Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/9wce9wiApZUVEzFs8PrCnLcChLk.roa
File: 9wce9wiApZUVEzFs8PrCnLcChLk.roa (raw, json)
Hash identifier: Xo8kCtEIh9EYxPSOx4NUhgX3/4Dy5sq0siCwsNN0Quo=
Subject key identifier: F7:07:1E:F7:08:80:A5:95:15:13:31:6C:F0:FA:C2:9C:B7:02:84:B9
Certificate issuer: /CN=572bc93f1580fc95274d983940f3efaede304ae5
Certificate serial: 0185E4A62BC0F7F4755BE294E8106B41D0AC
Authority key identifier: 57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/9wce9wiApZUVEzFs8PrCnLcChLk.roa
Signing time: Tue 24 Jan 2023 16:39:33 +0000
ROA not before: Tue 24 Jan 2023 16:39:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44092
IP address blocks: 185.244.236.0/24 maxlen: 24
2a13:1580::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 13 Feb 2023 11:22:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:a6:2b:c0:f7:f4:75:5b:e2:94:e8:10:6b:41:d0:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572bc93f1580fc95274d983940f3efaede304ae5
Validity
Not Before: Jan 24 16:39:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f7071ef70880a5951513316cf0fac29cb70284b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f3:2d:5a:5a:f1:f8:95:eb:12:20:ac:8f:a0:
09:0e:9c:dc:ba:1b:9e:7c:c6:f7:f9:11:4f:e8:22:
41:62:9b:46:b7:7d:4e:65:34:99:98:b4:c5:90:ce:
2d:a1:58:4d:99:c6:6f:be:44:57:b2:11:1a:ae:9d:
ad:4e:5f:dc:8e:23:98:76:33:c2:ee:39:ca:77:a4:
43:14:35:3c:08:cc:ea:f9:03:d1:dd:f0:90:bc:7b:
25:85:39:5c:a1:ff:80:6a:d2:9c:7e:d9:85:bb:5a:
5e:21:d8:a5:a3:c4:3c:11:12:b4:e0:4d:a8:ec:50:
ec:68:f3:6b:0d:32:64:e8:85:3c:6d:9a:04:73:6e:
89:d3:72:98:8c:b1:0f:24:74:8b:c2:15:c9:f4:d4:
1a:e6:b3:fb:79:3b:9c:6f:1f:71:e8:bd:ca:c6:f9:
93:c1:4c:cf:00:bb:14:62:40:e1:3e:30:2a:89:56:
15:7e:5b:55:1b:a3:d2:b8:fb:0b:2e:ee:d6:f5:81:
4d:67:ce:ef:05:d6:c0:90:6e:d5:03:1d:11:ee:72:
4a:65:f5:f5:e9:0a:3c:0c:42:ef:6a:40:c5:f1:36:
85:dc:b8:59:7b:6f:fa:e6:ce:f2:5b:54:c1:4d:8d:
a3:11:12:6e:b0:b8:0d:01:ad:79:6d:60:2e:7a:16:
aa:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:07:1E:F7:08:80:A5:95:15:13:31:6C:F0:FA:C2:9C:B7:02:84:B9
X509v3 Authority Key Identifier:
keyid:57:2B:C9:3F:15:80:FC:95:27:4D:98:39:40:F3:EF:AE:DE:30:4A:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VyvJPxWA_JUnTZg5QPPvrt4wSuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/9wce9wiApZUVEzFs8PrCnLcChLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/29f55c-6032-41c2-baa4-1080e865ec6c/1/VyvJPxWA_JUnTZg5QPPvrt4wSuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.236.0/24
IPv6:
2a13:1580::/32
Signature Algorithm: sha256WithRSAEncryption
1c:f9:e7:02:c7:3d:dc:04:e9:cc:50:e7:51:84:57:ff:77:8e:
13:4e:45:d1:12:93:86:0d:f0:f5:94:34:bb:c2:b0:83:79:80:
43:cc:f9:0e:a9:b4:c0:ad:7f:44:fd:17:0e:13:28:69:7a:a2:
05:be:96:39:c2:08:e6:a1:7e:fe:d1:bf:c6:9d:77:cd:70:a0:
27:c9:c3:f8:36:84:ce:a7:a1:5d:e5:76:ee:57:c9:10:b0:12:
87:4c:65:e3:78:64:fc:98:b9:30:b3:e9:ad:3b:a0:1c:8b:5e:
c6:fd:96:de:76:97:44:6c:5d:d8:00:ca:2f:d1:37:33:ca:26:
71:5f:b3:80:00:2c:f5:13:6a:bd:f8:3c:3c:0e:99:49:ac:dd:
bf:58:17:31:60:39:34:07:c5:a8:6a:1c:2e:cc:2f:e5:7b:6c:
cd:4d:f5:91:27:f9:98:50:9f:c6:f0:e5:4e:84:16:62:a1:08:
72:2f:71:19:ff:f8:40:f9:eb:d7:42:fe:b2:c7:1f:7d:39:64:
8a:fe:ed:bd:4f:57:8a:27:63:48:12:fe:a6:4c:55:bd:68:34:
b4:cb:c2:70:12:6c:a5:47:e2:79:c8:16:30:88:38:a3:d6:bc:
a5:c2:6a:8a:ef:de:52:e6:88:5b:f6:da:65:91:d8:b5:59:e9:
b1:35:ed:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org