Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/CCnJp5bPZ9PXGlfzAoqHnyNFJao.roa
File: CCnJp5bPZ9PXGlfzAoqHnyNFJao.roa (raw, json)
Hash identifier: QDRzrDVoFsKG31hEPUGYjHPQwQOc6xEBo5KJbSXMrFc=
Subject key identifier: 08:29:C9:A7:96:CF:67:D3:D7:1A:57:F3:02:8A:87:9F:23:45:25:AA
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 018597289C71969292C5C5A7F1AF2BDDE137
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/CCnJp5bPZ9PXGlfzAoqHnyNFJao.roa
Signing time: Mon 09 Jan 2023 15:31:39 +0000
ROA not before: Mon 09 Jan 2023 15:31:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207456
IP address blocks: 185.153.188.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Nov 2023 21:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:28:9c:71:96:92:92:c5:c5:a7:f1:af:2b:dd:e1:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Jan 9 15:31:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0829c9a796cf67d3d71a57f3028a879f234525aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f0:30:a5:e5:57:a4:a4:e6:62:18:bf:3b:dd:
06:7a:58:2c:70:73:82:78:ca:59:e0:0f:92:91:ae:
9b:5f:50:b6:84:31:8f:4e:43:bb:7d:cb:21:27:34:
46:72:7e:c7:02:60:2e:36:78:6a:4d:3c:cf:55:ba:
2b:61:9e:75:f4:94:8d:7e:4c:39:68:3d:3f:95:1e:
fe:df:53:91:19:bc:0b:aa:f2:dc:27:8e:88:03:44:
25:f1:6e:39:5d:99:09:0e:62:60:8e:5b:78:ec:b6:
49:61:2c:c2:9a:9e:8e:26:71:f7:e9:4e:c5:0e:d6:
63:3c:20:71:cb:47:6b:b3:af:07:00:55:ca:86:f1:
4d:eb:14:7a:22:dd:37:52:34:ed:b4:2a:6e:8d:da:
2f:59:47:81:54:aa:c2:41:55:37:26:3d:90:ad:a5:
6b:24:a1:ab:ca:a8:73:2f:1f:2f:3e:ba:23:76:53:
92:a4:6e:16:b1:9e:8a:42:ca:0f:94:c0:ff:6f:44:
a4:6e:44:8f:62:a3:e6:20:5f:a4:1f:96:db:0d:c3:
45:48:fb:8f:5f:5b:0b:e3:3b:4c:73:bb:1e:90:8e:
57:9a:9e:3d:94:ad:26:66:a5:5e:aa:c7:22:ed:97:
ec:38:ac:9b:f3:23:98:7f:a9:78:5e:2c:89:e6:49:
7c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:29:C9:A7:96:CF:67:D3:D7:1A:57:F3:02:8A:87:9F:23:45:25:AA
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/CCnJp5bPZ9PXGlfzAoqHnyNFJao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.188.0/22
Signature Algorithm: sha256WithRSAEncryption
49:2f:c8:57:c6:a3:fe:17:47:23:70:51:20:ff:75:09:5c:71:
4d:34:6b:c4:b2:c1:53:48:b6:3c:02:03:4d:f2:74:2a:6f:6f:
76:c0:7c:4a:46:19:b5:1e:52:be:6a:33:f9:24:9f:f3:83:92:
17:ed:94:95:c8:51:ce:5c:42:0b:0c:53:2c:4d:5a:d0:b5:22:
99:11:c0:f1:03:1b:b9:7b:1a:2f:f4:f4:a7:c3:99:a7:08:47:
33:ee:67:28:ec:a6:31:48:71:40:df:31:09:f8:d9:a5:31:78:
bd:c6:f2:cd:6a:c1:c1:f4:20:23:e0:36:d6:d5:31:f1:75:48:
ba:91:86:f0:08:5a:50:26:a4:92:7e:49:67:28:38:53:77:b6:
e7:e4:6b:57:4f:de:b9:ec:c0:2a:42:bb:ec:9d:c4:8d:c9:10:
b7:47:81:4f:0b:19:05:64:77:e1:18:79:26:16:42:58:41:c5:
f3:f4:e0:38:5a:99:00:70:99:97:8e:0f:c6:64:f8:8a:19:3b:
a6:df:8c:d8:3c:47:66:15:37:75:3a:0a:cf:16:77:83:61:57:
02:a8:dd:08:40:dd:c4:bc:a7:96:f4:8b:ac:c6:7a:0f:22:53:
fd:42:36:8f:e7:b9:89:f2:2e:0a:76:de:33:af:c3:fa:ba:21:
a2:a7:22:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:12 2024 by rpki-client on console-ams.rpki-client.org