Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/1SJ8yE9k-435ATXizRhafVJkZ0w.roa
File: 1SJ8yE9k-435ATXizRhafVJkZ0w.roa (raw, json)
Hash identifier: u02W4FDEgjCwXxdhsSTEBXWOJuZgxUsmt8JfUS6B3TY=
Subject key identifier: D5:22:7C:C8:4F:64:FB:8D:F9:01:35:E2:CD:18:5A:7D:52:64:67:4C
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 0185700B919C6A7118A8DD70A879F5B390F9
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/1SJ8yE9k-435ATXizRhafVJkZ0w.roa
Signing time: Mon 02 Jan 2023 01:14:44 +0000
ROA not before: Mon 02 Jan 2023 01:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.204.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Nov 2023 14:36:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:0b:91:9c:6a:71:18:a8:dd:70:a8:79:f5:b3:90:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Jan 2 01:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5227cc84f64fb8df90135e2cd185a7d5264674c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e8:c4:42:51:3c:e0:37:71:98:80:04:5f:6c:
b8:a0:b4:26:b8:1f:97:b4:ed:05:65:81:35:9a:51:
26:ae:47:06:3a:59:c9:70:de:35:d8:76:d9:9f:70:
59:02:c1:5f:41:f6:ce:93:62:01:56:1d:db:22:73:
cb:f1:42:0e:6e:30:0c:ef:7a:86:f5:e7:27:3b:46:
d3:2f:38:3c:a6:98:26:93:e8:b1:20:ac:ff:9e:40:
c4:49:36:a5:04:f2:2d:6e:c6:e9:8b:20:15:a5:9c:
13:01:f6:30:fb:aa:00:75:7e:ac:54:a2:0a:07:d8:
af:f0:37:05:40:5e:f9:11:a5:64:a3:4c:86:bf:29:
76:fd:2d:74:d7:00:66:fb:cd:8a:95:cf:1d:69:bb:
a5:fa:c3:a2:a1:ca:a1:d3:76:a2:df:fe:e1:02:3c:
13:c6:65:45:9a:fc:29:79:36:4c:e7:2d:88:33:53:
fe:14:ce:83:84:ae:ee:c9:ad:77:df:3a:e2:96:80:
af:d6:1a:fb:6e:07:2f:5c:7b:0f:26:ab:65:63:9f:
9a:21:9c:2f:c9:f0:6b:b4:d5:e5:4d:60:ea:bc:bf:
b8:6f:5e:cc:e3:8f:11:6a:10:3e:d8:b3:4c:a2:cf:
8d:02:54:f3:9e:68:33:74:be:e5:13:7f:18:9d:24:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:22:7C:C8:4F:64:FB:8D:F9:01:35:E2:CD:18:5A:7D:52:64:67:4C
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/1SJ8yE9k-435ATXizRhafVJkZ0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.203.0/24
Signature Algorithm: sha256WithRSAEncryption
99:5f:ee:11:ea:3c:91:15:af:f1:f9:50:b0:f5:13:23:27:57:
ed:77:95:d3:02:08:62:56:0f:e0:22:28:fe:b8:05:08:a6:77:
20:3a:22:02:83:d3:bc:19:26:50:8e:12:c4:0c:e2:b1:ce:95:
58:c2:9f:5d:c9:a5:b1:eb:e0:e8:c3:23:c8:3f:2a:49:75:29:
b5:0f:a5:ee:6d:9b:6d:f2:43:66:c3:d9:14:4f:1f:f4:ea:c9:
54:20:87:fe:80:19:fc:fd:b0:f9:ae:00:11:bc:ff:83:48:ab:
dc:e2:58:f9:80:e4:37:7a:48:0e:89:1e:ff:cd:87:37:35:a8:
cc:5c:c8:ad:c5:52:29:d5:a7:ad:c3:89:2e:2e:f3:10:19:79:
3e:89:b8:99:0f:2d:61:03:d1:cb:76:b3:2c:0e:89:d6:8b:36:
0c:6a:6c:04:a0:17:07:d9:c4:ca:99:e1:7a:a7:ff:8c:1c:fe:
4a:ca:7a:5a:32:90:f5:4a:7a:a5:02:06:8a:3b:af:26:60:3a:
63:a5:e2:58:a4:4f:68:3a:69:ea:70:ac:21:36:ee:03:c2:3b:
e4:81:0e:ae:e8:be:2f:46:97:df:63:f2:af:1b:e5:69:ee:c3:
f4:9b:ad:bd:4a:71:1b:16:83:15:f4:47:a0:07:49:a0:19:67:
79:01:48:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:13 2024 by rpki-client on console-ams.rpki-client.org