Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/Fuw9X4L8bJrzYieddqgLrdp0teQ.roa
File: Fuw9X4L8bJrzYieddqgLrdp0teQ.roa (raw, json)
Hash identifier: eDlR3vRTVRK5WLV0vNoFqdD+c+TAqk3rSK0S9jNit60=
Subject key identifier: 16:EC:3D:5F:82:FC:6C:9A:F3:62:27:9D:76:A8:0B:AD:DA:74:B5:E4
Certificate issuer: /CN=540c4f742fd329a36fcd29c4eb984e5f49515d99
Certificate serial: 018570796B09673C0F8D88CB96DD17ADB43B
Authority key identifier: 54:0C:4F:74:2F:D3:29:A3:6F:CD:29:C4:EB:98:4E:5F:49:51:5D:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAxPdC_TKaNvzSnE65hOX0lRXZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/Fuw9X4L8bJrzYieddqgLrdp0teQ.roa
Signing time: Mon 02 Jan 2023 03:14:43 +0000
ROA not before: Mon 02 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60257
IP address blocks: 185.99.165.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 Mar 2023 13:05:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:6b:09:67:3c:0f:8d:88:cb:96:dd:17:ad:b4:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540c4f742fd329a36fcd29c4eb984e5f49515d99
Validity
Not Before: Jan 2 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=16ec3d5f82fc6c9af362279d76a80badda74b5e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dc:26:f3:5e:ab:25:53:8b:1b:dd:91:0f:d5:
c5:69:25:36:a4:dd:d4:62:07:1e:1c:77:bf:d5:ee:
3f:76:21:28:ea:b3:22:7e:68:85:37:05:1e:dd:fe:
26:20:6f:bf:5d:a0:28:72:f4:4a:03:ed:1c:a1:bc:
a8:e3:ce:b8:5b:df:83:06:fa:7c:80:62:e1:59:52:
0b:ed:25:48:a1:67:9d:a6:f7:28:9d:99:68:ed:af:
7b:49:c1:e9:64:95:7f:85:23:e1:9f:7e:84:24:ad:
d5:18:0a:bf:af:fe:a0:9a:a9:6a:41:74:ff:61:ca:
11:0e:a4:df:ce:f2:1d:29:1a:62:5d:50:ff:ab:29:
e0:51:76:e6:a4:7b:be:73:8d:74:0b:7e:36:5e:80:
b0:86:d8:a1:37:5b:42:5a:4c:c6:07:ba:2a:04:5c:
25:1a:71:78:79:b9:29:f5:98:9a:f2:7e:3a:33:e0:
c2:42:b3:51:bd:df:4d:e1:29:05:5f:1f:ff:fd:ae:
fb:c2:89:3d:b2:45:26:38:7d:fc:ef:0f:a5:13:55:
2b:41:e3:ac:8b:68:fd:ec:b6:76:c9:08:25:24:2e:
12:04:e2:b1:f9:6a:9d:8f:3a:d7:79:b7:d4:12:7f:
e1:c6:09:ef:09:44:09:c9:f3:1c:f6:c8:7c:e7:e3:
01:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:EC:3D:5F:82:FC:6C:9A:F3:62:27:9D:76:A8:0B:AD:DA:74:B5:E4
X509v3 Authority Key Identifier:
keyid:54:0C:4F:74:2F:D3:29:A3:6F:CD:29:C4:EB:98:4E:5F:49:51:5D:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAxPdC_TKaNvzSnE65hOX0lRXZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/Fuw9X4L8bJrzYieddqgLrdp0teQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/be6819-83bb-40e0-9d74-cfb0d0493c3a/1/VAxPdC_TKaNvzSnE65hOX0lRXZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.165.0/24
Signature Algorithm: sha256WithRSAEncryption
91:22:6b:7d:95:50:8a:05:13:90:9e:2b:bd:0c:bc:55:73:aa:
1c:9d:ff:1c:2f:8f:d0:11:68:e7:a8:bf:20:a9:6d:cc:f6:96:
de:38:4d:24:70:29:a5:85:ab:e7:b9:74:8a:39:7f:61:a9:94:
44:56:e7:67:18:2c:59:47:e3:17:85:67:4b:d6:ab:05:26:c7:
1e:4f:26:78:f9:0b:fd:ed:f8:05:ae:18:ea:8e:7d:7f:90:de:
f1:d7:bb:77:3d:a1:d2:9c:3f:51:c9:f0:72:50:ab:89:03:da:
97:96:eb:68:4f:75:c4:07:c5:88:0e:40:e4:d2:ed:f8:55:c3:
c3:db:76:cb:07:4b:59:1c:0d:45:a7:04:9e:7f:7c:63:62:54:
e6:b1:27:f0:96:0c:2b:f2:f3:e5:bd:a7:dc:20:6b:48:04:10:
bf:f8:1a:0c:8d:ea:3f:9c:23:7e:b4:2c:34:32:17:e0:8a:07:
17:c4:74:f5:a8:d4:91:a8:54:5a:de:1b:fd:a7:12:5f:05:4c:
d5:fd:3a:fe:fe:01:11:c9:f9:d5:40:98:30:43:00:90:af:3b:
b7:78:db:5e:d8:e9:75:61:3d:dc:45:0d:4f:d7:5d:80:20:f8:
81:e7:93:ac:4d:c0:7c:70:87:1f:7e:2e:9f:86:67:24:bc:44:
7b:a0:dd:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:50 2024 by rpki-client on console-fra.rpki-client.org