Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/tATS5UPAelmt8930MbWrSBjC_LI.roa
File: tATS5UPAelmt8930MbWrSBjC_LI.roa (raw, json)
Hash identifier: v9o53rMkiDwkEv37bdGkoupH9xICkpwululPuLSBSF0=
Subject key identifier: B4:04:D2:E5:43:C0:7A:59:AD:F3:DD:F4:31:B5:AB:48:18:C2:FC:B2
Certificate issuer: /CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Certificate serial: 01856EA687797178585EFECE431C5C620088
Authority key identifier: F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/tATS5UPAelmt8930MbWrSBjC_LI.roa
Signing time: Sun 01 Jan 2023 18:44:45 +0000
ROA not before: Sun 01 Jan 2023 18:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205220
IP address blocks: 185.93.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 May 2023 22:58:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:87:79:71:78:58:5e:fe:ce:43:1c:5c:62:00:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4d08a1e1cbc909254e9e6b9c939fd85a268b1e1
Validity
Not Before: Jan 1 18:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b404d2e543c07a59adf3ddf431b5ab4818c2fcb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a5:5b:34:55:df:21:ca:13:d8:36:ac:b1:de:
66:c4:2c:b3:1f:86:73:01:46:6b:41:36:20:e2:6e:
a1:89:61:a8:2d:72:b0:6a:10:b0:96:f2:4b:41:08:
26:d4:44:c9:14:40:2f:1a:51:6c:fa:92:99:85:c3:
03:11:00:e7:4c:7d:ba:ad:ab:41:2d:5c:e3:ce:93:
5f:5f:33:b2:74:d9:ee:2b:e6:df:f1:20:85:aa:4f:
df:90:9a:80:e0:42:1f:b0:79:eb:c8:9a:90:fb:01:
a4:e1:cb:8e:3e:29:c7:a6:14:b4:67:27:83:d2:8e:
76:c9:04:11:85:07:a0:14:16:5a:33:0b:d2:81:50:
90:ae:5c:3e:4e:d1:4f:4c:6f:70:2e:92:fb:c8:73:
b5:e5:d7:41:7a:5e:42:e7:26:42:cd:c8:27:c4:8f:
2e:4d:7c:ff:c4:96:45:42:4e:b4:d1:1d:77:b2:0b:
69:6e:88:68:48:99:de:33:4e:53:b5:77:b5:cc:81:
fa:43:f4:f2:82:e6:6d:d4:bf:71:9e:d9:e4:ee:44:
08:8b:a2:09:20:f1:4f:6e:81:7f:e6:9f:b2:a0:7d:
66:c5:9b:12:b1:06:5a:44:80:05:04:6a:f1:a9:f2:
5b:7a:c4:38:d8:b5:11:37:9d:dd:4f:fd:d0:bf:c1:
c8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:04:D2:E5:43:C0:7A:59:AD:F3:DD:F4:31:B5:AB:48:18:C2:FC:B2
X509v3 Authority Key Identifier:
keyid:F4:D0:8A:1E:1C:BC:90:92:54:E9:E6:B9:C9:39:FD:85:A2:68:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NCKHhy8kJJU6ea5yTn9haJoseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/tATS5UPAelmt8930MbWrSBjC_LI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/649fdc-0d3a-41ec-a1ce-dce947e294b6/1/9NCKHhy8kJJU6ea5yTn9haJoseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.223.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c6:84:2e:54:3f:46:87:3d:5d:53:09:70:7d:a5:dc:d3:4f:
4c:45:b5:da:fc:c1:bc:eb:d8:47:4a:3a:88:d6:79:23:66:28:
3a:d4:98:ad:aa:b9:10:9b:77:89:12:de:7f:e2:2b:66:51:82:
67:2d:00:39:80:33:f9:d8:f9:8a:7c:db:6e:00:64:cb:a5:fb:
7f:17:13:b8:a1:42:1b:79:ac:0a:81:61:4d:a7:4a:59:ca:6e:
38:51:06:a9:dc:e3:e6:05:9a:f0:35:cc:da:c3:78:0b:66:19:
ec:8a:66:ab:ff:ae:79:3f:04:68:dc:0c:fb:57:99:10:46:61:
0b:a0:19:df:3e:82:fc:85:17:00:d6:65:67:1b:73:e2:07:b0:
d5:04:f9:81:79:8a:f7:19:f9:0c:75:46:b8:1b:df:95:cf:4d:
7b:47:06:bb:2b:4b:dd:a2:10:26:5d:34:68:ad:b5:4b:6d:fa:
35:22:82:59:74:11:38:37:8f:11:ad:0c:70:45:43:c0:c7:ec:
a8:cb:da:81:33:97:27:e0:3c:3e:26:18:a7:b0:d9:da:b4:0f:
62:52:90:cb:d6:04:9d:ba:af:6f:a9:1e:28:31:db:73:bc:72:
24:16:1e:85:05:fb:d4:a3:ba:0f:26:e0:74:65:7e:df:58:55:
7a:a9:36:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:30 2024 by rpki-client on console-fra.rpki-client.org