Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/PF7peyJjMzymBmZyNy525r-jtvE.roa
File: PF7peyJjMzymBmZyNy525r-jtvE.roa (raw, json)
Hash identifier: m+vXWymChV9lVq8YPGUk39oELFrfN+1DS20jzFUPtrc=
Subject key identifier: 3C:5E:E9:7B:22:63:33:3C:A6:06:66:72:37:2E:76:E6:BF:A3:B6:F1
Certificate issuer: /CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Certificate serial: 018EF19DABB87961288F7E872366860AF980
Authority key identifier: A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/PF7peyJjMzymBmZyNy525r-jtvE.roa
Signing time: Thu 18 Apr 2024 14:30:25 +0000
ROA not before: Thu 18 Apr 2024 14:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5413
IP address blocks: 185.99.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 May 2024 09:17:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f1:9d:ab:b8:79:61:28:8f:7e:87:23:66:86:0a:f9:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Validity
Not Before: Apr 18 14:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3c5ee97b2263333ca6066672372e76e6bfa3b6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f7:89:cd:47:d9:47:d9:5c:81:01:ab:12:a8:
1a:3c:b8:e2:a5:0c:a3:54:ca:05:b7:e1:ad:90:ee:
78:2f:1e:10:50:29:8e:87:7f:aa:1e:45:35:c0:60:
7e:c2:3c:e1:ec:58:2c:94:41:da:e5:45:00:f7:f1:
76:84:9c:61:10:aa:1d:37:0b:ee:d2:d3:37:fb:75:
c8:61:05:fc:f4:6f:99:1a:44:e2:99:93:2e:a3:ce:
e4:eb:7c:35:6b:32:64:40:76:cf:1c:0d:1f:71:c6:
58:44:a6:ef:69:08:b1:d7:a8:b4:80:05:1f:47:57:
fe:96:12:a0:14:27:ae:3e:4e:77:02:a8:b4:69:f0:
3a:aa:28:1a:e5:0b:d7:2b:c9:83:36:56:e2:93:a2:
91:2b:d5:17:c3:9f:bc:96:38:c3:df:aa:ea:59:06:
26:0f:17:c8:0b:57:5c:65:4f:cd:84:29:5b:c3:15:
3a:14:5e:15:b6:52:62:5a:48:78:b0:12:e5:de:51:
88:d8:dd:d8:f1:44:e9:2d:56:42:79:f3:49:76:9e:
21:58:a7:21:82:a5:4b:ab:a3:c1:51:a5:21:ab:75:
9f:fa:b1:a4:17:3c:b2:34:df:8e:e0:94:78:bb:58:
d8:3f:1e:68:8e:bb:21:06:fa:95:fc:b4:81:a5:7c:
14:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:5E:E9:7B:22:63:33:3C:A6:06:66:72:37:2E:76:E6:BF:A3:B6:F1
X509v3 Authority Key Identifier:
keyid:A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/PF7peyJjMzymBmZyNy525r-jtvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.255.0/24
Signature Algorithm: sha256WithRSAEncryption
83:58:c7:8a:c8:f1:30:a4:d1:45:ad:ae:c6:50:58:1c:5e:86:
6a:ab:5d:c3:27:7a:09:b0:e6:7a:95:64:be:88:72:15:1d:50:
06:1c:78:4c:c7:4c:70:88:bd:ae:f0:c1:1b:3c:c5:b6:20:73:
1b:a6:76:5b:ac:90:3d:28:fb:cb:5c:e7:d4:ed:91:96:e8:57:
cc:3b:d1:e4:dd:7b:8b:a9:17:4b:03:ae:3d:c4:29:36:24:25:
bb:23:cf:97:92:52:0a:6a:62:89:87:6b:a1:f7:9a:64:99:9c:
7f:5b:71:e6:5c:a4:00:50:b8:d0:41:89:7f:a0:5f:a5:5f:9b:
67:ad:11:e6:86:7f:67:e2:e2:53:a7:88:21:58:28:02:c3:77:
78:50:e9:ee:b0:be:c1:68:dc:e3:ac:ce:6d:1f:db:2a:5c:48:
84:20:b7:2f:9d:5d:63:8e:21:18:40:0d:9d:ae:f1:f2:32:c4:
1f:98:b3:ec:b0:85:2a:00:ce:f0:1b:47:7e:fc:40:e4:bb:9e:
21:11:f7:24:07:31:3b:a1:0a:69:a0:f6:b9:ea:51:81:bd:88:
bc:bf:93:4e:dc:9a:d5:d1:15:d3:d3:a1:3c:fd:6d:47:09:f8:
71:e8:af:0f:40:01:ca:1d:9b:b2:64:e4:08:08:48:ff:f3:0a:
3d:cd:6b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 16 12:16:22 2024 by rpki-client on console-ams.rpki-client.org