Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/djk5lrjPuA4DCOpYIiYr-oA8YwE.roa
File: djk5lrjPuA4DCOpYIiYr-oA8YwE.roa (raw, json)
Hash identifier: xX6raWZsihY6dZ0jqoz7kIw5XWveeaAo8asgWjtfRd4=
Subject key identifier: 76:39:39:96:B8:CF:B8:0E:03:08:EA:58:22:26:2B:FA:80:3C:63:01
Certificate issuer: /CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Certificate serial: 01856F6707F0C4B35AE83CF976284C3322EC
Authority key identifier: 4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/djk5lrjPuA4DCOpYIiYr-oA8YwE.roa
Signing time: Sun 01 Jan 2023 22:15:01 +0000
ROA not before: Sun 01 Jan 2023 22:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39122
IP address blocks: 185.204.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:07:f0:c4:b3:5a:e8:3c:f9:76:28:4c:33:22:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d23e2edb321e1a8a5ce9ee3e2d95aa40f0de8a0
Validity
Not Before: Jan 1 22:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76393996b8cfb80e0308ea5822262bfa803c6301
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:97:12:c2:ee:64:86:1c:2d:55:e5:d0:33:9b:
5d:c8:55:46:1a:62:3f:7f:da:db:e7:cd:d6:5f:52:
e3:67:34:68:2b:dd:6f:d9:8a:91:86:ff:50:c7:a2:
19:83:3f:46:26:ae:8c:08:23:2e:78:eb:8a:a5:c6:
96:8a:73:c6:a5:97:d3:35:35:ca:bb:5e:b8:8f:ce:
11:fb:9e:43:1c:85:52:22:29:81:f9:5c:7f:cc:fd:
08:04:8d:a3:4b:be:ac:56:c3:c8:6d:d9:45:a8:e6:
7d:6c:47:7a:f0:9e:77:63:31:a1:12:4d:53:2f:a4:
3a:21:b4:87:e4:dc:15:fa:53:05:bb:82:c3:f4:cd:
da:64:0f:93:66:aa:e6:02:f4:a0:52:aa:cc:b3:99:
3e:61:a5:48:5c:b7:a2:8a:bd:6d:14:22:8d:b9:dc:
1e:54:86:bd:ae:21:e2:d4:31:63:2d:02:11:58:82:
31:54:1b:1d:3d:cd:46:73:e8:bc:22:2d:73:61:7b:
04:ab:1a:6f:3b:97:21:83:e8:70:f7:d0:9a:f9:ef:
55:38:c2:41:fe:bf:cb:08:19:be:77:c8:74:c1:43:
64:02:f8:fe:0d:32:e8:d7:ea:8c:23:f5:94:e1:80:
a3:ce:52:b1:55:1f:62:80:e6:26:f0:e7:46:17:4e:
a2:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:39:39:96:B8:CF:B8:0E:03:08:EA:58:22:26:2B:FA:80:3C:63:01
X509v3 Authority Key Identifier:
keyid:4D:23:E2:ED:B3:21:E1:A8:A5:CE:9E:E3:E2:D9:5A:A4:0F:0D:E8:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TSPi7bMh4ailzp7j4tlapA8N6KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/djk5lrjPuA4DCOpYIiYr-oA8YwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/e4e07e-15fc-4942-842a-538509f3a789/1/TSPi7bMh4ailzp7j4tlapA8N6KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.136.0/24
Signature Algorithm: sha256WithRSAEncryption
77:3d:65:d3:b3:9e:03:c5:5f:75:79:7e:c9:18:1a:03:1c:2d:
d4:70:e9:35:58:cb:f4:69:ed:e4:3c:85:0a:ac:1d:8a:cf:45:
51:16:ff:df:42:d0:c3:bd:6e:0e:6f:62:c6:7c:1a:8b:5b:b5:
a3:3e:61:6f:e9:1a:72:d7:62:be:0f:4c:b7:6f:4d:65:54:3f:
ba:80:4b:7b:10:d9:71:53:30:47:48:99:90:68:cd:4e:ca:3a:
24:9e:cb:6a:23:a9:24:7f:4a:45:b0:75:f2:e5:bd:e1:b1:1f:
f7:ee:2a:9b:55:3f:8d:1a:68:f3:5b:dc:49:7f:7c:ba:c1:5f:
9d:dd:b7:a9:5f:e6:e8:40:d0:c7:e9:ce:57:87:7b:3c:04:6a:
79:be:94:69:c6:a5:3f:8e:80:b2:52:8e:00:9c:b5:41:c4:70:
55:71:41:3d:14:9d:c0:a2:02:00:dc:18:2f:75:af:a3:83:e7:
27:4f:d7:c0:61:ac:e8:37:b2:ad:69:23:f7:94:cc:0d:32:c2:
63:c9:6f:55:82:a5:00:05:06:ee:51:e6:c8:0b:8d:0b:3c:de:
c6:27:13:de:8d:98:0d:96:1c:c2:fa:c4:84:1a:36:31:bb:c6:
cd:fe:28:ce:d7:2a:c1:bf:df:52:26:a9:0c:e4:19:a2:46:62:
ff:d3:3a:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:30 2024 by rpki-client on console-ams.rpki-client.org