Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/fVz2HFaHg6kIeEadqgp7WuYf74U.roa
File: fVz2HFaHg6kIeEadqgp7WuYf74U.roa (raw, json)
Hash identifier: 3bHWKxEQRCorYhaNy8uvum/lAqww4ZVXBwgTEV3KGec=
Subject key identifier: 7D:5C:F6:1C:56:87:83:A9:08:78:46:9D:AA:0A:7B:5A:E6:1F:EF:85
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 018AF019016D3BC8F75AFF7605D828287075
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/fVz2HFaHg6kIeEadqgp7WuYf74U.roa
Signing time: Mon 02 Oct 2023 11:14:45 +0000
ROA not before: Mon 02 Oct 2023 11:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.126.158.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 10:15:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f0:19:01:6d:3b:c8:f7:5a:ff:76:05:d8:28:28:70:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Oct 2 11:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d5cf61c568783a90878469daa0a7b5ae61fef85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ba:44:89:73:e3:3c:b8:fd:97:89:a1:fd:ed:
85:f2:b1:e2:a7:fc:7e:cd:a8:1a:c4:92:6f:b7:57:
92:82:7d:82:c5:4f:d1:29:8b:94:52:40:56:61:36:
dc:c9:d9:82:e4:b4:d4:63:14:02:27:9f:97:b7:ad:
40:71:cb:a4:1f:61:d8:7d:7f:27:b9:3c:13:7b:ae:
3e:9d:ef:b9:b6:c0:56:26:43:57:12:bb:18:40:1d:
92:bf:c5:cc:ee:37:01:74:0e:ba:fe:e2:91:29:2c:
d0:36:10:55:c4:5f:68:dd:ff:46:3a:3e:51:30:14:
4f:6d:b3:cf:e2:98:98:ca:2f:43:af:b7:c6:94:90:
34:ca:8c:a9:e5:22:25:5e:a3:93:b0:08:1f:c3:40:
8c:59:35:3b:f3:e8:4b:66:2a:dd:60:c7:42:6c:8f:
cc:76:4d:af:a3:b2:8e:a4:1b:74:d7:9a:16:3f:3d:
c4:73:90:c5:fb:5a:7e:0c:dc:67:6d:5b:a4:d7:4c:
c1:b2:c7:d4:4c:13:fd:9b:64:5a:20:7e:0f:81:43:
b2:11:c8:a5:61:14:04:1a:35:92:4e:d5:8c:2f:e7:
90:8b:3d:c5:da:58:ca:b6:a3:f4:08:4d:15:3b:27:
6f:03:6c:36:12:9b:0c:82:ff:08:25:d3:46:9b:20:
9b:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5C:F6:1C:56:87:83:A9:08:78:46:9D:AA:0A:7B:5A:E6:1F:EF:85
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/fVz2HFaHg6kIeEadqgp7WuYf74U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.126.158.0/23
Signature Algorithm: sha256WithRSAEncryption
53:75:c3:fc:bb:f3:da:e1:0d:8a:cb:66:a4:61:39:f9:2e:c9:
61:a3:4f:66:00:39:ca:66:c6:54:3a:d1:e2:ae:10:ef:c6:e5:
69:02:29:92:c0:48:35:33:3f:e7:ca:7a:c3:c7:09:cc:73:d4:
5a:e7:e1:22:a1:1e:1d:d2:1c:63:47:84:a4:6e:7b:44:9b:8b:
8e:ff:e9:c0:ed:d8:4d:be:8b:42:ec:55:2b:c4:78:5a:6e:39:
f7:61:09:b4:c8:c5:6b:40:39:69:b1:93:dc:59:47:97:33:d2:
d6:3e:47:15:5b:c8:0d:9f:29:3a:48:0f:b9:c3:ba:90:12:4f:
63:7b:24:98:00:8f:9f:87:79:19:da:9e:73:eb:ff:e6:ee:b5:
63:7d:a4:01:09:7c:cf:1f:8b:8f:e7:28:d3:cf:8b:53:a8:87:
5d:ca:8d:a5:c2:53:7b:e5:3d:a6:75:46:a5:29:95:01:b3:33:
48:34:cc:03:e5:97:15:8d:03:9e:bb:d1:55:df:18:30:ec:00:
c8:5b:4d:70:9b:e0:38:e9:87:c6:51:64:f0:32:56:32:e7:e6:
d9:fa:8b:7f:a5:b0:a7:60:eb:e7:cf:30:6a:0b:29:21:b2:87:
f4:9d:d3:81:cd:ce:54:17:ae:f4:23:20:87:23:20:77:1e:ed:
3e:ad:f0:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org