Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/F9slqxHydo3gkzILN1aTgT_Mdhc.roa
File: F9slqxHydo3gkzILN1aTgT_Mdhc.roa (raw, json)
Hash identifier: nd3bZlQLGWjBEu0QnlDRN/utacxwSn7H7X3cjYS7EAU=
Subject key identifier: 17:DB:25:AB:11:F2:76:8D:E0:93:32:0B:37:56:93:81:3F:CC:76:17
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 018968DDB663CFE7C4872E7320F21D1F793A
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/F9slqxHydo3gkzILN1aTgT_Mdhc.roa
Signing time: Tue 18 Jul 2023 11:58:27 +0000
ROA not before: Tue 18 Jul 2023 11:58:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203050
IP address blocks: 85.202.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:68:dd:b6:63:cf:e7:c4:87:2e:73:20:f2:1d:1f:79:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jul 18 11:58:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=17db25ab11f2768de093320b375693813fcc7617
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:9f:b0:47:8a:d3:ea:90:58:aa:d9:8d:91:97:
27:94:17:4c:6f:09:a8:60:bf:e9:46:bd:9c:ea:43:
dd:88:b2:bd:9e:70:17:9c:bc:cf:6c:71:0d:96:a7:
be:9c:2b:1f:c2:7c:0b:1d:43:20:f6:28:0f:97:d7:
2f:ea:c0:29:d4:22:8b:6c:e7:a0:5b:3c:b8:9c:ae:
7a:3f:0a:43:3b:ef:5b:6e:d0:05:42:ea:d5:59:96:
6b:87:fb:d2:fb:12:ed:b5:31:cf:eb:94:7b:af:f3:
9a:d4:ad:e0:5a:09:7f:cc:62:14:c1:ae:58:38:70:
e0:3b:78:2d:fe:c2:09:d8:68:ea:51:0d:49:d7:ff:
35:1a:a8:ef:91:e8:7d:4d:02:22:08:8a:a7:81:11:
16:ed:81:b5:84:b1:01:cd:d8:50:21:ab:ca:b7:83:
d4:d1:2e:04:1e:15:9b:72:6d:d3:6f:8c:50:f5:fe:
83:8c:88:02:0b:c0:ef:8c:30:28:65:45:42:7e:fb:
b1:cb:db:89:d9:f5:d8:be:66:62:07:ae:cb:b0:36:
96:19:18:3a:dd:1f:63:d4:6f:c1:2f:e2:e5:59:07:
a9:36:53:17:d5:20:f0:96:96:7f:4f:3c:8b:9c:50:
bb:3a:a6:d9:e2:2a:9b:c4:2d:35:47:10:91:42:1c:
b1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:DB:25:AB:11:F2:76:8D:E0:93:32:0B:37:56:93:81:3F:CC:76:17
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/F9slqxHydo3gkzILN1aTgT_Mdhc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.58.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:bf:62:19:f5:41:ea:60:94:54:d9:49:27:15:1b:dc:f5:b2:
42:21:55:68:08:1e:72:fa:11:07:35:23:09:4f:43:26:52:64:
b2:94:9e:2d:1c:8e:74:51:5d:3c:f8:66:19:b8:10:9e:31:f7:
f7:e0:d6:63:cb:c6:72:44:15:5f:25:b2:d5:50:06:97:be:7e:
c2:eb:08:fc:e4:a7:28:8a:f5:71:b0:13:e8:ad:f2:60:ce:47:
20:f4:85:66:b7:e5:59:69:95:d6:27:c1:3a:17:59:95:e0:e6:
6c:6b:86:7b:bb:a2:cc:ed:a8:ac:4d:1d:17:f7:b5:75:85:ed:
e0:83:cd:89:67:e1:41:d3:97:16:be:23:10:2f:c8:34:d9:be:
f4:fa:ce:f1:9a:99:b8:34:41:e7:d3:61:03:9e:b8:f6:83:0d:
0a:c7:3e:7d:47:40:79:49:3e:03:3c:12:d0:bd:a2:16:25:fd:
da:3c:c1:13:af:44:bb:34:87:20:70:df:d1:77:55:5c:15:5c:
92:4c:f0:cd:93:4e:1e:0c:c9:d7:25:63:f5:63:30:cd:d0:ec:
de:db:74:29:ca:07:07:41:07:d2:5a:ba:8f:63:7b:78:d7:7c:
e6:02:66:a7:3e:f2:cd:a6:f2:b3:6a:13:ca:99:cd:f5:6a:ea:
20:7a:32:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org