Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/2YCuInuDyzRnuj7WBYyHxXG5Zqo.roa
File: 2YCuInuDyzRnuj7WBYyHxXG5Zqo.roa (raw, json)
Hash identifier: b2cQoD1uZIJP3mrvUt20wMqUZLe4As7uSb8v9bTnjTc=
Subject key identifier: D9:80:AE:22:7B:83:CB:34:67:BA:3E:D6:05:8C:87:C5:71:B9:66:AA
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 01857082C42F089790C316D588514D3F360D
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/2YCuInuDyzRnuj7WBYyHxXG5Zqo.roa
Signing time: Mon 02 Jan 2023 03:24:56 +0000
ROA not before: Mon 02 Jan 2023 03:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31034
IP address blocks: 185.94.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:c4:2f:08:97:90:c3:16:d5:88:51:4d:3f:36:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Jan 2 03:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d980ae227b83cb3467ba3ed6058c87c571b966aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:33:ea:64:96:e7:cf:37:57:95:ca:7c:64:
6c:5e:9e:85:fa:a2:ec:0e:ed:4d:60:55:a6:1d:b6:
98:9d:7a:13:ad:ea:0d:9c:a1:60:e8:f8:de:8b:3c:
bf:61:41:35:05:89:c4:5e:7d:f3:e6:ea:4f:29:70:
ec:da:17:67:a3:54:76:fd:b6:1d:67:f3:be:47:49:
e7:d8:37:d8:a6:6c:1a:1b:d4:34:9f:5c:f0:46:1e:
57:a7:f5:df:2f:a8:6a:e9:4a:20:df:13:c9:da:27:
d8:82:be:24:77:10:a3:e2:6e:6d:7b:01:ea:0f:19:
4c:1e:83:fc:db:08:d0:62:25:c3:ea:b7:1e:4a:15:
8e:6c:8d:e1:1c:a5:09:5e:33:04:0f:bf:83:a3:9b:
d4:7b:24:cf:32:7e:48:4d:8a:6f:5f:b2:c1:ab:5f:
e1:72:06:b9:46:34:ed:60:eb:b3:9f:22:96:f6:4c:
22:d1:00:83:a7:23:e9:db:c4:f1:e4:82:40:04:4c:
e1:1b:34:ab:eb:08:df:8f:52:3d:b5:30:57:bc:44:
36:db:87:7f:ba:1d:59:9a:91:32:75:9e:a1:fe:80:
63:74:ab:31:01:2e:3b:86:8c:ee:06:a2:07:f7:48:
42:97:10:02:c5:37:33:d3:59:0b:fc:ee:48:ca:6f:
ee:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:80:AE:22:7B:83:CB:34:67:BA:3E:D6:05:8C:87:C5:71:B9:66:AA
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/2YCuInuDyzRnuj7WBYyHxXG5Zqo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.83.0/24
Signature Algorithm: sha256WithRSAEncryption
74:9a:f1:0e:02:b1:7d:e8:19:d8:40:b9:7b:56:5f:1d:22:2b:
68:de:42:ac:07:bf:dc:30:14:c5:5c:fa:bc:87:55:92:05:05:
b0:ae:b5:a2:21:14:27:5a:0b:46:32:51:97:96:26:50:0b:54:
fb:ba:eb:9a:ee:c4:3a:22:b6:68:a4:70:4e:aa:04:c9:30:75:
99:c0:18:bf:8c:3a:fe:c4:fd:ab:47:cf:5d:3f:a0:ea:8b:bc:
32:39:de:cc:9e:b4:3e:76:d7:3e:98:bf:c7:bc:f2:11:19:4f:
cf:b4:13:42:17:db:2f:64:0b:31:0f:65:cc:23:d1:c6:c7:30:
f7:33:f0:7f:d1:68:23:0c:6d:32:c9:22:ff:a4:9f:3f:5c:ea:
52:23:ef:61:e3:27:16:79:c9:c6:9d:3d:2f:76:16:b5:e0:3e:
f2:17:a6:4a:66:a0:49:b9:d2:f5:c4:40:d9:30:8c:af:f1:ae:
f8:e8:13:d6:cd:f2:86:73:15:80:37:7d:13:dd:74:02:f8:d0:
f7:83:d9:31:dd:41:d6:3e:9c:be:2f:76:9a:f5:53:ff:55:7d:
a9:16:0c:b7:f4:f1:bd:38:bd:cc:78:42:12:e0:02:85:d0:ef:
95:f0:c7:63:b1:eb:15:2a:bf:ef:fe:4b:71:84:02:69:fa:92:
65:df:25:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org