Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/sc9HrYmPiNt9nOmozSESrHN1O-A.roa
File: sc9HrYmPiNt9nOmozSESrHN1O-A.roa (raw, json)
Hash identifier: dvyKVwSWPwRCit0NP34oZyytTF4lOQYGpY5hDz2PW1U=
Subject key identifier: B1:CF:47:AD:89:8F:88:DB:7D:9C:E9:A8:CD:21:12:AC:73:75:3B:E0
Certificate issuer: /CN=95151fbb71e41b2d1063d3b11141ada1a844c7f7
Certificate serial: 01856CEF4EA61B70FB7C490BB8F43B9DE6EB
Authority key identifier: 95:15:1F:BB:71:E4:1B:2D:10:63:D3:B1:11:41:AD:A1:A8:44:C7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/sc9HrYmPiNt9nOmozSESrHN1O-A.roa
Signing time: Sun 01 Jan 2023 10:45:00 +0000
ROA not before: Sun 01 Jan 2023 10:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38965
IP address blocks: 185.231.57.0/24 maxlen: 24
2a10:b880::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:4e:a6:1b:70:fb:7c:49:0b:b8:f4:3b:9d:e6:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95151fbb71e41b2d1063d3b11141ada1a844c7f7
Validity
Not Before: Jan 1 10:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b1cf47ad898f88db7d9ce9a8cd2112ac73753be0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:66:3b:c1:ba:5b:46:ae:fb:43:5a:78:9c:13:
ef:2b:b8:b8:85:fd:03:15:1f:ca:70:ae:8e:b5:f8:
84:ae:9f:33:6e:7b:ed:b1:b3:a9:d4:3f:99:fa:4d:
24:cd:97:42:ad:b7:1d:2c:2c:9e:47:7d:ac:8b:8a:
ae:00:2c:35:88:69:b3:60:1e:1c:3d:c5:0e:10:22:
84:5b:67:70:3a:e2:46:c2:0c:3f:7d:46:21:0f:d5:
0f:11:f7:86:9c:88:05:e9:48:5c:11:ce:94:cd:d5:
9d:4d:47:8f:64:b8:88:b9:50:0f:cf:c7:65:88:af:
5a:75:c4:f7:9a:a6:83:b1:bb:8f:d2:ec:d6:b6:6f:
d0:7f:d6:33:47:eb:9d:72:f5:b8:5f:23:1e:c9:26:
54:44:17:01:85:25:36:4e:6e:e7:85:39:ad:1e:8d:
a9:94:82:2d:4c:0f:b5:2b:e7:07:43:bd:46:b4:8a:
55:7c:98:43:bd:9b:75:42:18:37:db:2b:35:14:48:
57:95:73:d4:57:1e:7a:2a:95:f0:6a:2a:ae:72:82:
f6:5c:a1:5a:44:ab:51:12:f0:1d:fe:87:c5:07:1d:
24:5e:29:5e:6f:57:4f:13:ac:43:77:2c:fc:00:9e:
d4:ab:bd:a5:27:c0:bf:62:e3:68:d3:5f:a2:87:dd:
3c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:CF:47:AD:89:8F:88:DB:7D:9C:E9:A8:CD:21:12:AC:73:75:3B:E0
X509v3 Authority Key Identifier:
keyid:95:15:1F:BB:71:E4:1B:2D:10:63:D3:B1:11:41:AD:A1:A8:44:C7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lRUfu3HkGy0QY9OxEUGtoahEx_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/sc9HrYmPiNt9nOmozSESrHN1O-A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/185fe9-2517-438c-8e26-9fd836e8b366/1/lRUfu3HkGy0QY9OxEUGtoahEx_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.231.57.0/24
IPv6:
2a10:b880::/32
Signature Algorithm: sha256WithRSAEncryption
b3:9f:d1:6c:26:f0:96:50:79:d9:d5:a0:c8:9d:25:c5:a8:16:
b7:a0:81:e3:25:c0:4c:7f:21:c0:52:13:50:9a:16:88:93:01:
cd:d1:98:bb:cd:24:e4:e3:8b:73:84:83:bd:59:65:00:79:6e:
2f:fe:cb:38:5e:af:c6:c6:50:1d:64:fb:41:72:fc:ee:ce:72:
76:b8:ff:73:36:ff:dd:bb:b0:b9:aa:9c:90:d4:c2:06:c1:4b:
a6:cd:12:cb:10:ac:09:5b:b8:39:4c:40:55:cc:18:d1:a4:bc:
9f:78:3c:a0:f9:dc:31:8f:74:50:8e:a0:dc:dd:d2:56:24:c5:
27:62:4b:66:26:36:d8:44:b2:19:6e:06:f1:e6:a5:3a:6e:5d:
d1:80:dc:a6:e3:f6:b9:39:64:e2:3c:01:fb:03:db:b9:b9:51:
5b:bc:3a:0d:64:48:34:73:ec:df:96:9a:e6:8f:bc:a5:68:d0:
5b:f6:04:b6:73:62:22:d7:20:0d:85:cc:02:bc:6c:83:ab:26:
aa:c9:e6:8a:46:51:00:52:af:37:97:b5:bf:5e:37:db:8e:f2:
00:29:04:41:18:20:3a:67:ca:db:73:8d:e8:9e:51:87:a3:a2:
1d:cc:e4:04:7c:32:78:ff:06:1a:d3:fc:12:43:ba:32:b5:dc:
ad:cb:79:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:30 2024 by rpki-client on console-ams.rpki-client.org