Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/Di9eLy9W_yuUs9JHcL_BRvi37vM.roa
File: Di9eLy9W_yuUs9JHcL_BRvi37vM.roa (raw, json)
Hash identifier: 26eN5aA8bJ4OQGrG+80Zea5ufBUjOSxF/l9JixHiKM0=
Subject key identifier: 0E:2F:5E:2F:2F:56:FF:2B:94:B3:D2:47:70:BF:C1:46:F8:B7:EE:F3
Certificate issuer: /CN=8323b9731b196b1acbc829f5b28b325fd9d3e3d4
Certificate serial: 01856EC1FE878F530ED99D439094FCF43B69
Authority key identifier: 83:23:B9:73:1B:19:6B:1A:CB:C8:29:F5:B2:8B:32:5F:D9:D3:E3:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyO5cxsZaxrLyCn1sosyX9nT49Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/Di9eLy9W_yuUs9JHcL_BRvi37vM.roa
Signing time: Sun 01 Jan 2023 19:14:45 +0000
ROA not before: Sun 01 Jan 2023 19:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8468
IP address blocks: 185.146.44.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c1:fe:87:8f:53:0e:d9:9d:43:90:94:fc:f4:3b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8323b9731b196b1acbc829f5b28b325fd9d3e3d4
Validity
Not Before: Jan 1 19:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e2f5e2f2f56ff2b94b3d24770bfc146f8b7eef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:76:4a:76:90:c0:4a:ca:c9:d0:db:81:68:38:
10:76:a6:2e:32:bb:ad:c4:61:f2:8b:25:a1:dd:46:
57:47:ca:cd:53:d2:3a:c7:aa:38:33:aa:7e:c2:76:
7d:24:7b:2f:9d:fc:a8:1e:ec:40:16:c5:12:03:26:
9a:0e:09:17:4c:5f:e9:52:13:b2:aa:cb:1b:13:26:
56:20:4b:14:0a:a7:f3:7a:a6:f9:99:4e:70:e5:ef:
21:50:d1:24:0f:c5:59:5c:b9:7b:74:a4:fa:71:c8:
ec:a0:c8:5b:81:13:8c:84:a2:54:2f:80:87:b6:16:
03:47:4d:27:63:6f:58:c9:74:b9:79:f2:46:8b:35:
ed:7d:f5:e2:55:6f:7f:80:ee:5b:ff:65:2e:ac:96:
50:e5:d7:a8:26:c6:d8:65:d8:12:f2:0d:d0:b4:7a:
7b:aa:cd:de:71:0f:40:8a:ba:6e:84:54:8b:a1:a4:
56:e3:7b:df:0e:b1:d6:77:d5:f2:92:1f:b6:a8:b3:
a7:44:d9:55:08:c1:8b:5e:c3:42:82:5e:16:f6:01:
63:cb:15:7e:24:01:29:ae:85:ce:a8:36:39:aa:0d:
f8:ab:49:55:08:35:c9:9b:12:fd:f1:af:ab:89:73:
68:b5:8d:24:cf:b9:e7:12:54:17:1e:67:f8:49:1c:
a0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:2F:5E:2F:2F:56:FF:2B:94:B3:D2:47:70:BF:C1:46:F8:B7:EE:F3
X509v3 Authority Key Identifier:
keyid:83:23:B9:73:1B:19:6B:1A:CB:C8:29:F5:B2:8B:32:5F:D9:D3:E3:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyO5cxsZaxrLyCn1sosyX9nT49Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/Di9eLy9W_yuUs9JHcL_BRvi37vM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/da1f23-3694-4f59-85cf-ca1e5f081950/1/gyO5cxsZaxrLyCn1sosyX9nT49Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.146.44.0/23
Signature Algorithm: sha256WithRSAEncryption
15:7f:1b:eb:75:3f:71:82:1d:bc:ee:36:7e:1c:d6:02:1c:ba:
7c:dd:e2:04:a6:ee:09:37:47:ec:8b:d0:0f:55:33:1f:17:03:
7d:02:b7:37:a6:60:8c:44:53:b6:27:11:44:94:3c:6b:82:e7:
3c:a6:96:df:c6:55:e0:c3:40:0d:eb:b7:47:46:d5:e2:45:dd:
9e:55:d4:3e:aa:95:1f:71:c4:ae:9d:92:39:99:91:a4:2a:16:
28:4f:41:35:a8:cd:11:41:83:ab:00:16:03:be:83:2e:a6:f7:
3d:ee:bb:f3:97:4f:77:0d:25:0d:46:7a:39:92:6a:6b:09:2b:
d0:2c:98:2f:d1:47:0c:68:2c:19:7e:f5:51:59:92:05:6c:a5:
b0:59:dc:9a:ff:34:5d:9e:55:e5:9f:6f:f0:11:9d:e7:6c:c1:
41:d7:99:d7:7a:2d:af:0f:b3:51:57:f8:f2:e7:c2:fc:14:1e:
cb:e1:ea:a7:c8:0b:f0:11:8c:ab:80:1c:be:2e:01:27:0b:21:
63:79:2d:af:3a:dc:e0:d6:24:a6:1c:7c:39:7f:e5:10:4b:cc:
15:23:f9:ea:29:aa:53:3d:a5:76:07:f9:32:c4:3f:8d:c9:93:
53:8a:74:fe:79:2d:db:9a:02:fb:77:59:d9:c0:18:55:ae:41:
f7:bb:12:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:14 2024 by rpki-client on console-ams.rpki-client.org