Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/101SqVtp2iUMaiPh7laHLFwztk0.roa
File: 101SqVtp2iUMaiPh7laHLFwztk0.roa (raw, json)
Hash identifier: N3h2FP4DWZ8FmdrlNFS/z2reil2t38Zmr1iukS616rE=
Subject key identifier: D7:4D:52:A9:5B:69:DA:25:0C:6A:23:E1:EE:56:87:2C:5C:33:B6:4D
Certificate issuer: /CN=c9c02d4234f4bc4e87555e41c03779d5620a5155
Certificate serial: 01885544609139C8B15C086CCA114AF6BBF5
Authority key identifier: C9:C0:2D:42:34:F4:BC:4E:87:55:5E:41:C0:37:79:D5:62:0A:51:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ycAtQjT0vE6HVV5BwDd51WIKUVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/101SqVtp2iUMaiPh7laHLFwztk0.roa
Signing time: Thu 25 May 2023 23:35:24 +0000
ROA not before: Thu 25 May 2023 23:35:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49775
IP address blocks: 185.194.252.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:55:44:60:91:39:c8:b1:5c:08:6c:ca:11:4a:f6:bb:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9c02d4234f4bc4e87555e41c03779d5620a5155
Validity
Not Before: May 25 23:35:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d74d52a95b69da250c6a23e1ee56872c5c33b64d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b9:3f:f1:c0:00:b0:3a:67:c9:7f:4e:22:4a:
4e:9f:5b:a9:06:54:70:72:79:bc:95:5e:59:17:0a:
0c:bd:ca:20:05:88:78:ba:33:f5:16:4b:29:86:b2:
09:4e:b3:e9:a3:86:91:95:09:ee:f7:aa:f4:b5:65:
f1:df:53:c8:43:9e:97:65:19:79:66:7c:5b:0d:7c:
c2:31:09:c4:f5:ef:54:c9:91:9c:3c:6d:24:63:25:
64:2f:5b:30:77:b2:b1:01:52:fe:4a:aa:6b:82:d3:
fb:0d:ca:f4:48:d3:23:38:8b:ab:06:37:87:46:a1:
d1:d6:d8:4f:81:51:2c:79:16:51:ee:a3:82:e1:f6:
d2:f4:d0:d5:23:e9:1a:e7:67:60:29:21:74:1d:21:
e6:e9:df:77:6f:b8:3e:d3:7c:59:e4:e3:81:33:b9:
fb:75:7a:18:7a:f1:f7:96:2a:02:32:aa:12:ce:32:
92:96:4b:56:a4:57:29:e1:7e:67:3e:2d:dd:a0:14:
ce:3d:8f:02:3d:04:09:a6:bc:58:e0:f2:74:dc:1d:
e1:31:df:f7:1e:34:4f:34:01:85:c9:5b:ac:ab:a2:
72:f3:c1:08:fb:52:d8:54:32:fd:de:45:ff:43:ae:
1f:6e:05:2a:8a:08:8f:02:ee:13:d3:17:bb:58:03:
e1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4D:52:A9:5B:69:DA:25:0C:6A:23:E1:EE:56:87:2C:5C:33:B6:4D
X509v3 Authority Key Identifier:
keyid:C9:C0:2D:42:34:F4:BC:4E:87:55:5E:41:C0:37:79:D5:62:0A:51:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ycAtQjT0vE6HVV5BwDd51WIKUVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/101SqVtp2iUMaiPh7laHLFwztk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/685232-f5e9-41d6-b94e-1a6ce5faf916/1/ycAtQjT0vE6HVV5BwDd51WIKUVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.194.252.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:5c:60:bb:18:14:76:70:7e:a6:00:1d:72:c5:16:56:e6:24:
99:64:ac:be:bf:20:8b:e8:6c:77:d5:01:b3:18:a0:a1:48:d1:
ee:9b:09:23:81:ef:cb:37:16:da:a8:a2:f4:7b:44:d0:b6:b0:
11:9f:1a:50:12:4e:5a:0e:d5:ef:fb:49:01:f6:01:d6:a3:25:
a8:10:32:fd:46:4d:64:52:6c:b4:ee:a6:97:17:12:49:7e:f7:
6f:1b:de:0e:2e:17:27:39:16:dc:83:a9:ec:25:a5:12:54:f0:
ef:b9:61:1c:03:25:60:bd:bc:87:d3:71:08:d3:c8:9c:69:9a:
eb:02:a2:1a:40:3b:6b:5d:0b:b0:18:2c:a5:dc:84:11:29:33:
4b:af:73:ed:e4:16:6c:e9:6f:2d:a3:45:df:6a:06:4a:6e:9a:
6f:79:c5:dd:1c:bb:86:22:4e:2a:4d:fe:60:eb:98:d2:2d:a1:
44:67:80:21:41:6c:93:f1:77:09:cb:4b:35:6f:78:41:a5:ae:
44:4f:b0:bd:0c:ea:e9:e3:5f:1a:76:5b:3b:eb:b1:b0:3b:50:
be:51:14:cc:3f:c0:d6:e6:bf:4f:84:46:b9:56:fd:56:6f:e6:
90:3e:d7:61:0a:3b:dc:f8:7c:c6:7c:aa:73:7e:92:0f:61:e5:
96:8c:5d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:19:25 2024 by rpki-client on console-ams.rpki-client.org