Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/tmIYDCJz3_t7WOzQuOdaYi05ues.roa
File: tmIYDCJz3_t7WOzQuOdaYi05ues.roa (raw, json)
Hash identifier: yKzsYD9j3s0v7SUc111x2N9+SHA1HBX4X2kTSz+AGak=
Subject key identifier: B6:62:18:0C:22:73:DF:FB:7B:58:EC:D0:B8:E7:5A:62:2D:39:B9:EB
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 01856C53CC5B6C31390A73F9C63B972E5E6D
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/tmIYDCJz3_t7WOzQuOdaYi05ues.roa
Signing time: Sun 01 Jan 2023 07:55:09 +0000
ROA not before: Sun 01 Jan 2023 07:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43391
IP address blocks: 185.185.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:cc:5b:6c:31:39:0a:73:f9:c6:3b:97:2e:5e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jan 1 07:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b662180c2273dffb7b58ecd0b8e75a622d39b9eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:17:ee:58:97:d3:8f:02:0a:8c:e1:61:4e:ca:
5a:9c:8a:36:f8:a6:d7:70:40:1e:d1:e3:09:ce:f3:
50:80:e4:ab:51:28:ca:e8:44:af:d6:14:da:22:8a:
2a:f9:5a:4b:04:5e:1f:6e:e9:0a:a5:93:fc:81:9e:
ad:5b:4d:dc:be:ad:71:e7:5d:e8:47:21:6b:b3:fd:
89:2a:7c:a6:0c:f5:6e:23:b0:3a:94:cc:bc:e4:77:
58:19:5c:50:6e:06:4e:08:17:d1:fe:d6:df:f3:bb:
e3:26:8f:09:b1:af:3c:bd:a3:f9:dd:37:b9:18:95:
f1:ae:a5:6c:7c:4c:d5:8e:76:52:f7:16:3d:72:ad:
a8:9c:94:80:be:c2:74:28:c3:de:e8:62:a2:45:d8:
de:dc:be:23:8d:2c:55:67:34:a3:28:dd:cc:38:03:
5d:30:d6:3b:dc:83:60:41:8f:a0:3d:63:e4:e3:c4:
4e:91:d2:82:72:e2:60:81:71:e0:8d:88:1e:df:bd:
06:88:3e:fd:71:f7:64:88:44:26:ff:d6:73:1b:13:
cf:bb:7e:c6:d6:59:19:3f:c2:e3:d7:6d:6d:e0:27:
28:93:b8:b8:a3:2f:eb:29:e5:0c:7c:33:b6:ed:7b:
2d:56:5a:2f:d4:b5:2f:5c:b4:99:36:2a:01:ad:ee:
55:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:62:18:0C:22:73:DF:FB:7B:58:EC:D0:B8:E7:5A:62:2D:39:B9:EB
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/tmIYDCJz3_t7WOzQuOdaYi05ues.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.185.233.0/24
Signature Algorithm: sha256WithRSAEncryption
32:cc:08:b7:ad:3c:45:1a:90:59:24:9e:aa:db:53:44:bc:00:
25:87:8b:0e:c5:8b:80:b9:cd:49:d8:7a:3f:34:0f:61:9b:1d:
a1:25:96:49:8c:e3:b5:98:60:d0:ca:0a:f2:d5:74:95:c9:70:
26:f4:fd:73:63:b5:d0:11:34:c6:c4:ca:5f:8d:2b:bf:45:7a:
1a:91:d2:4c:3c:41:2e:08:8c:36:c2:22:de:c9:c9:1d:22:b1:
a2:35:5c:0c:c0:07:f1:8b:e8:93:07:4f:3a:d9:80:54:a4:27:
d0:bc:5b:25:97:78:d1:66:fc:27:1a:eb:02:3e:0d:b6:d9:d6:
fd:c6:10:26:5c:32:df:7c:4c:e5:98:74:30:e7:15:dd:1a:3f:
74:fa:8b:1b:54:25:45:27:b1:49:ce:b5:e3:de:d1:05:fb:38:
6d:b7:50:f5:47:e3:08:39:7c:46:8d:21:e0:4b:90:0c:35:c9:
84:d7:76:3f:32:7d:6e:83:f5:fa:9d:e9:45:ae:17:b3:16:bc:
a3:e6:2d:89:05:1f:02:2f:cb:65:da:22:39:57:90:ed:02:ef:
45:ca:27:0c:8d:34:26:e5:ac:b6:f3:1c:09:8d:3a:76:01:93:
0f:67:0a:67:6e:dd:b7:10:54:b2:d8:e4:bd:81:1b:95:74:b4:
5c:6d:9b:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org