Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/5KhTKfYPT3v7zgB-XaRfhKvrDnU.roa
File: 5KhTKfYPT3v7zgB-XaRfhKvrDnU.roa (raw, json)
Hash identifier: Vs8ki6vwb0okQyBChmpps7tD1DTD9CgN+Q340pFs00Y=
Subject key identifier: E4:A8:53:29:F6:0F:4F:7B:FB:CE:00:7E:5D:A4:5F:84:AB:EB:0E:75
Certificate issuer: /CN=722f0b33650b7d6498b9f58aac5a297e92614822
Certificate serial: 01863AA8372DC38E370C2336736CA91B881C
Authority key identifier: 72:2F:0B:33:65:0B:7D:64:98:B9:F5:8A:AC:5A:29:7E:92:61:48:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ci8LM2ULfWSYufWKrFopfpJhSCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/5KhTKfYPT3v7zgB-XaRfhKvrDnU.roa
Signing time: Fri 10 Feb 2023 09:29:08 +0000
ROA not before: Fri 10 Feb 2023 09:29:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56438
IP address blocks: 185.216.9.0/24 maxlen: 24
2a00:d700::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:3a:a8:37:2d:c3:8e:37:0c:23:36:73:6c:a9:1b:88:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722f0b33650b7d6498b9f58aac5a297e92614822
Validity
Not Before: Feb 10 09:29:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4a85329f60f4f7bfbce007e5da45f84abeb0e75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:c7:3b:91:0d:eb:67:c3:9f:fa:63:57:33:f5:
93:e3:6a:2e:e8:68:98:33:7f:63:6e:fd:6b:30:05:
9b:ef:10:b5:ae:76:3f:18:45:bd:f5:71:b0:b8:ff:
d7:95:8d:7c:7b:54:78:5d:e3:e7:ca:4d:3c:07:66:
5c:aa:df:59:b9:41:9c:a8:0d:c6:68:28:3b:9e:28:
fc:d6:d5:58:c0:1b:87:97:95:a7:45:3d:dd:e3:38:
fd:ea:ac:44:87:c9:04:8b:b9:f8:c1:38:6b:af:ce:
fa:54:37:38:05:3b:7f:eb:9b:69:6b:6d:f5:ee:d5:
c7:6c:ea:77:70:c1:9b:00:62:55:a2:ed:98:00:84:
26:f7:5f:f6:cd:ac:28:ac:11:0e:69:5f:42:70:63:
ec:61:f6:6d:ca:34:f1:d1:a8:75:ec:f8:a3:88:ae:
74:9c:68:03:fe:21:28:ba:fb:2f:0b:08:8e:f7:40:
bc:99:07:f5:37:55:ec:13:a5:a1:65:2b:01:ef:fb:
87:be:b7:5c:7b:54:11:4d:4f:09:9d:5c:ae:86:1e:
9d:fa:8f:98:31:e5:51:0d:b3:aa:be:4a:89:86:7a:
8a:04:0f:7a:82:2b:ea:09:31:ad:76:10:62:3b:76:
29:ea:7d:07:93:d9:dc:cf:cf:9d:33:6e:49:64:ab:
ae:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A8:53:29:F6:0F:4F:7B:FB:CE:00:7E:5D:A4:5F:84:AB:EB:0E:75
X509v3 Authority Key Identifier:
keyid:72:2F:0B:33:65:0B:7D:64:98:B9:F5:8A:AC:5A:29:7E:92:61:48:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ci8LM2ULfWSYufWKrFopfpJhSCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/5KhTKfYPT3v7zgB-XaRfhKvrDnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/96d14f-18c2-43a8-bc58-647289ad5a22/1/ci8LM2ULfWSYufWKrFopfpJhSCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.9.0/24
IPv6:
2a00:d700::/32
Signature Algorithm: sha256WithRSAEncryption
8d:2e:cf:6d:f5:b5:7d:af:41:17:fd:7e:79:e0:fc:92:c5:29:
ba:18:b4:cc:60:ff:fe:22:f5:3e:e9:ec:5e:cf:89:ef:46:8c:
49:a2:8a:f3:d3:50:87:8d:df:0d:77:3a:3b:20:25:02:8a:7e:
3c:b9:84:0f:eb:74:90:da:d2:a4:c1:c9:bc:d4:2b:64:52:41:
86:84:8d:a5:67:24:e9:b1:d9:3a:ca:d0:33:f8:7d:b0:28:3f:
5e:3f:7a:01:6a:dc:c5:d0:80:fe:08:06:da:44:00:2f:0c:b0:
12:c0:21:37:f7:1c:2e:bb:d3:f8:13:4c:98:20:f2:6f:d2:44:
bb:ba:07:69:75:f0:28:02:90:c9:10:52:a1:7e:e3:53:1f:11:
7b:f2:e1:1c:b2:2a:e4:12:3e:a5:14:a0:99:7c:3b:ef:b4:25:
74:57:eb:c7:97:ca:80:22:ce:ec:eb:f6:99:93:78:11:8a:9e:
1b:46:36:ba:b8:9f:65:42:44:5b:ed:df:18:50:26:2c:ef:36:
4b:0f:88:2e:47:a8:1a:28:bc:05:ea:d0:d9:d0:e3:54:75:5d:
e9:2e:9f:e0:c4:68:cd:65:52:0c:a1:0f:ae:0f:3a:4d:b7:03:
8b:ba:a5:50:a5:0c:99:7d:d9:12:7b:d5:bf:82:4a:2f:af:a1:
b8:f6:df:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:52 2024 by rpki-client on console-ams.rpki-client.org