Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/aX8ByvSD8DhrAaaowsTlvoO-4ZY.roa
File: aX8ByvSD8DhrAaaowsTlvoO-4ZY.roa (raw, json)
Hash identifier: z06KRlmukApYAOdiH0oV3ejNS/UPTVgdvf/M6PW+WOQ=
Subject key identifier: 69:7F:01:CA:F4:83:F0:38:6B:01:A6:A8:C2:C4:E5:BE:83:BE:E1:96
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018675E8CFA14D71001F0C85CB398096AB00
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/aX8ByvSD8DhrAaaowsTlvoO-4ZY.roa
Signing time: Tue 21 Feb 2023 21:37:17 +0000
ROA not before: Tue 21 Feb 2023 21:37:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 185.255.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Mar 2023 09:20:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:75:e8:cf:a1:4d:71:00:1f:0c:85:cb:39:80:96:ab:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Feb 21 21:37:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=697f01caf483f0386b01a6a8c2c4e5be83bee196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:25:21:5d:f0:92:8e:ea:9e:3b:22:c2:95:4e:
bc:95:b6:2c:99:3b:cc:f4:d0:35:7f:f0:d3:73:c4:
1f:10:7e:f0:09:b2:6e:41:a4:86:35:29:5d:a3:77:
b4:a3:a8:a5:8d:98:c8:4f:33:6d:7f:c9:e2:67:63:
ef:fe:63:3b:bc:f9:08:7a:34:75:8e:8e:61:ad:d1:
dd:fa:64:97:d4:6d:2c:fb:be:d7:91:05:98:fb:a1:
97:f7:35:51:21:31:88:d0:98:82:64:b3:97:cd:a2:
ea:aa:d9:8d:d3:09:9a:38:96:19:5f:bd:d9:52:b7:
bf:26:db:33:e3:0b:48:8d:7e:99:70:fc:48:b3:f7:
59:dc:ed:3c:fe:3b:2b:10:3b:26:d0:e3:ca:5c:b2:
76:e4:0d:2a:a9:02:ae:5a:e5:c1:81:4a:35:41:10:
12:d3:b6:94:73:c5:c5:4d:1c:4f:67:5f:72:22:06:
e3:6f:0a:5e:b9:c7:0e:a3:56:59:18:3f:fb:c7:6d:
45:54:15:10:c3:a2:6f:30:31:30:71:eb:0a:db:bd:
bb:6f:ac:f0:c7:8b:f8:ea:54:37:2c:30:d5:95:88:
1f:80:7e:3f:56:ec:78:67:19:ac:ed:86:1f:b5:36:
1c:bb:79:0b:4f:74:8e:fc:a1:1e:41:fd:95:97:09:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7F:01:CA:F4:83:F0:38:6B:01:A6:A8:C2:C4:E5:BE:83:BE:E1:96
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/aX8ByvSD8DhrAaaowsTlvoO-4ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.5.0/24
Signature Algorithm: sha256WithRSAEncryption
37:cb:8a:8b:7a:06:1d:a7:ba:70:c0:90:1c:59:17:6d:fc:a6:
2c:1b:fd:14:98:e2:87:e9:20:8b:b8:b0:f6:f7:c6:99:0b:29:
11:42:81:93:d8:f6:cc:27:19:f4:42:b3:08:07:4a:9a:8e:18:
ce:d2:0a:e1:7a:a8:48:f1:ec:26:4f:27:3b:c2:84:3a:27:68:
ba:bf:2d:ef:d7:2f:5b:88:ae:b3:13:87:43:3a:81:46:f5:12:
1e:ee:c2:4b:c5:fb:73:da:71:45:50:ef:99:3b:d1:2f:00:dd:
55:73:3a:01:ae:22:ba:6e:c4:47:dd:4b:84:72:7c:cb:9e:ed:
a0:f2:32:61:ac:ff:7c:28:52:af:f5:62:6c:01:e0:8c:2a:83:
c4:95:f3:63:69:f8:01:77:c4:0c:b0:98:47:3f:b4:2d:e8:62:
9d:bc:f4:8c:57:cb:9d:cc:96:41:ef:f4:82:b7:83:8d:76:37:
d5:cd:d0:a6:b5:c5:25:de:e9:70:7e:b9:f9:5c:f1:59:e3:ad:
a5:31:7d:01:0f:c3:e5:5a:ca:2e:7e:db:fa:73:da:19:ec:92:
87:91:2d:08:6f:b3:c7:09:6e:b0:3f:91:4a:57:b6:9c:6b:86:
a3:f0:24:96:50:2c:f8:6b:7a:5c:5e:e0:b5:61:92:42:92:8d:
ca:66:22:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org