Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/_iFkI5ep7muModviofmVFM_0tPQ.roa
File: _iFkI5ep7muModviofmVFM_0tPQ.roa (raw, json)
Hash identifier: q+wtIa6Bnd8zp9VvoLDLHzDTA/5cI7uE9su10KT8PX0=
Subject key identifier: FE:21:64:23:97:A9:EE:6B:8C:A1:DB:E2:A1:F9:95:14:CF:F4:B4:F4
Certificate issuer: /CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Certificate serial: 018F5CC52C159E784844F304F893E172C089
Authority key identifier: C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/_iFkI5ep7muModviofmVFM_0tPQ.roa
Signing time: Thu 09 May 2024 09:52:56 +0000
ROA not before: Thu 09 May 2024 09:52:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.193.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 May 2024 09:22:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5c:c5:2c:15:9e:78:48:44:f3:04:f8:93:e1:72:c0:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d6b59a93e324083fbca4237e47e9f5ebf371ab
Validity
Not Before: May 9 09:52:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fe21642397a9ee6b8ca1dbe2a1f99514cff4b4f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:b8:4c:0f:c4:dc:9b:81:8f:98:67:5c:d1:
15:c3:5a:2f:e5:36:aa:43:9e:9e:68:e7:03:68:c9:
b4:73:ee:4d:b1:6a:ce:19:1b:ae:38:5b:0c:27:4e:
23:4e:84:12:61:9e:81:ef:d6:8f:a4:dc:77:9b:b6:
50:d4:a7:e8:a0:f9:30:45:d1:5f:85:16:8b:60:b0:
8f:d0:92:61:f0:0c:80:1e:80:08:ca:8c:79:be:bb:
4a:fb:4b:d3:56:47:d1:a7:e5:5b:fc:e1:4b:54:70:
3f:23:9c:61:da:04:52:c2:d4:a5:1a:2f:df:76:55:
ec:c2:9b:b7:3e:2b:71:84:c2:6c:a8:61:e5:64:6b:
f6:ce:5a:95:5b:08:90:44:e0:33:8f:59:c3:58:89:
86:9b:d3:3a:13:22:4c:a8:b4:33:f6:85:cb:b3:5c:
30:9f:b5:4e:a5:f0:19:cb:10:49:9a:58:54:ca:94:
cf:1a:78:d2:76:55:e1:49:1c:45:4a:bd:7b:ef:5a:
67:d3:f0:34:d0:de:ee:9b:ea:eb:87:71:74:4b:f6:
27:fb:70:95:b6:db:e1:36:a5:4b:7a:55:40:cc:a9:
3e:c8:9b:90:98:81:7f:70:6d:8b:a4:3c:df:f8:29:
38:e3:27:10:54:8b:bf:dc:09:79:d8:28:02:84:f7:
6a:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:21:64:23:97:A9:EE:6B:8C:A1:DB:E2:A1:F9:95:14:CF:F4:B4:F4
X509v3 Authority Key Identifier:
keyid:C9:D6:B5:9A:93:E3:24:08:3F:BC:A4:23:7E:47:E9:F5:EB:F3:71:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yda1mpPjJAg_vKQjfkfp9evzcas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/_iFkI5ep7muModviofmVFM_0tPQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/682b07-773f-46fd-82e2-b9211e1fc1ac/1/yda1mpPjJAg_vKQjfkfp9evzcas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.193.167.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:62:55:a4:57:48:ab:df:df:72:af:2c:42:d8:08:9b:9d:89:
a4:fc:74:0e:50:48:a9:26:e3:b4:60:f1:57:e3:2f:d0:f7:d5:
e7:ea:81:3d:02:c9:38:62:c2:fc:18:5f:ee:ca:4f:76:98:5b:
93:58:0d:44:ad:21:52:ad:8d:d4:cf:55:de:5e:b8:26:41:97:
05:e6:d0:6a:57:ad:4f:73:9e:50:ed:61:04:47:6b:72:54:ef:
83:a2:06:00:34:3d:79:07:bb:d2:6e:f2:c3:21:07:b4:2e:6a:
11:73:60:89:59:1a:e6:44:ab:fc:f0:a7:52:ae:35:bb:da:b5:
d4:5d:d5:c1:fa:66:5f:74:b5:77:9d:35:f4:ed:47:c0:e6:92:
a7:1c:4c:32:63:bc:9b:fb:6f:4c:ce:78:8a:ed:1b:ac:1c:11:
51:bc:8a:36:21:49:d3:36:31:27:bd:19:ab:a5:db:79:60:68:
d5:3e:57:a0:aa:b4:c9:86:15:d7:38:7c:20:fd:d1:01:ef:d0:
1f:62:28:1a:12:f5:0b:7a:13:60:9c:6a:25:e7:ad:a4:bf:6f:
c5:95:cb:54:8d:04:e4:1c:d7:12:64:ca:a9:2a:b1:25:fa:b9:
29:b8:d7:9e:77:05:4f:9a:d9:90:27:65:bf:dd:c0:2b:06:50:
44:5b:99:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:41 2024 by rpki-client on console-ams.rpki-client.org