Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/DYTCu4lRn5_ksGQSIPuYs9WNcT4.roa
File: DYTCu4lRn5_ksGQSIPuYs9WNcT4.roa (raw, json)
Hash identifier: 98QcZKEgNABD7TwusrMTdyO3Zdm8DH4GbOcxlV926AQ=
Subject key identifier: 0D:84:C2:BB:89:51:9F:9F:E4:B0:64:12:20:FB:98:B3:D5:8D:71:3E
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 018C1B826D09425C6661BA11F56A73E09D44
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/DYTCu4lRn5_ksGQSIPuYs9WNcT4.roa
Signing time: Wed 29 Nov 2023 14:36:21 +0000
ROA not before: Wed 29 Nov 2023 14:36:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.167.181.0/24 maxlen: 24
185.204.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 12:51:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:82:6d:09:42:5c:66:61:ba:11:f5:6a:73:e0:9d:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Nov 29 14:36:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d84c2bb89519f9fe4b0641220fb98b3d58d713e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:50:d7:f4:e3:c0:ab:5c:d8:58:cc:79:b6:a2:
aa:ea:3c:ca:ab:cd:55:fb:da:93:47:4e:cb:d4:bc:
63:a5:75:e4:ab:30:1a:d4:60:1a:09:87:6b:59:67:
72:0b:c9:a1:b8:d6:7f:74:f7:35:65:3b:f6:2f:e3:
c5:f2:66:df:3f:dd:ba:ed:71:90:7f:e6:6c:23:4a:
35:ec:02:3a:06:bd:9f:c1:b8:0d:63:d3:94:a8:db:
94:f0:4e:96:6e:bf:65:41:ed:96:e9:a3:a0:20:91:
d5:32:92:a0:b0:4d:51:95:cb:0c:d6:9c:99:08:5b:
60:9f:cb:2e:32:ff:98:a2:ba:de:25:d1:cd:68:d7:
ee:a8:fe:9b:e6:fb:d5:54:31:54:8a:30:2b:fb:cc:
33:32:a7:56:57:ff:17:72:c7:e0:e3:92:d1:cd:81:
3d:78:91:6a:43:0b:8f:00:6e:58:cc:f0:0a:78:bd:
d8:29:1f:fc:e9:5b:55:a3:b1:fd:a8:55:f1:f6:02:
cb:5c:ef:9c:4e:5b:91:a0:55:de:18:a6:4c:7a:1f:
d5:c3:a6:79:7c:d9:2c:4c:63:04:b3:6f:4b:55:e4:
45:24:2d:8a:08:27:03:60:dd:6b:69:77:46:fa:d1:
37:cb:78:47:92:10:e1:90:b0:47:b9:3f:0b:19:53:
66:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:84:C2:BB:89:51:9F:9F:E4:B0:64:12:20:FB:98:B3:D5:8D:71:3E
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/DYTCu4lRn5_ksGQSIPuYs9WNcT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.181.0/24
185.204.203.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:e6:0f:86:69:4a:bc:dc:24:ff:a3:42:64:79:c1:a8:a1:8d:
52:ac:e6:83:68:f7:04:56:7d:a8:36:15:09:f8:fc:2e:0f:a5:
8b:cd:7f:bb:60:e4:e5:19:bc:4d:78:67:ec:40:d3:d9:23:0f:
40:31:44:36:68:1b:60:43:6c:32:9a:9d:02:77:57:69:98:a4:
c6:0c:4a:f2:e8:2d:48:14:39:69:5d:89:79:a1:7f:f9:a4:46:
95:0a:ac:e6:f7:a3:9e:8d:3e:22:10:6d:11:d4:d8:ec:1d:f0:
53:d8:d8:ea:77:ae:58:4c:d2:cb:20:7e:ff:03:46:e3:96:53:
f8:69:b3:06:46:4e:98:eb:81:83:a2:3c:b2:24:b0:a8:fb:e6:
23:d9:3f:c6:51:3d:37:6c:6f:f8:96:12:bb:81:3b:8a:24:21:
3f:c4:e3:67:9c:63:df:96:f5:1d:17:55:de:d9:bc:34:a3:45:
19:4f:30:dc:44:5a:3a:63:79:cb:0b:ed:04:47:0d:a3:0e:37:
b9:cb:b2:58:b9:21:31:8b:ed:74:e5:bb:f5:c6:53:40:1b:14:
76:5c:25:23:9b:cb:b9:f2:a3:95:45:55:fd:07:2c:49:9b:3b:
81:5d:b1:68:d1:c7:b4:e2:95:52:99:0f:45:c3:a8:aa:55:37:
64:00:e9:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:15 2024 by rpki-client on console-fra.rpki-client.org