Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/SpQw4RhP_2WrTQJgxuJ0nP1UitI.roa
File: SpQw4RhP_2WrTQJgxuJ0nP1UitI.roa (raw, json)
Hash identifier: TWR0k8/J/aSM6Jrm3xJYLX0l7tmNWrXrYvZCPnqZiFs=
Subject key identifier: 4A:94:30:E1:18:4F:FF:65:AB:4D:02:60:C6:E2:74:9C:FD:54:8A:D2
Certificate issuer: /CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Certificate serial: 018572710EDDA1D79C3A6528B2F79C10351F
Authority key identifier: D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/SpQw4RhP_2WrTQJgxuJ0nP1UitI.roa
Signing time: Mon 02 Jan 2023 12:24:50 +0000
ROA not before: Mon 02 Jan 2023 12:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201916
IP address blocks: 185.59.216.0/23 maxlen: 23
185.59.216.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 29 Aug 2023 10:31:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:0e:dd:a1:d7:9c:3a:65:28:b2:f7:9c:10:35:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5d1cd47a53ef57ebb567bc882ad2986faac5f0d
Validity
Not Before: Jan 2 12:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a9430e1184fff65ab4d0260c6e2749cfd548ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3b:ca:dd:e9:74:99:bd:fc:99:d1:ae:4d:ef:
1d:00:77:09:cc:65:ff:55:10:56:f6:fb:15:35:15:
5c:a6:9d:e3:ec:de:46:eb:ba:13:8a:7e:b9:7a:ab:
7b:ea:04:f8:d9:9e:d7:ec:1c:5f:96:41:4c:40:cd:
07:01:06:e1:e2:1b:5b:c1:4e:de:ca:a1:b0:41:20:
14:55:f8:38:fc:82:84:86:55:ba:19:73:51:fd:a5:
51:28:51:8a:8d:f9:88:90:1a:4e:e4:fb:3a:85:71:
a0:60:dc:56:ef:68:80:c0:1d:5c:62:c4:48:cf:97:
ec:45:51:28:8b:f2:c5:de:4f:ce:ef:b6:af:af:10:
1f:4e:01:f7:e5:8f:19:80:8a:d3:29:e5:3d:e5:f0:
43:0a:48:90:32:4f:02:43:87:66:cc:b6:7f:7d:ea:
65:7b:95:69:1e:bc:22:fb:56:33:5d:89:c5:b7:db:
61:52:e3:2e:87:38:3c:ab:0d:cd:2b:6f:3c:b5:6f:
1a:5c:d0:c9:a1:bb:6d:db:27:fa:25:94:f4:fd:c4:
eb:18:54:f6:a6:b4:8f:3a:7a:98:d4:60:5c:2a:e9:
75:09:66:c3:5d:15:4c:cb:d2:38:3d:7f:c7:46:6c:
c8:c4:8d:87:0d:8f:38:e5:94:4a:47:66:1b:d6:f8:
98:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:94:30:E1:18:4F:FF:65:AB:4D:02:60:C6:E2:74:9C:FD:54:8A:D2
X509v3 Authority Key Identifier:
keyid:D5:D1:CD:47:A5:3E:F5:7E:BB:56:7B:C8:82:AD:29:86:FA:AC:5F:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1dHNR6U-9X67VnvIgq0phvqsXw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/SpQw4RhP_2WrTQJgxuJ0nP1UitI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/861953-5f65-4465-9046-f4d071f50f1d/1/1dHNR6U-9X67VnvIgq0phvqsXw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.59.216.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:60:37:f1:51:14:2b:28:5e:da:55:1f:fd:48:f8:d3:95:4a:
f6:49:df:ec:5f:13:91:3b:47:77:c6:40:96:2d:c4:f8:0c:79:
6a:9a:3d:81:b0:d9:a4:d7:06:9f:f8:d1:d1:54:66:eb:5f:bf:
28:c1:5c:05:6d:ae:3e:b8:c1:7c:aa:37:20:70:c0:a9:56:66:
0e:73:8b:10:5d:62:3a:8b:28:18:89:2e:34:f3:c9:3e:2f:b5:
48:9c:55:25:57:0a:86:95:23:a5:a7:35:aa:d2:6d:43:55:39:
ff:98:f4:1c:49:9e:a2:0f:e5:d7:8a:d7:e2:dd:0e:36:e9:2e:
da:bd:cb:84:88:fd:6e:91:f8:e1:31:f2:c6:a7:18:75:ab:7c:
94:e0:a6:ad:27:fe:ab:1e:12:26:e7:a3:b2:0f:3a:23:5e:cf:
6b:01:7b:26:9a:91:42:23:05:f8:c5:9e:9e:36:6c:62:64:ec:
20:e9:ba:2e:83:52:8d:6f:d2:ee:7c:fd:36:9b:cc:09:22:39:
e9:26:5a:ef:75:af:a5:29:f5:c7:0b:78:71:90:b0:a4:43:8d:
66:10:a8:8a:86:28:aa:05:7a:80:f6:fb:9f:f3:ab:8a:27:35:
31:0d:1c:39:12:c7:8e:9b:99:4f:be:9d:2b:4f:55:5a:ef:6f:
40:d2:db:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:31 2024 by rpki-client on console-ams.rpki-client.org