Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f491a0-b666-4e9f-b0f9-6eed52968b1c/1/byYgfKeiFNr10cBZWOpTmvTzxfw.roa
File: byYgfKeiFNr10cBZWOpTmvTzxfw.roa (raw, json)
Hash identifier: YEgZWVrnUqFmXbi1c7xbUKWFA5LCygeoSno6jKeTAbA=
Subject key identifier: 6F:26:20:7C:A7:A2:14:DA:F5:D1:C0:59:58:EA:53:9A:F4:F3:C5:FC
Certificate issuer: /CN=5a0aa9682c683a9c1b95ce9676d51b20d39fd2ae
Certificate serial: 01856BD362085B6008D83574C4BD0577A6A5
Authority key identifier: 5A:0A:A9:68:2C:68:3A:9C:1B:95:CE:96:76:D5:1B:20:D3:9F:D2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WgqpaCxoOpwblc6WdtUbINOf0q4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f491a0-b666-4e9f-b0f9-6eed52968b1c/1/byYgfKeiFNr10cBZWOpTmvTzxfw.roa
Signing time: Sun 01 Jan 2023 05:34:53 +0000
ROA not before: Sun 01 Jan 2023 05:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210687
IP address blocks: 185.153.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:62:08:5b:60:08:d8:35:74:c4:bd:05:77:a6:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a0aa9682c683a9c1b95ce9676d51b20d39fd2ae
Validity
Not Before: Jan 1 05:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f26207ca7a214daf5d1c05958ea539af4f3c5fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:3f:3f:9d:cb:9b:c6:29:c4:f6:95:b0:7f:ad:
d9:7c:4e:bb:c7:89:d4:1b:db:d0:b8:3e:30:4a:f5:
45:14:64:ec:a7:8e:0c:32:fb:de:a5:0f:9b:d5:94:
21:a3:18:5e:7b:81:9f:70:f5:ae:c8:0a:6c:ec:5b:
b8:b3:a2:05:d8:94:ce:d9:b3:70:d0:b9:2b:80:bd:
4c:3d:82:7a:8a:d9:19:c0:13:49:e7:28:7a:4d:db:
fc:8a:e2:d2:e4:70:b3:95:f3:a8:11:9b:53:7f:0a:
6e:27:ee:14:37:ca:3f:ec:75:0a:e2:a4:6f:b6:66:
c6:6b:f4:bd:14:52:bd:8a:79:3d:8f:bd:9a:91:93:
2c:b5:2e:f1:ae:9e:96:40:fa:53:db:99:11:71:2f:
6d:b9:84:77:5c:b6:97:39:4b:07:61:c1:1a:48:a5:
6b:02:99:c7:47:78:02:c3:4b:e6:6e:78:34:30:d7:
ad:3f:d6:f0:bc:1a:a3:36:90:84:75:26:e3:45:da:
15:68:c9:63:0d:17:7e:f2:70:c9:de:d5:10:08:f9:
fd:0a:6a:e2:3a:53:cd:b3:84:31:94:c3:08:9c:70:
c6:97:9f:b7:6e:83:1f:ed:c0:4f:77:4c:3b:9c:c1:
b5:8b:1b:d0:a7:2b:3f:71:fc:a6:9f:73:0a:72:19:
09:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:26:20:7C:A7:A2:14:DA:F5:D1:C0:59:58:EA:53:9A:F4:F3:C5:FC
X509v3 Authority Key Identifier:
keyid:5A:0A:A9:68:2C:68:3A:9C:1B:95:CE:96:76:D5:1B:20:D3:9F:D2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WgqpaCxoOpwblc6WdtUbINOf0q4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f491a0-b666-4e9f-b0f9-6eed52968b1c/1/byYgfKeiFNr10cBZWOpTmvTzxfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f491a0-b666-4e9f-b0f9-6eed52968b1c/1/WgqpaCxoOpwblc6WdtUbINOf0q4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.234.0/24
Signature Algorithm: sha256WithRSAEncryption
82:74:c0:63:06:d8:a5:e8:34:24:d3:a3:8d:5a:fd:7c:85:47:
90:e0:28:52:a3:f0:9b:5e:67:7a:4e:7e:ef:0e:19:f4:8b:35:
ef:24:fc:fc:11:89:0d:4a:bf:e9:c9:ad:bb:9f:07:49:5c:4e:
26:5c:de:76:85:7d:30:c2:ce:aa:d0:06:28:11:b6:f1:50:51:
8a:b2:75:f2:52:8b:c3:21:85:6b:e1:76:3e:79:48:bb:f3:cc:
70:45:60:e0:b2:64:18:b4:c6:40:66:fa:99:73:9b:34:8b:5f:
e8:5b:8b:e9:c4:85:80:92:8c:ae:e5:3a:72:83:f8:1f:b3:c8:
31:e9:fc:0b:5f:a6:cd:10:a2:5a:32:27:f7:f7:ce:66:5d:c9:
33:93:d9:60:0d:68:8c:1a:75:2a:7c:37:0a:14:64:c7:3b:35:
88:4f:4f:43:7d:eb:37:38:89:39:77:c4:28:fe:4e:78:8b:27:
ba:90:1f:dc:98:81:fa:44:20:ae:7e:5f:88:e2:d0:f7:43:f1:
33:74:ce:3a:77:76:07:ff:50:df:31:e0:23:74:59:2a:62:ff:
fa:6c:ff:5f:b1:2e:8d:46:3f:46:37:6c:64:3f:b4:a3:92:11:
37:3c:48:84:13:ef:8e:2c:1f:a1:9e:0b:a3:cc:b5:a1:ff:0e:
9c:6b:2e:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:30 2024 by rpki-client on console-ams.rpki-client.org