Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/CupMHsU5-vlMp-9Q63ABD4RB-g4.roa
File: CupMHsU5-vlMp-9Q63ABD4RB-g4.roa (raw, json)
Hash identifier: uQqa5L3D19j+B332Zq5H3R3Obd3I12P0U9KKQ3Kx8i4=
Subject key identifier: 0A:EA:4C:1E:C5:39:FA:F9:4C:A7:EF:50:EB:70:01:0F:84:41:FA:0E
Certificate issuer: /CN=7cd8473e3d9ed423c41e7a858f4c0f0fb80c07ba
Certificate serial: 01856F2FFFE172DEA0AE086095652E3E0213
Authority key identifier: 7C:D8:47:3E:3D:9E:D4:23:C4:1E:7A:85:8F:4C:0F:0F:B8:0C:07:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/CupMHsU5-vlMp-9Q63ABD4RB-g4.roa
Signing time: Sun 01 Jan 2023 21:14:54 +0000
ROA not before: Sun 01 Jan 2023 21:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56596
IP address blocks: 185.172.80.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:ff:e1:72:de:a0:ae:08:60:95:65:2e:3e:02:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cd8473e3d9ed423c41e7a858f4c0f0fb80c07ba
Validity
Not Before: Jan 1 21:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0aea4c1ec539faf94ca7ef50eb70010f8441fa0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:7b:f5:bf:50:9b:16:bb:83:d7:e1:e7:6d:83:
28:55:60:ba:c5:bb:d1:47:30:8d:e4:69:ef:a3:2b:
e8:88:e7:bd:77:f0:26:c2:58:ae:ca:90:6d:47:7d:
ca:25:1e:34:36:55:2d:b8:31:5c:83:a9:ea:61:5d:
c6:06:27:46:01:30:c7:3d:83:96:4b:fa:2b:d3:e3:
45:57:3c:86:53:ab:3d:93:69:01:23:95:04:7b:97:
60:f4:73:e6:c1:53:96:c7:aa:a6:40:46:90:6f:16:
2f:d9:f3:54:5f:c7:03:42:35:84:ac:6a:3b:5f:57:
85:ee:db:9e:d5:2b:ff:2e:05:e0:73:b0:21:b5:e6:
df:c6:8c:3d:24:c7:b1:d3:dc:97:f6:dd:e7:84:9b:
b5:ed:ad:b6:43:9f:01:b9:fa:72:37:b1:6f:40:cb:
89:ff:69:83:e1:d1:25:cd:31:c9:d1:85:06:ba:1b:
af:59:59:a9:31:6b:ab:a6:9a:98:95:51:94:2c:a8:
54:ea:34:1a:8d:66:23:f0:61:26:c3:85:a0:ee:fa:
f2:f4:f0:fd:af:77:63:1d:59:2a:1d:0a:d3:b5:ce:
a1:8f:7f:0a:e1:c0:64:d6:f8:dd:b5:51:10:fa:61:
7c:c9:06:d8:e3:70:76:03:8e:12:ff:34:85:5a:91:
65:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EA:4C:1E:C5:39:FA:F9:4C:A7:EF:50:EB:70:01:0F:84:41:FA:0E
X509v3 Authority Key Identifier:
keyid:7C:D8:47:3E:3D:9E:D4:23:C4:1E:7A:85:8F:4C:0F:0F:B8:0C:07:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fNhHPj2e1CPEHnqFj0wPD7gMB7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/CupMHsU5-vlMp-9Q63ABD4RB-g4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/8efc2e-9d96-41a0-b287-9757694d291d/1/fNhHPj2e1CPEHnqFj0wPD7gMB7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.80.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:0a:77:53:e2:d3:8b:a5:a0:d4:22:16:45:57:6c:5b:97:f5:
ce:37:57:35:57:96:cb:58:c0:db:90:74:be:74:69:a7:2c:c4:
91:ba:78:aa:64:b8:d6:1e:6c:ce:d3:7a:2c:73:92:7d:d0:44:
24:65:08:ca:c8:84:f7:b5:61:c8:cf:46:d7:fc:d1:d3:11:f3:
3f:b1:bf:90:6a:cf:d7:f1:09:32:87:0b:d2:54:9f:56:1a:45:
00:5a:ca:a7:a0:66:8a:1f:51:a4:9a:be:92:41:4b:aa:69:71:
ce:ae:21:6f:8a:b6:32:3c:1c:88:ce:74:78:bd:c7:1e:cd:4d:
17:65:e1:5c:f4:d3:31:b0:73:f9:34:b5:d7:17:5a:82:8f:46:
8d:b5:ca:10:e9:7a:7f:07:4d:ce:95:e4:fd:be:27:fa:a2:29:
cc:64:bf:25:83:f7:31:5c:77:61:71:66:ff:61:c3:56:d8:39:
57:9d:94:bd:f4:6e:71:b4:9f:9e:47:52:db:c2:0b:d9:5f:96:
61:3e:35:99:36:33:29:c1:bb:e1:1d:76:90:11:42:ab:a7:4e:
46:f4:6d:77:15:c6:24:fc:84:a6:88:3f:79:f4:ee:13:06:6a:
c1:b7:6c:bb:41:62:7a:a9:27:75:51:29:39:07:b8:55:26:9c:
41:5a:95:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:37 2024 by rpki-client on console-ams.rpki-client.org