Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/AZ-Xci1GO6fCZa_yNPzSQXGgheg.roa
File: AZ-Xci1GO6fCZa_yNPzSQXGgheg.roa (raw, json)
Hash identifier: 9AGgZ7WvsXHQ2HPFqcHB/CBuiASGgL1uXihb1fubMhA=
Subject key identifier: 01:9F:97:72:2D:46:3B:A7:C2:65:AF:F2:34:FC:D2:41:71:A0:85:E8
Certificate issuer: /CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Certificate serial: 01856CB840ED89B080B2A08A7C77735970F8
Authority key identifier: 5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/AZ-Xci1GO6fCZa_yNPzSQXGgheg.roa
Signing time: Sun 01 Jan 2023 09:44:52 +0000
ROA not before: Sun 01 Jan 2023 09:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12703
IP address blocks: 185.196.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:40:ed:89:b0:80:b2:a0:8a:7c:77:73:59:70:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Validity
Not Before: Jan 1 09:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=019f97722d463ba7c265aff234fcd24171a085e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:16:9a:fa:6c:d2:82:a9:5b:ff:38:25:fb:cf:
ee:31:23:e3:1c:17:ef:92:88:52:a7:8f:e8:1c:53:
21:66:e6:6e:0a:fb:96:0f:ab:23:08:de:15:0e:62:
f0:26:53:48:56:c1:b5:ea:27:1a:55:54:51:4f:a8:
a4:47:c4:e5:0f:bf:e1:bc:3e:7b:e6:44:02:4c:c1:
fa:5c:98:d1:b3:c7:f3:16:9b:46:44:98:73:53:0e:
f9:96:3c:53:09:e5:7d:da:c2:3d:5a:5e:64:df:ec:
84:7a:ec:e5:9e:da:8d:fc:1c:fe:57:e7:af:04:d9:
de:a9:6c:62:85:26:2b:06:c0:ed:4c:4d:ee:31:31:
02:1a:e2:3b:40:e7:a0:33:37:e4:e6:8e:10:9b:81:
36:40:9d:4c:df:67:da:59:a4:37:81:b3:17:ac:11:
37:92:74:ac:38:e5:87:93:47:78:34:e7:df:88:38:
5a:0a:36:1a:63:f5:a4:dc:3a:6a:06:cf:63:b7:4e:
5e:97:6b:92:c0:90:3f:e8:8b:52:f6:e9:ba:f9:81:
81:15:f5:7d:9d:ac:b1:0a:6a:c9:0b:12:1a:eb:57:
40:e6:fa:32:e0:1b:78:b1:3d:fe:5d:50:f7:47:21:
00:06:3f:f5:14:9a:1c:80:ac:09:73:1f:22:68:6c:
01:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9F:97:72:2D:46:3B:A7:C2:65:AF:F2:34:FC:D2:41:71:A0:85:E8
X509v3 Authority Key Identifier:
keyid:5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/AZ-Xci1GO6fCZa_yNPzSQXGgheg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/XOGq4Mk60EtymAgraL9qVPpovPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.100.0/24
Signature Algorithm: sha256WithRSAEncryption
55:aa:86:73:32:ab:b5:40:16:78:57:4e:b4:ed:39:c5:0a:06:
ee:2d:46:0f:d1:5b:a3:5c:cc:91:8a:66:7c:d8:3a:29:f4:d0:
c6:e8:b0:56:97:71:4a:17:e1:96:fb:c7:d5:c2:d1:d5:40:5f:
0b:c5:f8:55:be:02:15:79:fe:3b:c7:27:f7:94:63:51:a6:60:
8a:ab:70:d3:c7:b9:32:df:0a:ea:a5:e2:73:d3:4b:c0:c4:42:
d5:c2:e5:7d:c2:3a:a2:fd:61:98:f6:af:bf:66:d8:1a:2a:65:
09:7b:d7:9f:3b:c6:c9:0e:6e:d6:3a:76:64:4f:bb:b5:4c:81:
37:b0:f8:63:5a:3f:98:64:4d:eb:8d:88:b2:b7:d8:a6:6f:ed:
15:d8:a4:c8:bb:85:99:7c:a5:89:86:18:99:47:e4:42:90:91:
1d:1b:09:1f:27:ca:85:7a:cd:e9:08:7b:b1:90:94:b1:ab:d0:
37:42:c2:bb:d0:26:da:19:d6:e7:c3:e3:5d:d0:54:bb:dd:b6:
46:c7:ea:7d:1e:95:19:41:66:42:e4:10:8a:19:fc:2f:7d:f5:
01:5a:b5:e4:98:6b:42:fa:f5:cb:7f:b5:a9:f0:f7:b8:52:98:
18:7b:1c:36:f4:58:40:03:98:44:ef:35:cd:50:1b:ad:fa:6c:
1d:b9:02:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org