Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/TtTP723itMOFPyblum5DoPrvhYs.roa
File: TtTP723itMOFPyblum5DoPrvhYs.roa (raw, json)
Hash identifier: WKZTZMHwPJz6pntX2RrraoClIBsJY2GeCya6uITiCTg=
Subject key identifier: 4E:D4:CF:EF:6D:E2:B4:C3:85:3F:26:E5:BA:6E:43:A0:FA:EF:85:8B
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018570C2CBCA8947D32E233A86C675A4D58F
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/TtTP723itMOFPyblum5DoPrvhYs.roa
Signing time: Mon 02 Jan 2023 04:34:52 +0000
ROA not before: Mon 02 Jan 2023 04:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Aug 2023 09:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:cb:ca:89:47:d3:2e:23:3a:86:c6:75:a4:d5:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Jan 2 04:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ed4cfef6de2b4c3853f26e5ba6e43a0faef858b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a6:f7:36:dd:84:ce:2a:2d:e2:42:8f:e1:cd:
c8:7e:f3:be:32:7e:47:cb:c0:a0:83:b9:5f:c2:b5:
2b:d9:60:30:cc:ef:eb:1f:e2:92:b2:76:20:12:3f:
e8:89:a2:20:65:3b:15:ab:2a:90:96:c5:59:ec:0a:
c6:70:55:3d:29:a8:4c:f1:c0:cb:50:32:51:2e:bb:
b9:d4:6a:05:76:6f:b8:6b:22:35:67:47:90:bc:c6:
63:78:ba:71:8e:52:e8:c3:d9:6e:35:84:c9:38:bf:
a7:16:0f:5f:ed:4d:13:69:7c:72:65:a1:4a:ae:2a:
6e:ef:5c:d2:bf:37:64:3b:45:2b:88:4f:c5:48:13:
45:f1:cd:b0:cf:f7:61:d0:a4:9d:d5:e4:18:d0:a7:
c2:2c:a6:ad:55:ea:41:86:00:76:97:26:ba:11:1e:
38:67:6e:c3:e0:01:42:d9:9e:ae:f9:e0:ab:ed:28:
ce:4b:ce:12:b4:f3:a9:90:82:8b:70:3e:10:8a:83:
35:90:a7:1e:3f:85:f1:eb:28:73:5a:20:42:1f:29:
2f:a8:4f:c3:b4:9a:f4:c3:fa:f0:0d:a8:a5:05:29:
aa:8e:fc:64:20:22:55:3f:0e:a1:01:1e:40:b1:a4:
24:91:9e:f2:cd:7d:e8:3f:af:ad:85:39:ae:48:72:
3f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D4:CF:EF:6D:E2:B4:C3:85:3F:26:E5:BA:6E:43:A0:FA:EF:85:8B
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/TtTP723itMOFPyblum5DoPrvhYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:e9:38:df:23:e1:ac:11:3a:2c:e1:41:1d:69:4e:da:61:75:
32:28:4b:44:19:ef:14:28:d0:93:fe:c3:bb:60:0f:3c:a0:b1:
d8:6a:55:e1:4d:97:2d:db:c7:15:6d:57:74:a8:04:23:89:da:
89:8f:88:ca:5a:b2:d5:a0:99:da:7e:0f:36:35:0f:26:df:37:
14:e2:1b:bb:03:92:ac:76:9c:45:3b:12:c2:bc:62:0a:69:8d:
bd:3b:2f:8e:1a:c2:31:37:82:a4:2d:6d:05:79:45:1a:11:c3:
ec:4d:d5:7a:4a:c1:0b:72:97:48:c7:0f:b7:22:b8:86:df:fc:
fa:cf:aa:5b:08:6c:b0:21:bf:4a:bb:d8:80:84:98:dc:5e:c2:
fc:6c:d9:95:82:77:a6:61:fd:03:be:e2:9d:1f:08:a8:d4:8e:
4f:5d:be:60:6c:dc:a2:0a:61:a5:69:5c:75:3c:5f:16:ea:8d:
ed:9f:a1:1e:fd:06:71:3f:12:5e:c5:32:40:e9:ef:1b:4f:3e:
00:69:8e:e2:0e:cc:ee:08:1f:26:93:3e:27:ad:ed:0d:3f:70:
db:33:96:d8:a3:77:71:34:04:8e:9e:93:50:62:61:7d:03:42:
34:24:da:89:01:74:4d:9f:fa:b1:10:84:57:53:ca:5e:34:85:
cd:e3:b7:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:18 2024 by rpki-client on console-ams.rpki-client.org