Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/AcUD7OfWiabJIXFBbQvw1t8VpYw.roa
File: AcUD7OfWiabJIXFBbQvw1t8VpYw.roa (raw, json)
Hash identifier: WMDKGXWVTIoBr+YQfXDPA/h7ovh8HVt3Ids1hj2d9Ew=
Subject key identifier: 01:C5:03:EC:E7:D6:89:A6:C9:21:71:41:6D:0B:F0:D6:DF:15:A5:8C
Certificate issuer: /CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Certificate serial: 01856CAF1BD2ECB00C36112CE47618D5E6D1
Authority key identifier: 76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/AcUD7OfWiabJIXFBbQvw1t8VpYw.roa
Signing time: Sun 01 Jan 2023 09:34:53 +0000
ROA not before: Sun 01 Jan 2023 09:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.213.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 15 Jan 2023 04:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:1b:d2:ec:b0:0c:36:11:2c:e4:76:18:d5:e6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767f3bd4bfbd3071c38cd4d7092bd3490920c3d9
Validity
Not Before: Jan 1 09:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01c503ece7d689a6c92171416d0bf0d6df15a58c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:21:62:80:b0:8c:04:30:79:9e:49:27:d6:c6:
fc:c9:92:fc:6b:5b:c1:0b:74:4b:91:0a:4b:85:1c:
a0:52:58:6b:09:61:66:22:33:3e:c4:b0:bc:d5:4f:
78:41:47:a7:31:a0:9b:e6:1e:67:1f:ee:cf:0c:7d:
d8:8c:48:35:51:2f:60:04:92:1a:29:15:2e:66:6a:
11:9d:44:d7:65:91:c6:29:41:dd:a7:53:90:06:cb:
60:bb:bd:25:62:dc:ea:74:4b:5d:e4:be:f3:6b:18:
77:91:b3:d5:e2:ba:36:7c:f5:5f:ea:c9:58:33:75:
52:fe:39:dc:22:99:c3:91:94:06:a1:78:ce:52:11:
b3:43:a4:e7:1f:bd:e9:61:fc:24:39:01:ef:71:1f:
fe:4f:b3:b1:fa:67:ef:4e:b0:02:55:c6:df:2b:a0:
ff:a5:46:7f:74:b6:84:99:08:3d:d5:9b:10:b7:ad:
51:21:f1:d6:d7:98:d4:7f:93:ab:f1:bc:5a:58:49:
48:ed:c2:3f:b3:a5:39:b6:2a:28:7d:f6:17:04:5e:
88:48:b0:b1:4e:e9:12:1b:8f:b5:97:71:17:c7:fd:
1d:e3:20:0b:f8:0a:86:17:e3:4e:fb:61:f3:d3:64:
bc:5f:85:f1:65:8e:45:b4:41:1b:72:2f:34:13:87:
74:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C5:03:EC:E7:D6:89:A6:C9:21:71:41:6D:0B:F0:D6:DF:15:A5:8C
X509v3 Authority Key Identifier:
keyid:76:7F:3B:D4:BF:BD:30:71:C3:8C:D4:D7:09:2B:D3:49:09:20:C3:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dn871L-9MHHDjNTXCSvTSQkgw9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/AcUD7OfWiabJIXFBbQvw1t8VpYw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/ff5cc6-8f61-447b-b658-4fb559b3b9b3/1/dn871L-9MHHDjNTXCSvTSQkgw9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.193.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:6d:a2:fc:ca:18:b2:7b:e1:a1:03:cb:58:b6:3c:83:5d:83:
f9:9d:9c:2e:5d:dc:b5:80:9c:09:8d:7e:31:7e:a4:ea:6e:26:
19:bd:d3:38:20:d0:ad:d0:26:33:66:af:b4:4a:54:d0:bf:84:
aa:01:30:39:03:16:8e:48:bf:4a:d8:72:e0:b8:fc:a3:e5:86:
1b:00:d7:22:b0:83:0b:33:4d:9e:f4:be:bf:fc:4e:f4:7f:79:
6a:69:82:4c:36:ae:3a:2c:0f:68:97:8c:4a:6b:15:8e:b4:7d:
ff:db:a5:03:95:1f:83:26:c5:cf:01:5e:43:31:b7:b1:1d:2e:
90:72:2d:f3:e0:37:ea:8f:ba:1f:b1:04:8d:ae:39:c4:5c:4d:
9d:b0:6d:7c:c4:fc:0e:87:14:38:27:66:d2:00:ec:54:25:8f:
46:4b:95:a2:b0:24:44:82:d6:c8:43:ae:ea:7a:43:65:32:a7:
2a:58:f2:72:cf:28:da:28:c8:d8:6d:0d:f0:6e:8d:fb:46:33:
27:73:49:45:71:f9:f4:c6:10:3f:44:b0:59:e9:bc:19:30:c9:
ef:21:70:4a:4e:c9:30:f0:97:ad:08:b9:a9:da:55:cb:aa:e1:
01:13:a5:ab:1d:e5:3e:9e:d3:3d:e3:19:7a:53:7a:da:ae:2a:
0b:8f:30:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:24 2024 by rpki-client on console-ams.rpki-client.org