Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/Y5CpW5sS3Gy5HXysKgMxLVh4qaM.roa
File: Y5CpW5sS3Gy5HXysKgMxLVh4qaM.roa (raw, json)
Hash identifier: ULljvgsHghIIAFuiKn/M/OYuoOD+xS/tae/xRRSpj7U=
Subject key identifier: 63:90:A9:5B:9B:12:DC:6C:B9:1D:7C:AC:2A:03:31:2D:58:78:A9:A3
Certificate issuer: /CN=80df0cbdd5571e580ea57e18a440ca2bea4806f8
Certificate serial: 01856FDDE265A471484FE56FA909D77C61AA
Authority key identifier: 80:DF:0C:BD:D5:57:1E:58:0E:A5:7E:18:A4:40:CA:2B:EA:48:06:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gN8MvdVXHlgOpX4YpEDKK-pIBvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/Y5CpW5sS3Gy5HXysKgMxLVh4qaM.roa
Signing time: Mon 02 Jan 2023 00:24:50 +0000
ROA not before: Mon 02 Jan 2023 00:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205871
IP address blocks: 185.179.58.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:e2:65:a4:71:48:4f:e5:6f:a9:09:d7:7c:61:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80df0cbdd5571e580ea57e18a440ca2bea4806f8
Validity
Not Before: Jan 2 00:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6390a95b9b12dc6cb91d7cac2a03312d5878a9a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:03:a4:5f:4d:be:c6:16:d6:34:db:58:96:9c:
f2:90:d2:3c:1a:db:e4:9b:92:4f:fe:17:fd:f2:b5:
9c:ee:a8:bc:b6:cc:3a:d5:05:3e:a5:be:28:64:ef:
c1:55:71:4e:d7:f7:e3:7f:82:30:61:23:ae:07:f9:
e8:53:cf:81:42:a3:f8:51:0a:6e:47:f4:cd:26:64:
3d:6c:cf:c2:25:c1:dd:ee:c3:f8:75:03:1a:ad:71:
93:73:80:b0:aa:25:00:e7:a0:a9:74:3b:cb:be:6d:
79:a2:1a:3e:ce:11:48:4b:17:55:a3:9b:8c:bc:40:
c6:e8:99:03:dd:46:a2:c5:46:14:d4:31:f8:41:da:
46:4d:cb:df:7f:88:fb:25:79:55:51:67:2d:f3:d0:
83:37:a3:dc:83:1d:9f:03:fa:a7:1d:7d:5a:72:cf:
ac:2f:bc:73:64:25:44:52:b2:31:12:f2:70:19:90:
1f:31:a8:83:ac:7e:1f:40:0e:fc:4f:10:df:f0:9e:
46:a7:f8:aa:b4:7c:7c:59:f0:78:ce:b0:7b:17:17:
36:59:9a:3e:ac:45:4e:11:80:6e:5a:46:5d:70:5f:
14:e5:6c:69:17:c2:e7:7b:69:83:9c:13:b9:dc:be:
d8:95:a0:7d:47:88:aa:a0:09:36:8d:47:d6:94:80:
1b:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:90:A9:5B:9B:12:DC:6C:B9:1D:7C:AC:2A:03:31:2D:58:78:A9:A3
X509v3 Authority Key Identifier:
keyid:80:DF:0C:BD:D5:57:1E:58:0E:A5:7E:18:A4:40:CA:2B:EA:48:06:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gN8MvdVXHlgOpX4YpEDKK-pIBvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/Y5CpW5sS3Gy5HXysKgMxLVh4qaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/9291e1-57ca-4c29-9e93-bd75ef9b5798/1/gN8MvdVXHlgOpX4YpEDKK-pIBvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.58.0/23
Signature Algorithm: sha256WithRSAEncryption
83:2d:01:f1:96:5a:28:61:b4:2c:ee:55:38:f7:78:b8:96:59:
f4:b5:60:78:3a:c9:85:d8:84:a5:3e:88:d4:95:e9:e9:ec:3f:
a0:8c:d3:06:be:96:24:1e:1a:48:5e:cc:c0:d2:61:67:ca:2e:
bb:07:18:c3:9d:c2:a9:6e:ee:fa:5a:9b:30:08:9a:ee:39:bc:
cd:91:3d:7d:2d:9b:58:c6:f3:c7:9c:7d:c4:99:a3:86:44:a7:
cc:b4:39:59:26:96:8e:f3:59:2d:24:a2:18:26:a0:dd:8e:fd:
2d:a7:57:88:fb:10:40:89:1b:60:9e:3d:0a:aa:53:71:ce:82:
d7:ad:d0:b3:bd:c2:0e:91:51:85:19:ff:50:5a:4f:08:fe:be:
87:d7:57:8c:8a:50:c8:76:35:89:73:49:74:cf:92:b3:e6:81:
d2:c8:01:93:01:b9:f5:8b:a3:ab:a7:ac:6a:fe:2e:bf:95:b9:
be:b8:bc:f1:c4:97:af:9c:a5:31:52:5e:57:e8:f1:1a:5f:3f:
b9:de:96:a9:ba:48:18:16:ea:66:53:2f:6e:96:34:d5:d6:d7:
bb:7f:d5:71:ef:40:23:e9:06:79:ab:58:9f:e9:8e:c3:27:56:
fa:7b:c4:ee:8d:c3:99:aa:4d:5b:1d:48:4b:f8:e0:fd:bb:2a:
aa:9c:e3:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:19 2024 by rpki-client on console-ams.rpki-client.org