Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/X49Fodd2WPRJiW5z9zpc24cXMz4.roa
File: X49Fodd2WPRJiW5z9zpc24cXMz4.roa (raw, json)
Hash identifier: tbG+WGOjEB3LLVVBcdWL7AtViOEyoiAOb0ygjMVo26c=
Subject key identifier: 5F:8F:45:A1:D7:76:58:F4:49:89:6E:73:F7:3A:5C:DB:87:17:33:3E
Certificate issuer: /CN=5dfb074d47b7e0bc891ed06ea8fc67e38ecf50a1
Certificate serial: 018573BA86E2ABF9E5BE73813C10CB2110A3
Authority key identifier: 5D:FB:07:4D:47:B7:E0:BC:89:1E:D0:6E:A8:FC:67:E3:8E:CF:50:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XfsHTUe34LyJHtBuqPxn447PUKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/X49Fodd2WPRJiW5z9zpc24cXMz4.roa
Signing time: Mon 02 Jan 2023 18:24:41 +0000
ROA not before: Mon 02 Jan 2023 18:24:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29037
IP address blocks: 185.9.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:86:e2:ab:f9:e5:be:73:81:3c:10:cb:21:10:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dfb074d47b7e0bc891ed06ea8fc67e38ecf50a1
Validity
Not Before: Jan 2 18:24:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f8f45a1d77658f449896e73f73a5cdb8717333e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:39:fd:d3:2e:c3:68:a3:37:5d:e6:ea:49:66:
d3:6b:a3:ee:29:14:a7:bb:74:f7:f7:4f:73:d7:84:
a1:0a:fb:bd:9d:f1:11:ae:ca:5c:37:5b:28:41:87:
93:0e:2f:d1:2c:71:ba:fd:18:e8:bc:db:e4:d4:e3:
25:be:61:7b:6f:8f:a4:55:e0:4f:01:9b:8c:04:4b:
09:00:37:a8:55:6b:e1:b5:b5:e0:be:ab:6a:07:65:
9b:b7:03:bf:72:81:09:9a:ba:8a:8c:46:90:3d:fb:
c2:03:81:ca:24:35:c0:4c:16:74:1f:85:0e:70:84:
2c:a2:77:63:f1:b9:df:0b:75:45:06:b0:b6:b4:eb:
02:43:92:d8:25:08:4c:5c:c7:64:4c:30:ca:fe:09:
18:27:87:dc:17:88:cb:81:c4:e6:4b:55:f3:05:77:
33:df:6a:fc:f2:5f:88:68:92:04:d1:a5:b9:35:0f:
9d:69:13:60:e1:b1:a5:83:f0:d1:ce:15:07:03:6b:
ae:42:f7:a7:c5:ca:18:b0:d6:81:45:5b:08:5a:e8:
0c:df:f4:c7:8e:67:99:cd:9f:b4:a4:17:e8:db:e7:
95:11:31:fb:8b:7c:08:ae:cb:a5:c8:b7:c4:b2:e6:
e9:c3:36:17:be:aa:0b:f4:e7:f1:4a:a6:bf:53:61:
a2:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8F:45:A1:D7:76:58:F4:49:89:6E:73:F7:3A:5C:DB:87:17:33:3E
X509v3 Authority Key Identifier:
keyid:5D:FB:07:4D:47:B7:E0:BC:89:1E:D0:6E:A8:FC:67:E3:8E:CF:50:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XfsHTUe34LyJHtBuqPxn447PUKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/X49Fodd2WPRJiW5z9zpc24cXMz4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/42fc92-1663-4688-a31d-cf6a63e4efb6/1/XfsHTUe34LyJHtBuqPxn447PUKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.12.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:78:f7:4b:d2:02:88:08:30:af:88:90:08:2c:0f:ea:90:2b:
7f:17:e8:d2:9f:db:7e:47:67:73:74:0f:04:bc:df:e2:0a:a2:
ed:b8:55:ac:e0:c7:44:a9:99:1a:7e:cb:d7:b3:b8:d9:0b:1a:
2c:0e:e8:bc:f5:07:bb:03:0f:46:dc:24:4a:14:74:fb:cf:99:
2a:03:32:81:08:fe:26:e2:4c:4a:06:5c:42:25:ef:30:9e:88:
3c:98:be:a7:72:3a:6a:00:e4:de:37:7d:a0:f0:c6:a9:f2:90:
60:57:ba:d3:81:d1:3f:ca:2d:f2:80:94:43:64:90:c0:db:f0:
a3:54:6c:15:e2:6c:04:98:22:ce:ca:47:aa:07:b7:59:3e:9f:
1b:22:c5:70:68:da:3b:78:87:2e:14:32:15:6b:9b:c4:e8:15:
e6:d2:cc:89:a0:ad:a4:b9:1c:b3:d0:cf:df:58:b0:62:98:3f:
a2:63:9b:0d:8c:90:16:94:5c:2a:5b:18:e6:cf:90:8e:0c:68:
be:8f:62:97:0b:f3:35:27:6d:27:ba:97:25:0d:0a:1f:17:1f:
64:08:6a:c8:9a:53:87:32:0b:ff:2f:03:0e:b0:6f:a6:26:91:
a1:15:68:22:f2:36:c9:d4:a4:cf:6a:52:9b:87:99:f4:73:9c:
ce:fa:b0:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:04 2024 by rpki-client on console-fra.rpki-client.org