Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/IUGf7Zb7SeFC6ZTFY_Zav5aROEs.roa
File: IUGf7Zb7SeFC6ZTFY_Zav5aROEs.roa (raw, json)
Hash identifier: aqjUurTLfJAgA5ZIA3mYKvsZ0cxtcPWJN+BhYna2tTY=
Subject key identifier: 21:41:9F:ED:96:FB:49:E1:42:E9:94:C5:63:F6:5A:BF:96:91:38:4B
Certificate issuer: /CN=d283616f1362c25d82ec2a70c4b9750565b1197f
Certificate serial: 01856F391DE0ED6DCBB5533FB43FA568C87C
Authority key identifier: D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/IUGf7Zb7SeFC6ZTFY_Zav5aROEs.roa
Signing time: Sun 01 Jan 2023 21:24:52 +0000
ROA not before: Sun 01 Jan 2023 21:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.54.72.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:1d:e0:ed:6d:cb:b5:53:3f:b4:3f:a5:68:c8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d283616f1362c25d82ec2a70c4b9750565b1197f
Validity
Not Before: Jan 1 21:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21419fed96fb49e142e994c563f65abf9691384b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:56:c8:ac:2a:25:c3:c7:a0:3a:3c:d3:fd:34:
d4:68:cc:09:8a:9a:d2:51:af:df:f1:da:af:fb:fa:
f0:a2:94:3b:48:77:69:ce:3c:e6:53:06:2f:50:cd:
66:05:2b:ca:c3:ab:f8:f6:5e:f7:c4:4e:a7:9a:9d:
4d:50:fa:b1:74:c7:ab:df:20:f1:6e:ff:32:62:38:
82:c8:bf:db:95:25:74:82:8f:4a:a3:b2:06:83:a4:
f6:19:69:1f:ed:93:64:af:e1:33:04:38:fc:d9:d5:
7d:c2:8b:c9:54:f7:81:72:d9:c8:92:8f:89:3f:df:
ad:ef:bc:8f:84:92:b7:64:75:44:11:76:82:ca:69:
e0:79:02:21:25:cb:10:c8:c8:d6:34:3c:f4:a4:a4:
d0:f6:25:79:eb:29:59:51:93:d4:48:0b:a2:f3:88:
30:76:19:a1:20:00:73:54:a9:e1:5f:f7:7f:86:25:
7b:6b:ab:39:80:3b:35:e3:3f:e8:c9:27:ca:35:4e:
60:12:73:8d:e8:d1:25:f6:a0:06:d1:69:17:22:b9:
d1:17:c6:f6:a8:b7:e4:d4:4e:20:3f:c6:ef:11:eb:
41:49:8f:ca:c7:43:29:aa:26:49:75:a0:7a:3e:d4:
51:0f:25:d4:e3:b2:27:8c:d2:63:5c:ed:9e:55:00:
87:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:41:9F:ED:96:FB:49:E1:42:E9:94:C5:63:F6:5A:BF:96:91:38:4B
X509v3 Authority Key Identifier:
keyid:D2:83:61:6F:13:62:C2:5D:82:EC:2A:70:C4:B9:75:05:65:B1:19:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0oNhbxNiwl2C7CpwxLl1BWWxGX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/IUGf7Zb7SeFC6ZTFY_Zav5aROEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/2fbccc-64b6-4f66-8969-a6d27c431818/1/0oNhbxNiwl2C7CpwxLl1BWWxGX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.72.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:b1:5a:9f:db:e2:24:36:2f:96:8e:f1:64:d6:24:4c:02:35:
72:33:ab:d8:4c:54:2e:40:65:b1:40:8b:e7:db:af:19:7c:94:
1d:12:14:d0:1e:bb:b5:09:e3:6f:4f:ea:b2:2d:6c:f3:47:d5:
4f:f3:a0:ff:4c:f6:92:e3:93:f1:b0:41:55:98:b6:fc:7e:82:
2f:14:dd:6b:6c:e5:42:90:04:b6:b4:9b:ba:ad:31:33:44:0c:
dd:20:f9:56:ca:49:f3:ec:1b:89:f8:1a:28:db:e1:c9:e2:4e:
e4:38:e3:01:b2:36:69:1b:76:08:09:79:24:66:5d:af:11:5b:
4f:53:a1:c0:a5:f2:b6:f9:45:87:6d:89:7c:bb:86:e4:09:a0:
94:c1:d8:54:f2:10:ad:84:99:52:7d:e3:db:80:45:35:84:9a:
f1:ac:88:4b:ab:d8:08:89:45:17:5b:9a:5f:65:09:79:6e:fb:
76:be:91:50:64:2b:2d:ce:41:7d:b9:cc:1b:15:2f:28:7c:23:
ce:d0:89:8f:66:1e:83:58:79:67:ed:57:ed:88:f9:60:dc:9c:
32:b5:84:5b:70:15:70:c2:f3:0f:7f:29:e8:a9:b1:12:51:a7:
d4:d1:f0:0b:9d:5b:bb:19:73:f7:05:b1:72:4b:ec:da:6a:bc:
64:84:91:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:35 2024 by rpki-client on console-ams.rpki-client.org