Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/y2vhYENy7l9rMo92eDjZN3wDQOs.roa
File: y2vhYENy7l9rMo92eDjZN3wDQOs.roa (raw, json)
Hash identifier: 5wI55gSTca7wfA/AZETTG29S5YEcZTXeduDjuj3PZAA=
Subject key identifier: CB:6B:E1:60:43:72:EE:5F:6B:32:8F:76:78:38:D9:37:7C:03:40:EB
Certificate issuer: /CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Certificate serial: 018571BA1F08C02031FDAA62EB55BB6AD367
Authority key identifier: 41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/y2vhYENy7l9rMo92eDjZN3wDQOs.roa
Signing time: Mon 02 Jan 2023 09:05:01 +0000
ROA not before: Mon 02 Jan 2023 09:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201691
IP address blocks: 185.165.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:1f:08:c0:20:31:fd:aa:62:eb:55:bb:6a:d3:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Validity
Not Before: Jan 2 09:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb6be1604372ee5f6b328f767838d9377c0340eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:a7:9d:f6:f5:6f:25:fd:71:4c:a8:19:af:ff:
f9:b4:4d:ca:ea:1e:fe:d4:5f:91:76:7d:57:f3:cf:
c5:35:6d:5d:98:ae:a8:54:d3:cd:03:fc:49:0d:67:
56:4a:d8:7e:66:56:a5:c3:7a:49:3a:12:a2:32:bc:
ae:de:ae:02:19:f0:2e:3b:55:e3:f1:9d:87:7e:db:
25:b5:a7:37:fc:a0:82:75:03:03:b7:fa:2d:cd:37:
58:95:fc:f3:d4:a0:e8:5e:d2:da:ed:8b:c4:f3:d6:
e3:30:88:86:42:53:4a:f5:e1:3e:3c:a7:da:41:43:
1a:0b:01:76:1d:e7:6f:6f:72:c9:ae:cc:40:23:13:
ca:aa:a6:f1:30:23:25:dd:76:ac:f9:a6:c3:93:7f:
37:39:9c:be:d3:5f:87:99:2c:dd:b1:d4:82:08:c5:
59:89:34:e4:c7:7d:2b:44:10:1f:5e:84:70:5d:2e:
e1:a1:c5:ac:a3:78:02:31:0a:f9:d0:d9:a0:22:a2:
68:54:4f:0b:c0:7a:05:03:d6:6a:28:c2:0f:6f:cc:
44:67:4c:c5:34:28:8e:85:5d:d3:42:41:7e:8e:4a:
92:d1:c1:9a:83:4c:8a:72:15:2e:7d:b1:1f:0d:b2:
86:cb:ac:76:8f:26:ee:55:00:36:5e:3d:ef:64:8f:
01:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:6B:E1:60:43:72:EE:5F:6B:32:8F:76:78:38:D9:37:7C:03:40:EB
X509v3 Authority Key Identifier:
keyid:41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/y2vhYENy7l9rMo92eDjZN3wDQOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.31.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:c1:0a:47:1e:4e:6e:24:2c:84:12:7b:79:4b:d2:1f:e1:cf:
6e:2f:6c:ea:f2:a0:d1:d2:7c:69:6f:32:05:02:97:90:78:ab:
8f:59:f9:b2:22:16:c4:25:d0:4a:ca:5b:a1:cd:ed:f7:8f:a5:
4e:c0:be:5d:a9:47:97:c1:72:f5:8f:3a:eb:58:d2:e2:61:a0:
f9:a0:fd:c4:a3:27:81:39:37:b4:43:33:18:48:b7:d4:ee:70:
6c:f5:b3:3a:61:aa:59:90:b6:3d:e9:2b:48:b3:ba:b3:15:df:
40:82:0c:63:d1:47:16:95:59:80:61:81:c9:2a:43:be:2e:9b:
43:ff:25:6d:2d:0f:a2:aa:f6:22:47:ce:35:e4:be:3f:45:f8:
65:e5:d4:87:8b:29:80:63:1d:ad:6a:03:c9:bb:40:ef:24:3d:
42:b3:48:c3:62:3f:3f:59:c6:f7:5a:dc:ae:fb:84:ac:2e:f0:
f5:01:bf:fd:bf:e5:19:82:62:0c:cc:68:0f:09:de:b9:31:3c:
8a:ae:e0:83:93:10:ca:3d:4b:0a:ee:ac:03:a2:99:a7:1a:e4:
00:c1:2d:f2:5f:b7:16:e0:cd:5d:5a:2a:c4:c6:90:65:f5:b0:
ce:f3:58:55:da:17:15:b2:cc:b5:17:97:ca:ef:0b:b7:df:e8:
66:3f:41:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:16 2024 by rpki-client on console-ams.rpki-client.org