Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/zY0EufwWko8HLkZ7Lnm0vJvTGoM.roa
File: zY0EufwWko8HLkZ7Lnm0vJvTGoM.roa (raw, json)
Hash identifier: qaFt91A9duIC4gIaG1lG9GQ3TJQHxhFpRXSKX08K1Nk=
Subject key identifier: CD:8D:04:B9:FC:16:92:8F:07:2E:46:7B:2E:79:B4:BC:9B:D3:1A:83
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 01856FCBB18FB93DCA8B1F81F820404AEC90
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/zY0EufwWko8HLkZ7Lnm0vJvTGoM.roa
Signing time: Mon 02 Jan 2023 00:04:58 +0000
ROA not before: Mon 02 Jan 2023 00:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:b1:8f:b9:3d:ca:8b:1f:81:f8:20:40:4a:ec:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 00:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd8d04b9fc16928f072e467b2e79b4bc9bd31a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ae:ce:18:83:98:2d:de:08:ff:11:d6:ca:ff:
59:3c:f5:22:2e:64:8d:53:f8:47:fa:5c:fd:e0:44:
20:0d:5a:0e:ac:02:f3:d4:1b:bd:47:79:42:60:08:
f9:5e:81:b1:cf:60:a2:6e:6f:73:f5:35:8e:47:35:
a2:47:c1:89:0a:c6:20:83:c3:90:78:ab:37:ad:67:
b3:41:fc:62:0c:b1:71:3c:16:99:38:64:d1:96:5e:
ab:d3:20:ec:78:84:03:88:71:16:9b:89:51:4f:1c:
b8:c3:1b:0f:8a:04:23:2d:18:2d:6a:5b:66:cb:de:
8a:67:c1:0e:82:1e:dc:d5:f8:17:1c:be:29:76:93:
c0:fa:19:61:d2:e7:33:31:73:58:89:d4:92:5c:ad:
09:52:45:67:62:8f:d0:85:17:de:85:ea:93:65:47:
2a:85:ca:32:a6:25:6b:77:47:45:02:64:8f:3a:46:
0f:46:c4:5a:74:4a:96:31:0d:50:18:35:90:3c:fe:
f1:30:4b:29:30:50:17:20:f1:aa:23:4d:1e:b3:ae:
bb:89:01:50:ef:df:c0:e0:3c:54:00:f1:9f:22:16:
94:a7:db:cd:f6:58:61:79:6c:99:91:fc:b5:4e:37:
ce:fb:cf:fa:10:19:50:b3:e1:3e:26:d5:e5:9d:4a:
50:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8D:04:B9:FC:16:92:8F:07:2E:46:7B:2E:79:B4:BC:9B:D3:1A:83
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/zY0EufwWko8HLkZ7Lnm0vJvTGoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
49:98:22:bc:f1:d5:15:9a:aa:76:8c:b3:fb:ab:5c:33:1b:87:
e1:b4:12:f0:d0:a2:10:26:d3:5f:60:d3:ba:cd:40:16:83:5d:
30:e2:dd:ab:68:10:82:07:a7:68:c4:c7:d0:d7:55:61:c0:8e:
48:5d:77:33:87:9f:0e:23:0a:0e:7c:c3:a9:f0:6f:cf:7a:bd:
3c:00:35:61:73:93:a5:6b:c3:f7:58:bf:5a:de:8a:49:0f:66:
9f:ff:ac:54:63:43:38:f0:ab:7a:d2:70:5b:db:44:ef:4e:dc:
49:9f:2a:e8:68:56:b8:ce:ee:fa:b6:1f:fa:1a:d2:16:cb:44:
d9:42:e5:c3:51:44:19:9d:75:0b:53:5a:c2:06:72:3f:ad:bc:
29:35:18:ad:25:cd:60:a7:91:ea:2d:c1:16:2b:15:97:cf:d6:
86:50:f1:b3:b0:83:07:93:61:1f:37:cd:ca:e7:3a:8f:d2:43:
ed:9b:98:16:77:65:09:62:92:8b:49:63:dc:94:f5:7c:43:c3:
29:de:13:d2:85:a6:09:09:87:58:62:4e:dc:9a:c5:de:ed:ac:
1c:61:be:53:fd:42:90:02:9c:80:78:6c:0e:b1:66:db:65:f2:
7f:25:19:5c:7c:a4:0f:bf:27:cd:d4:b2:bd:6c:71:a9:d7:9f:
d1:6c:45:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org