Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/i78CSWEEVzSmyscU-5oEF1OuHdA.roa
File: i78CSWEEVzSmyscU-5oEF1OuHdA.roa (raw, json)
Hash identifier: WVyh6x6+uX6Iplbo2P3tBNeJdqG0dgmrPK7dFfoigzg=
Subject key identifier: 8B:BF:02:49:61:04:57:34:A6:CA:C7:14:FB:9A:04:17:53:AE:1D:D0
Certificate issuer: /CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Certificate serial: 01856D419B8E8D332DCC65181D95CF1C5BA5
Authority key identifier: 84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/i78CSWEEVzSmyscU-5oEF1OuHdA.roa
Signing time: Sun 01 Jan 2023 12:14:54 +0000
ROA not before: Sun 01 Jan 2023 12:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202766
IP address blocks: 185.173.44.0/24 maxlen: 24
185.173.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:9b:8e:8d:33:2d:cc:65:18:1d:95:cf:1c:5b:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d8aa1269d1a3f3321335860c67c7e08677dc5
Validity
Not Before: Jan 1 12:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8bbf024961045734a6cac714fb9a041753ae1dd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f1:88:43:96:f8:3b:84:09:0a:61:b3:20:d6:
ad:74:e9:18:37:7b:af:26:fd:1c:7a:0f:4b:73:74:
30:b7:c2:57:ca:34:cc:63:df:62:44:36:bb:ef:d1:
aa:e9:2c:a5:2a:2b:8f:e7:47:99:d1:54:7e:09:0d:
14:6d:61:41:75:ab:9c:cd:22:0f:7b:ed:b8:97:ce:
de:38:2b:d0:92:7d:2f:97:8c:07:bc:cd:da:8c:54:
b0:27:bf:4a:40:c6:9f:1d:d1:0b:e0:34:20:32:72:
18:fb:ae:9d:31:d9:3d:38:6b:0d:5f:9d:8f:0c:dc:
83:84:11:3e:51:6a:52:09:a2:6e:67:47:bd:ca:eb:
c5:0c:ae:2f:6b:6f:ce:15:25:7c:c2:3c:c7:12:9b:
b6:0d:07:4b:11:92:50:9c:ce:d7:27:bc:95:0f:09:
eb:28:85:09:c1:7c:0b:7e:95:cc:5c:f0:41:4a:e1:
eb:7c:0f:56:1c:6f:74:d4:f2:b8:2f:5a:44:b8:df:
a2:7d:61:d8:81:bf:23:fc:5a:74:5f:ce:ab:d7:ea:
2a:47:9e:84:29:25:77:5e:00:84:28:2f:54:07:e8:
09:61:7a:5f:14:88:95:c6:1d:41:c4:ec:a3:c3:35:
14:f8:c9:c5:2a:ca:43:c5:0f:00:66:78:c8:26:80:
f0:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:BF:02:49:61:04:57:34:A6:CA:C7:14:FB:9A:04:17:53:AE:1D:D0
X509v3 Authority Key Identifier:
keyid:84:3D:8A:A1:26:9D:1A:3F:33:21:33:58:60:C6:7C:7E:08:67:7D:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD2KoSadGj8zITNYYMZ8fghnfcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/i78CSWEEVzSmyscU-5oEF1OuHdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c54e32-705a-4e7a-9513-b978bfc752ab/1/hD2KoSadGj8zITNYYMZ8fghnfcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.44.0/24
185.173.46.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:50:73:06:35:5f:35:29:db:fa:cc:fc:77:a5:6f:4f:ef:58:
2b:c5:d2:33:f9:ff:f8:62:e6:9e:54:5c:8e:9e:4d:b0:1f:90:
9e:39:5a:05:b4:5b:04:d3:87:2b:5a:83:b7:23:d4:cc:6b:66:
98:6d:69:13:cf:90:ef:ab:a6:4d:81:ab:7b:8d:c9:6e:ef:be:
b8:34:dc:16:dd:19:cd:a4:00:df:ed:08:59:58:bc:6a:7b:fe:
42:cc:a7:79:17:b0:17:2b:a3:c0:f1:6f:3a:8b:c8:31:dd:88:
d6:96:bd:f5:0a:1e:a5:bc:2f:74:26:33:22:73:73:b0:16:5f:
66:fd:db:73:b0:f8:09:2f:c6:1d:0a:57:b0:6c:87:38:ec:3d:
3f:db:85:89:28:91:bc:17:b3:07:58:d2:43:11:c7:96:95:be:
f0:37:76:f4:29:ea:c1:61:ee:21:a8:e4:1e:72:67:46:45:5b:
69:9e:1c:cd:7b:f8:48:bc:37:28:5f:50:1a:a8:e7:6e:ee:00:
de:91:4a:68:a1:7c:43:cd:92:4a:3a:6d:c8:bc:66:90:54:a2:
02:b6:aa:da:cf:93:f7:1d:c2:55:63:33:40:b2:c3:97:d5:43:
d9:72:ad:34:0b:e4:68:41:ad:4c:01:ff:d8:e6:39:9b:72:f1:
7e:3f:c0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:05 2024 by rpki-client on console-ams.rpki-client.org