Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/CXRFZN6qb0QIHRQFSbDyytu_Y7g.roa
File: CXRFZN6qb0QIHRQFSbDyytu_Y7g.roa (raw, json)
Hash identifier: juZDU05B+yenBqMIwmc6VxmBTAlzFL5zlhxYyhbdL60=
Subject key identifier: 09:74:45:64:DE:AA:6F:44:08:1D:14:05:49:B0:F2:CA:DB:BF:63:B8
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 018CC86F3633D2DD98657D6CF72F48430B00
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/CXRFZN6qb0QIHRQFSbDyytu_Y7g.roa
Signing time: Tue 02 Jan 2024 04:29:40 +0000
ROA not before: Tue 02 Jan 2024 04:29:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48412
IP address blocks: 185.126.156.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Mar 2024 06:39:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:36:33:d2:dd:98:65:7d:6c:f7:2f:48:43:0b:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 2 04:29:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09744564deaa6f44081d140549b0f2cadbbf63b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:74:de:c3:ec:ac:01:68:ad:29:93:d7:a5:c2:
30:f5:38:73:f9:5a:a0:64:cb:b8:64:de:06:f4:c5:
98:76:ba:a8:27:24:73:b3:9d:d2:1c:91:89:ef:28:
b2:02:31:40:7b:7f:60:05:4c:33:8a:26:0f:70:9a:
1d:ac:b9:a2:f8:24:a5:55:13:be:f6:46:8e:1a:7f:
03:ac:a2:e4:28:81:21:91:12:3c:ec:7c:99:52:30:
41:41:17:2f:32:ea:7d:5d:4a:05:08:93:d9:3a:c8:
60:a0:c7:50:c2:1c:56:5f:b9:35:96:b8:19:7a:3e:
c0:8f:77:99:ee:1e:78:50:db:08:13:4b:be:3b:ff:
58:c1:0f:53:b5:a9:4d:cc:8b:23:f3:12:4b:26:8a:
60:1c:96:2c:50:0d:96:48:cd:9f:2d:af:4d:73:f1:
76:58:d5:27:13:36:8e:03:32:36:60:1e:da:38:12:
05:3b:69:96:6f:fd:f5:3b:4b:2e:ad:d9:e4:e6:f0:
40:7b:e6:8f:f6:d7:f0:cb:b3:a8:e9:5b:7a:fd:f3:
90:49:5a:42:39:fd:54:60:eb:7b:84:13:83:d2:b3:
01:0d:25:b1:af:28:f5:6c:43:73:05:24:8e:1a:79:
84:0b:d2:de:6b:2b:09:39:0e:1f:48:53:f4:ac:cd:
47:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:74:45:64:DE:AA:6F:44:08:1D:14:05:49:B0:F2:CA:DB:BF:63:B8
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/CXRFZN6qb0QIHRQFSbDyytu_Y7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.156.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:8f:3e:51:1c:c2:cf:cd:45:00:71:91:fe:36:a1:7e:d0:84:
0b:01:40:06:d0:98:ce:fe:6b:68:1a:a7:3e:4c:cf:69:0a:b4:
37:c5:08:e6:23:64:20:c4:a2:59:ae:a6:df:4c:8e:9d:c7:e3:
18:9f:39:24:47:03:58:09:5c:88:9c:2c:5d:b4:6b:d1:bc:60:
21:0a:45:ee:c5:f7:f0:87:63:fe:22:31:c8:4f:ce:d7:50:a9:
25:ac:cf:68:d0:7c:ad:a5:7e:92:3d:c8:a0:77:f1:df:9b:48:
70:ca:88:20:b3:53:fd:07:4a:03:12:64:01:e2:d6:84:77:ae:
04:82:81:d1:30:e0:09:b7:66:2e:56:83:a7:fa:7a:b6:58:bf:
83:d2:5b:35:31:6a:5c:fb:bf:e7:53:f3:90:79:16:82:7b:cc:
69:f0:f7:79:6c:18:de:fd:0f:18:8a:78:a6:28:7e:3e:8f:9a:
a8:ef:d2:1b:17:be:c4:ae:d7:b2:a5:3c:6a:d1:94:56:5a:7d:
89:aa:d1:86:ea:a8:71:16:9b:b9:dc:97:49:cc:a9:24:83:33:
6d:fa:c6:ae:de:1f:f3:f5:ba:66:cb:31:27:1b:9d:0c:3a:2a:
db:78:43:20:7b:d1:62:da:71:37:12:a5:23:0d:3a:bf:03:4e:
24:c9:80:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org