Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/b583azSh8JiclDdwAcMMeLejBzc.roa
File: b583azSh8JiclDdwAcMMeLejBzc.roa (raw, json)
Hash identifier: KGMi0sNFb1KBz209IFVQT7uvRwFnfeagMof1pOesdHs=
Subject key identifier: 6F:9F:37:6B:34:A1:F0:98:9C:94:37:70:01:C3:0C:78:B7:A3:07:37
Certificate issuer: /CN=a7bdb2c7b334b94bcd43388f21f82092db6cfd4c
Certificate serial: 01856C1CA7658435A78999DC44153B7C696C
Authority key identifier: A7:BD:B2:C7:B3:34:B9:4B:CD:43:38:8F:21:F8:20:92:DB:6C:FD:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p72yx7M0uUvNQziPIfggktts_Uw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/b583azSh8JiclDdwAcMMeLejBzc.roa
Signing time: Sun 01 Jan 2023 06:54:55 +0000
ROA not before: Sun 01 Jan 2023 06:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203963
IP address blocks: 185.9.159.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Apr 2023 07:07:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:1c:a7:65:84:35:a7:89:99:dc:44:15:3b:7c:69:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7bdb2c7b334b94bcd43388f21f82092db6cfd4c
Validity
Not Before: Jan 1 06:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f9f376b34a1f0989c94377001c30c78b7a30737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d1:fd:25:bf:ce:52:2d:a9:89:44:d9:60:2b:
1d:eb:58:82:43:5d:40:6c:91:7c:45:da:62:39:04:
93:63:98:f7:d1:be:a1:88:1b:12:7e:ac:18:3a:05:
54:02:4e:95:e9:a3:88:4e:1f:50:57:34:1a:b6:f5:
81:c2:06:89:ad:00:d0:43:61:1f:e4:d5:94:59:76:
b2:f7:e0:47:8b:0e:84:f3:e4:db:df:59:f2:a6:35:
96:7e:81:0b:07:d5:b0:62:1f:fa:91:7e:f7:d8:34:
77:e5:d2:c8:b2:5a:1f:2c:c9:ad:55:5c:eb:68:c8:
03:b4:20:9b:0f:d5:d6:5e:d4:01:30:8b:29:4d:09:
f5:67:b2:02:f0:24:3d:c2:ba:3f:19:b1:60:a4:6d:
33:b8:ee:39:77:5e:44:df:1b:96:f5:58:c4:ce:8c:
ca:d0:ca:08:97:a5:dc:b0:cc:81:22:f1:41:d8:c3:
61:a7:a7:1c:b8:f8:37:d4:57:41:78:8c:f3:72:bb:
c4:b4:17:0d:60:1c:57:ab:2f:f2:09:81:7a:c9:ab:
9e:8d:39:0a:71:43:05:dc:2a:a3:31:d6:2a:2d:46:
57:af:ab:8e:cd:e9:43:60:ae:06:f5:40:b5:1c:5b:
6c:bd:85:1b:2d:8f:3a:5b:d3:81:66:a5:ba:16:23:
1e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:9F:37:6B:34:A1:F0:98:9C:94:37:70:01:C3:0C:78:B7:A3:07:37
X509v3 Authority Key Identifier:
keyid:A7:BD:B2:C7:B3:34:B9:4B:CD:43:38:8F:21:F8:20:92:DB:6C:FD:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p72yx7M0uUvNQziPIfggktts_Uw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/b583azSh8JiclDdwAcMMeLejBzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/a1ee96-2eed-4533-8afd-a958bf5acbea/1/p72yx7M0uUvNQziPIfggktts_Uw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.159.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a5:1a:50:f3:5e:b5:dd:95:8b:6e:c7:ff:a5:47:ea:98:da:
25:1f:bd:2e:e3:64:46:7d:95:1f:6c:a0:71:a1:bd:5b:23:89:
4d:69:ff:58:4e:78:f4:7e:d6:f0:21:48:ef:1d:79:20:8d:fb:
79:41:05:8b:88:42:4c:60:40:60:aa:b3:67:0d:a3:72:13:5b:
35:fa:22:2e:d8:07:ee:ef:25:f5:3e:43:ee:89:58:41:ec:f5:
a4:4a:a5:b5:68:52:7d:4c:0b:24:b6:b8:17:ba:84:2f:68:4f:
5a:34:39:c3:38:59:66:9e:92:fb:1f:17:c2:66:71:1e:38:e6:
ea:fb:8a:79:57:c9:3d:91:dd:da:70:5e:e4:b2:bc:3c:52:63:
e2:67:e4:e3:e1:7b:8f:95:cd:96:b4:a6:bd:a5:c9:03:e7:87:
27:8f:98:06:4f:7b:88:56:53:df:b3:1f:2a:9f:0d:2a:c5:22:
e3:c7:d3:cd:4f:b1:e1:0a:da:88:1c:51:2d:88:69:6b:de:28:
69:01:8d:65:17:e1:ff:d0:52:82:f5:d5:46:08:e1:85:ec:8d:
ad:38:92:69:35:8f:ab:20:9b:50:6a:50:38:8b:8d:ed:3a:4d:
4c:66:fb:10:98:5e:66:fe:c3:df:51:d2:e1:84:a8:97:5a:a5:
33:c1:e5:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:24 2024 by rpki-client on console-ams.rpki-client.org