Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/AphR_52oXXoD2vRr_k7ydQZ87Jw.roa
File: AphR_52oXXoD2vRr_k7ydQZ87Jw.roa (raw, json)
Hash identifier: dAprb0FdbQhmuIFKLXmwT3BuzWgtk3Zm/wKZYgah1G0=
Subject key identifier: 02:98:51:FF:9D:A8:5D:7A:03:DA:F4:6B:FE:4E:F2:75:06:7C:EC:9C
Certificate issuer: /CN=8ad9281aafefc8375ad8b4b7e604899555952237
Certificate serial: 0185730CAAAB1BFCA757F34174F83EB19BD3
Authority key identifier: 8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/AphR_52oXXoD2vRr_k7ydQZ87Jw.roa
Signing time: Mon 02 Jan 2023 15:14:47 +0000
ROA not before: Mon 02 Jan 2023 15:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57804
IP address blocks: 185.160.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:aa:ab:1b:fc:a7:57:f3:41:74:f8:3e:b1:9b:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8ad9281aafefc8375ad8b4b7e604899555952237
Validity
Not Before: Jan 2 15:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=029851ff9da85d7a03daf46bfe4ef275067cec9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bb:dc:bf:ca:56:eb:91:e1:c6:8e:3d:2b:02:
d8:8a:78:3a:64:7e:23:90:7d:d7:4b:86:57:25:74:
2e:d9:3e:6d:fd:06:7d:c4:08:e5:25:b5:4c:bd:91:
12:69:68:e3:f5:c4:11:7c:9b:34:d0:d9:ac:6b:7b:
43:9c:1b:63:39:94:3b:ba:3b:49:f4:2b:fb:5b:c3:
6f:ec:5b:ea:4c:6c:89:b6:12:e1:c8:88:d7:f6:40:
8b:93:fb:a3:39:e6:ff:29:62:73:bc:7f:36:a5:0c:
2d:b6:8f:fa:f9:f3:fa:34:55:e2:f9:5f:74:e4:f8:
88:61:21:61:c2:e4:9e:9c:cc:00:f3:0e:86:04:9f:
34:00:08:4e:5b:ef:a3:69:5a:ab:d4:a5:9f:16:6a:
19:47:30:10:38:45:ef:c5:a4:1e:d0:1f:52:a2:39:
c6:ec:97:5f:ec:10:5c:cf:1c:1d:69:6d:22:1c:a5:
41:a2:e6:4b:57:57:ee:12:5c:fe:b6:7b:61:39:11:
47:b0:8f:83:b2:15:53:2a:25:93:4d:87:ad:15:d7:
2d:69:fb:f7:0a:59:b9:9e:b0:2c:20:bb:ea:91:80:
0d:7c:be:91:3c:d3:8f:2c:19:65:1b:c3:cf:6c:a1:
5d:16:74:5c:a9:09:93:73:db:cd:00:0f:c3:08:e3:
f6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:98:51:FF:9D:A8:5D:7A:03:DA:F4:6B:FE:4E:F2:75:06:7C:EC:9C
X509v3 Authority Key Identifier:
keyid:8A:D9:28:1A:AF:EF:C8:37:5A:D8:B4:B7:E6:04:89:95:55:95:22:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/itkoGq_vyDda2LS35gSJlVWVIjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/AphR_52oXXoD2vRr_k7ydQZ87Jw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/058509-2fe7-486b-b4ad-8c74f9dd67fc/1/itkoGq_vyDda2LS35gSJlVWVIjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.91.0/24
Signature Algorithm: sha256WithRSAEncryption
85:ba:a2:e0:af:06:9a:08:1d:31:4d:99:b3:a4:8f:c7:de:b5:
e6:8c:3e:49:1d:b5:a8:52:cd:06:6a:10:6d:40:33:e3:e1:b1:
ed:15:07:9f:20:2d:c5:1e:10:3f:6b:4a:bd:9e:10:44:53:af:
a3:d7:3c:13:91:92:a9:a9:07:d0:88:74:cc:67:07:9d:a5:af:
f0:d5:1f:6a:be:8a:4a:d9:77:55:15:1f:2d:34:b9:bf:12:e4:
12:5f:91:69:bc:16:ab:d1:89:a0:71:13:a6:f6:69:22:63:63:
08:87:ed:00:a9:6b:19:4a:44:2c:c3:03:d1:fd:30:90:9a:f2:
97:58:b9:7a:68:f7:aa:1b:f6:29:e3:5b:a0:c3:0f:eb:ba:0c:
5e:b6:d9:f3:85:22:0e:82:14:93:33:36:b1:d5:fb:11:3e:80:
86:65:c6:bb:f0:99:41:7f:8f:57:8b:9c:38:62:e4:6e:80:3a:
13:42:94:2d:5d:d8:39:5a:40:69:bb:ac:cb:9e:b7:5b:43:be:
cb:8c:bc:58:81:9c:94:88:6c:70:69:65:f5:c8:a3:3e:4a:32:
9e:68:9b:7e:5b:d6:4b:7b:fa:cc:22:8c:c4:86:f2:18:dc:4f:
29:19:a6:92:9c:83:d1:80:3c:f2:39:97:6f:83:64:49:e5:a7:
ba:13:8b:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:16 2024 by rpki-client on console-fra.rpki-client.org