Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/n5pyR1eHl32m-gEPieTMCfzFLV0.roa
File: n5pyR1eHl32m-gEPieTMCfzFLV0.roa (raw, json)
Hash identifier: qAH3nYM9iG7WrF8E5XCMtMW0txOUevLA9wnkT6Y6lVk=
Subject key identifier: 9F:9A:72:47:57:87:97:7D:A6:FA:01:0F:89:E4:CC:09:FC:C5:2D:5D
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018DB3DD00CA3DD79DF13F433DA92A124680
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/n5pyR1eHl32m-gEPieTMCfzFLV0.roa
Signing time: Fri 16 Feb 2024 21:40:21 +0000
ROA not before: Fri 16 Feb 2024 21:40:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.227.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Feb 2024 20:13:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:b3:dd:00:ca:3d:d7:9d:f1:3f:43:3d:a9:2a:12:46:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Feb 16 21:40:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f9a72475787977da6fa010f89e4cc09fcc52d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d2:ed:e4:ca:db:e6:be:89:49:ec:40:c3:e6:
97:cf:7b:17:da:90:19:d9:e0:29:3a:55:2c:9b:3a:
73:da:b3:8c:8f:0e:7e:5f:a0:64:ad:12:93:b8:d9:
a5:31:18:2a:09:37:3f:97:f3:70:f2:81:11:5a:da:
15:64:b9:c1:ea:91:98:9d:50:77:78:67:12:34:89:
24:9e:32:20:4f:4a:f4:4b:9d:2c:a7:95:2c:35:2b:
f1:1f:e2:26:9f:01:88:cf:c4:0f:15:79:64:7c:32:
dc:13:df:6b:6f:32:42:5e:7b:a8:ab:3f:1a:6a:73:
61:aa:38:7a:32:48:d9:66:9b:cc:f7:07:dc:81:c6:
ca:b4:7e:a6:9f:a0:0e:e4:7c:b2:39:aa:dd:28:3e:
43:72:9e:69:85:37:7b:97:db:f9:c6:f7:c2:2e:f9:
88:a8:8b:97:88:2b:77:08:55:de:cf:85:25:e2:a8:
52:5b:d1:ca:6f:a7:2b:78:10:66:f3:fe:44:86:0e:
89:58:fa:58:1f:7c:ea:39:ea:22:3e:af:76:7f:8b:
89:f7:a6:4b:46:e3:e5:f2:45:31:67:73:d3:0d:24:
8b:25:4b:80:7b:8e:1f:ae:38:19:4b:2f:f3:f2:ba:
6b:d2:7b:f5:73:35:ca:b0:77:24:e8:55:ff:c5:c8:
eb:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:9A:72:47:57:87:97:7D:A6:FA:01:0F:89:E4:CC:09:FC:C5:2D:5D
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/n5pyR1eHl32m-gEPieTMCfzFLV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.7.0/24
Signature Algorithm: sha256WithRSAEncryption
71:05:67:69:cb:3d:af:eb:03:54:bb:1d:b0:11:65:95:5a:92:
5c:0e:b5:52:af:10:02:9d:b3:87:d4:60:54:62:fa:e5:66:8e:
d7:54:d4:85:d1:48:1b:8c:8a:ec:fc:6c:06:aa:65:0c:8d:ad:
d2:c6:55:06:ff:34:40:83:0a:a5:3b:5d:34:6a:13:f2:9f:95:
6d:1e:63:a1:62:90:31:41:67:f8:01:84:5f:cc:8c:14:86:51:
54:50:d7:0d:9c:74:6b:cc:08:4c:54:d8:ad:33:36:e0:87:09:
d6:5d:99:12:f8:4d:4f:08:9e:f5:3f:bb:5c:c2:3a:83:09:ac:
57:0a:e3:54:a6:88:40:ac:8f:90:e7:85:4a:96:ab:6d:99:53:
44:16:1c:b0:a0:e8:53:5b:31:85:70:14:0c:06:11:1d:34:dc:
db:69:f9:f8:4b:94:4c:13:4f:f0:cb:d0:67:c7:80:c1:70:a7:
d0:86:74:2b:21:95:f2:dd:00:84:47:19:a2:ee:a3:be:c0:dc:
65:be:9f:a1:a0:c7:67:b3:e8:8a:c0:8e:8d:9c:31:bc:be:5a:
24:c0:f4:f9:81:03:d3:64:24:77:58:60:59:d4:e2:9f:72:4b:
c7:34:52:6c:e0:37:a2:b1:7a:a3:39:20:3f:6d:d6:7c:69:d8:
90:67:90:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 19 01:00:31 2024 by rpki-client on console-ams.rpki-client.org