Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/9TWKd-5nHRiHJK1pgPdk0H0wYC4.roa
File: 9TWKd-5nHRiHJK1pgPdk0H0wYC4.roa (raw, json)
Hash identifier: mALSAtyNI98hMaaU/1WvbGprWc7xHTKR0QQ0Of6Yawo=
Subject key identifier: F5:35:8A:77:EE:67:1D:18:87:24:AD:69:80:F7:64:D0:7D:30:60:2E
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 018B8CB1ABBA829E0361824F7DDAB0950961
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/9TWKd-5nHRiHJK1pgPdk0H0wYC4.roa
Signing time: Wed 01 Nov 2023 21:02:15 +0000
ROA not before: Wed 01 Nov 2023 21:02:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207456
IP address blocks: 185.153.188.0/22 maxlen: 24
31.171.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 13 Dec 2023 19:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8c:b1:ab:ba:82:9e:03:61:82:4f:7d:da:b0:95:09:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Nov 1 21:02:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5358a77ee671d188724ad6980f764d07d30602e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ec:04:08:b3:1e:ab:84:4b:30:e2:d2:70:54:
cd:0f:e8:aa:1f:3d:05:2c:3a:91:f0:41:57:6a:d1:
e4:da:70:bb:1e:08:ed:7e:4a:20:3f:42:d6:cd:55:
d8:48:77:b5:de:df:a2:a9:62:f8:87:67:6b:93:c9:
b2:a1:aa:78:61:b7:aa:ba:43:65:11:10:09:17:e3:
2f:4e:3f:16:52:5c:c2:95:d5:98:07:89:85:fa:35:
b8:af:a8:c8:05:7f:25:43:81:36:d3:02:39:28:1d:
73:e1:3d:a7:9a:b4:0f:b4:32:6f:0b:68:98:ee:27:
3d:b0:06:c8:cd:c5:04:8f:46:31:a0:6d:66:95:93:
53:d9:f8:84:57:6e:6b:7d:1a:fd:c6:8d:a5:ec:58:
d4:f2:84:ed:1a:c6:f0:62:72:bf:ce:7d:5b:18:0f:
24:79:aa:f9:3e:23:bc:44:91:e6:3c:06:1e:83:b5:
1e:dd:cf:25:81:d0:7e:ea:2b:e1:65:dc:e1:ee:8c:
0a:93:b0:ce:63:34:b3:5e:17:ac:54:27:0d:62:cc:
25:f8:89:c5:b0:62:72:95:83:37:07:9d:1c:1e:9b:
62:5a:69:d4:0c:7c:13:e5:25:93:56:fc:dd:2b:74:
1f:9b:87:f4:79:7c:48:7b:f8:6e:f2:66:d6:63:85:
e0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:35:8A:77:EE:67:1D:18:87:24:AD:69:80:F7:64:D0:7D:30:60:2E
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/9TWKd-5nHRiHJK1pgPdk0H0wYC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.171.132.0/22
185.153.188.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:76:61:5d:bc:46:46:c1:99:4a:17:76:b9:61:ca:8d:b7:cc:
cd:0c:34:cd:ea:0f:67:65:8f:b8:04:92:90:2d:04:2e:35:8e:
62:4d:0f:0e:14:9e:d4:88:81:a9:74:3f:89:17:22:3c:5e:70:
ff:d1:89:42:88:36:60:d4:e7:69:8b:a0:f3:d0:eb:22:93:08:
84:1a:f1:af:ce:34:b4:fc:a6:c3:50:ab:b3:94:fe:2c:83:75:
94:b9:82:92:b7:36:be:5f:d9:a2:ec:dc:41:21:c7:cc:32:44:
74:28:5f:4d:aa:f2:21:d3:f9:1a:28:b9:49:a8:57:76:34:df:
fd:3d:1c:72:2d:92:2e:93:d0:d7:15:a0:37:29:eb:9b:55:8b:
97:bf:c4:73:69:59:25:e8:29:3a:1a:15:00:6d:ac:32:cd:16:
2f:64:45:26:47:33:55:09:d2:7d:8f:0f:52:e9:cd:46:d5:ac:
fc:71:74:92:74:f5:8d:73:95:99:2a:2b:5f:18:15:1f:51:ee:
51:aa:f7:d3:e8:d2:82:40:df:ec:ee:12:63:20:70:c0:53:3f:
3f:48:4a:36:e7:12:bd:2c:f2:bc:1e:1e:33:b2:55:e9:9f:a6:
f7:16:ae:38:a8:f4:d0:ba:46:90:99:c1:d3:19:ea:99:d7:ba:
0f:a8:34:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:40 2024 by rpki-client on console-fra.rpki-client.org