Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/379a1d-52b9-4669-9625-62306abdfa03/1/Da7vTFevHU991ozclqMTNZTTp9s.roa
File: Da7vTFevHU991ozclqMTNZTTp9s.roa (raw, json)
Hash identifier: 816AYB0MdXEIJoTlB6s0HyUXQIE1CmFd9aiXLcP2whI=
Subject key identifier: 0D:AE:EF:4C:57:AF:1D:4F:7D:D6:8C:DC:96:A3:13:35:94:D3:A7:DB
Certificate issuer: /CN=5f41c664c0c013dffb6e0dd1d73b369cba5fbd1c
Certificate serial: 01856D5D07DD6AC037E891B90DE68DAEDEA9
Authority key identifier: 5F:41:C6:64:C0:C0:13:DF:FB:6E:0D:D1:D7:3B:36:9C:BA:5F:BD:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X0HGZMDAE9_7bg3R1zs2nLpfvRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/379a1d-52b9-4669-9625-62306abdfa03/1/Da7vTFevHU991ozclqMTNZTTp9s.roa
Signing time: Sun 01 Jan 2023 12:44:51 +0000
ROA not before: Sun 01 Jan 2023 12:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.98.156.0/24 maxlen: 24
2a12:a900:1::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:07:dd:6a:c0:37:e8:91:b9:0d:e6:8d:ae:de:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f41c664c0c013dffb6e0dd1d73b369cba5fbd1c
Validity
Not Before: Jan 1 12:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0daeef4c57af1d4f7dd68cdc96a3133594d3a7db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:78:70:7a:e5:c1:3f:86:44:5c:8a:b2:c7:11:
3f:75:19:a6:e9:15:2e:62:e2:97:78:26:1b:be:31:
94:68:e7:a8:b6:17:3d:f0:1b:43:a9:76:1f:c5:25:
f2:3f:3d:ab:df:8e:76:6b:49:0a:1b:83:be:89:80:
e7:f0:f5:f7:9d:0b:5a:42:37:9e:a8:86:ac:2e:d1:
0e:1d:f6:8a:d3:44:c3:24:47:20:6f:2d:9d:91:76:
ba:69:a7:8e:ec:17:5b:5d:f8:33:9f:fe:53:87:ef:
f4:0c:67:19:12:6b:64:fa:77:32:4c:37:f7:4e:27:
7f:8a:9b:e1:97:38:b0:3f:1d:1e:16:f4:93:a9:85:
6e:28:ff:0a:c0:de:c3:b1:f1:7a:36:37:0a:3f:a2:
62:a3:6f:51:5c:92:94:fc:6f:8e:1d:dd:8d:e2:0b:
25:22:c3:ea:ef:0f:80:86:95:cf:b5:c0:f5:49:bb:
e1:e3:9f:8d:86:d4:70:ec:2d:c8:db:60:de:1b:08:
7c:14:eb:1a:71:d8:ea:0f:2e:0a:0b:8c:b1:67:1a:
56:d7:8e:9f:d6:69:b3:55:03:c5:bd:4e:c6:27:39:
b9:b4:5e:98:ea:84:16:57:0d:74:ca:ff:01:bb:05:
21:28:48:fa:1d:be:33:75:4b:e4:2d:15:de:64:2b:
db:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:AE:EF:4C:57:AF:1D:4F:7D:D6:8C:DC:96:A3:13:35:94:D3:A7:DB
X509v3 Authority Key Identifier:
keyid:5F:41:C6:64:C0:C0:13:DF:FB:6E:0D:D1:D7:3B:36:9C:BA:5F:BD:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X0HGZMDAE9_7bg3R1zs2nLpfvRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/379a1d-52b9-4669-9625-62306abdfa03/1/Da7vTFevHU991ozclqMTNZTTp9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/379a1d-52b9-4669-9625-62306abdfa03/1/X0HGZMDAE9_7bg3R1zs2nLpfvRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.156.0/24
IPv6:
2a12:a900:1::/48
Signature Algorithm: sha256WithRSAEncryption
3b:b0:81:3c:70:67:93:f8:a4:46:8f:01:0b:96:72:85:f0:6c:
01:a4:e7:3c:46:56:ad:57:eb:38:a6:3e:4c:2f:fd:16:ed:10:
60:e8:74:a8:7d:53:e3:f9:83:a4:d9:42:c0:40:37:07:a4:b0:
df:93:56:9c:1b:d8:04:8f:11:da:19:0f:04:99:de:9a:a6:bb:
91:d5:9c:da:af:9d:4f:fc:15:64:7c:b9:e9:06:09:cd:9a:b6:
c7:a8:89:b9:73:a8:98:bf:28:a8:93:48:d4:fc:45:5a:5c:1a:
74:f6:3c:cd:d2:61:ed:30:0a:2e:97:f9:a2:71:fe:25:0c:4c:
4b:f8:3c:e4:f8:d8:d3:36:84:e8:8d:94:3a:7b:e9:66:73:0d:
07:16:18:d5:42:e7:89:16:0d:91:81:3d:3a:3a:b1:01:0c:35:
76:eb:77:1c:ae:8b:d6:e6:1c:9f:f2:52:21:f1:f0:2e:61:cb:
90:65:de:bd:57:f2:ab:18:48:d5:77:f1:8d:d5:65:e7:26:f6:
91:ec:63:22:42:36:19:03:67:0f:f2:fe:ee:e5:c3:5c:7f:f6:
9e:1a:fa:1b:a8:6e:cb:34:af:73:40:9d:4f:65:a2:8e:43:b3:
0a:4a:83:41:68:f2:17:3c:69:ac:b6:3b:00:fb:43:a3:05:34:
bc:f8:ea:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:39 2024 by rpki-client on console-ams.rpki-client.org