:34:a4:ff:e8:b8:b6:74:ec:93:cd:5e:ec:b3:
43:57:31:b1:04:f9:e1:49:8a:f5:57:6a:8d:db:06:
93:b7:7e:27:a4:81:1f:8f:a5:b9:82:79:74:91:5b:
dd:67:d2:41:3d:2d:69:50:70:d3:c5:7c:52:00:fa:
cb:af:f3:12:a0:db:58:00:9f:9f:6e:ec:02:88:6c:
e5:4e:dd:e2:16:86:4e:a8:47:27:dc:e6:a6:a0:f6:
ec:03:ee:a2:df:d1:12:e3:76:e9:82:72:b1:1d:ad:
60:f3:7d:aa:8c:dd:6b:53:06:68:d6:84:c1:22:9a:
78:db:63:c8:04:a8:ad:b2:cc:3c:b4:0b:eb:da:b9:
41:13:a4:47:40:d9:4d:d9:0e:f2:a8:29:75:74:d6:
28:e6:3d:e0:f0:14:c3:af:dc:4e:05:42:f5:4e:bf:
0c:22:c1:f9:ea:ae:71:83:0e:95:c5:5e:26:dc:d1:
87:68:e2:50:9a:b2:ad:aa:4e:2e:6d:56:82:f5:19:
32:0e:0c:96:80:26:4b:28:d0:e3:30:9a:9a:22:0f:
27:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:1D:DD:B3:4D:5C:50:D8:DA:FC:5E:B3:74:B5:3C:94:C3:DA:E2:E5
X509v3 Authority Key Identifier:
keyid:A8:D5:34:BA:3C:B4:24:CF:5C:5E:3B:A2:54:BA:23:25:08:06:58:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNU0ujy0JM9cXjuiVLojJQgGWLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/3R3ds01cUNja_F6zdLU8lMPa4uU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/qNU0ujy0JM9cXjuiVLojJQgGWLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.161.0/24
Signature Algorithm: sha256WithRSAEncryption
58:aa:93:d6:9d:10:f0:33:d7:71:0f:75:11:f7:4c:d6:74:fb:
a4:92:5e:f9:6b:5f:35:bc:69:28:11:a2:86:f5:86:c4:c9:5e:
f3:c5:94:4d:c4:a8:1b:f9:3d:18:87:de:30:f4:73:15:59:a4:
af:8f:45:67:7e:a4:fa:4e:31:1a:7f:a6:8e:92:a5:9e:27:cf:
65:dc:ab:28:c2:37:23:6c:e8:5e:65:86:66:e8:4a:cc:f6:c7:
a9:41:71:6a:b9:b1:c5:a7:f2:36:fa:5e:e2:db:79:89:a3:f0:
49:86:50:57:c5:59:80:f9:5a:7c:6e:1b:18:ef:b3:eb:c2:31:
4a:3e:8b:c2:bf:c3:36:25:67:2c:02:1f:39:b9:6a:06:a4:a4:
3a:14:95:d9:d8:d0:d4:32:b5:e4:94:76:72:6c:db:80:c2:a5:
21:e6:79:72:22:37:5c:7a:09:12:f7:cd:20:72:bd:68:f2:11:
0f:d0:d8:ef:6d:cc:68:7c:bc:af:9a:09:de:29:d7:8c:6d:9e:
04:23:75:a8:0d:79:2a:2a:db:27:65:d8:75:d8:46:e2:b8:e2:
f3:1e:06:f5:0d:d2:f8:21:83:be:39:fe:00:93:06:0b:5d:65:
39:8a:1d:bb:2e:0f:84:4f:f2:d0:f7:6c:29:be:ac:d6:ea:53:
4f:be:b6:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:11 2024 by rpki-client on console-ams.rpki-client.org