Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/y-uzhsD-hbIB2iaJmsOPoOCMhKk.roa
File: y-uzhsD-hbIB2iaJmsOPoOCMhKk.roa (raw, json)
Hash identifier: tcTicl4zeVRDOHm8Gw/IOqGXKgOH/ZZUcq4FIP+sFB0=
Subject key identifier: CB:EB:B3:86:C0:FE:85:B2:01:DA:26:89:9A:C3:8F:A0:E0:8C:84:A9
Certificate issuer: /CN=c77fe005d7e58ec033ca9aba87e0606021533617
Certificate serial: 018B28C75BC060B2BAF32B0FC70FA7C00730
Authority key identifier: C7:7F:E0:05:D7:E5:8E:C0:33:CA:9A:BA:87:E0:60:60:21:53:36:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3_gBdfljsAzypq6h-BgYCFTNhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/y-uzhsD-hbIB2iaJmsOPoOCMhKk.roa
Signing time: Fri 13 Oct 2023 11:23:55 +0000
ROA not before: Fri 13 Oct 2023 11:23:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201241
IP address blocks: 185.235.44.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:c7:5b:c0:60:b2:ba:f3:2b:0f:c7:0f:a7:c0:07:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c77fe005d7e58ec033ca9aba87e0606021533617
Validity
Not Before: Oct 13 11:23:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cbebb386c0fe85b201da26899ac38fa0e08c84a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:d4:6e:63:f7:f4:d4:34:2f:12:7b:46:ae:c1:
f9:7e:45:58:10:c2:fd:41:a0:1e:a9:7d:94:2e:4a:
09:8d:88:4d:e5:9b:ed:08:c9:8e:c8:8f:50:d5:5a:
4d:45:c2:ee:c8:e3:b8:ca:72:21:e1:fc:c1:e5:c6:
eb:a9:75:ae:07:a2:fe:80:98:35:f1:b6:61:40:84:
b1:1f:79:cd:f8:aa:4d:9a:a5:95:00:ce:7c:51:b3:
32:bb:8f:c0:04:21:e8:28:23:63:21:fc:92:04:36:
ea:56:6a:fe:63:fa:a5:d2:cb:1d:63:03:ba:c8:63:
ba:0b:be:f6:15:a8:d3:fb:1d:47:69:89:b7:f7:80:
1e:28:3f:e7:0a:55:e9:fc:48:cb:fe:54:44:48:48:
89:60:e8:97:2e:67:5d:49:94:db:b7:4b:5c:ca:0a:
5a:a2:31:f9:5f:43:fb:ae:5d:3d:57:1c:9d:3b:7a:
8b:58:26:bc:58:f8:6d:44:4f:d5:89:ac:e0:f2:67:
61:f0:cd:37:8d:d7:6f:4d:6d:2e:02:4e:43:6b:66:
8e:cb:56:0b:a8:4c:0e:c1:26:ae:33:58:26:36:e7:
65:e7:85:44:ef:e2:c4:cd:9d:81:1f:9f:20:5e:e3:
8d:d1:cb:e4:f3:ae:1a:8a:21:fd:2a:85:e8:3b:ee:
43:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:EB:B3:86:C0:FE:85:B2:01:DA:26:89:9A:C3:8F:A0:E0:8C:84:A9
X509v3 Authority Key Identifier:
keyid:C7:7F:E0:05:D7:E5:8E:C0:33:CA:9A:BA:87:E0:60:60:21:53:36:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3_gBdfljsAzypq6h-BgYCFTNhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/y-uzhsD-hbIB2iaJmsOPoOCMhKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/x3_gBdfljsAzypq6h-BgYCFTNhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.44.0/23
Signature Algorithm: sha256WithRSAEncryption
98:14:dc:e0:5c:b3:b1:29:ec:46:0f:c1:c0:8d:46:f2:05:d2:
bf:e9:3f:f6:91:e2:c1:56:60:36:40:54:16:be:d9:29:d4:b9:
d6:1e:42:45:ac:27:a8:80:fc:bd:f9:a9:3e:e7:ae:31:6f:61:
ea:fc:c2:eb:37:f5:ab:57:1e:e2:ad:dc:bd:ea:9c:bb:db:47:
1b:f2:f1:82:7c:ff:8b:33:70:76:38:87:5d:0c:27:2d:d4:36:
4f:22:a4:57:d6:71:fa:88:97:a3:1a:d3:a0:17:e5:ca:8f:86:
3f:51:b1:5c:45:ff:8f:42:f1:ac:23:29:fe:94:09:79:35:eb:
f2:89:27:50:bd:8c:64:cd:31:e8:6c:1e:aa:9f:36:46:65:5a:
f6:98:ad:95:17:1a:8a:ea:cc:db:17:81:e3:5d:39:ce:62:59:
57:ed:05:de:65:25:a1:12:20:90:e0:41:53:b9:dc:33:6f:db:
7c:e5:44:c2:95:b3:f8:6b:ab:70:b2:12:5c:70:29:77:ed:33:
76:8c:9d:20:e7:a5:a1:fd:c4:07:fb:d7:a1:34:f1:77:d5:6c:
7a:f6:00:5f:31:d2:b9:ca:24:f7:3a:57:79:a3:de:7f:b1:91:
a4:a2:f7:7b:55:fd:52:2f:5f:84:6e:35:69:64:c9:a1:58:31:
e9:3d:bb:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:07 2024 by rpki-client on console-ams.rpki-client.org