Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Y3KiYHnFM_AA2JKLZ9FlD6AJrig.roa
File: Y3KiYHnFM_AA2JKLZ9FlD6AJrig.roa (raw, json)
Hash identifier: cuASzGD4fxtr7imUe/OhQ1xrtqAGo4TOL/xjzbzvDHA=
Subject key identifier: 63:72:A2:60:79:C5:33:F0:00:D8:92:8B:67:D1:65:0F:A0:09:AE:28
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 01867B2265C64002140311B9C4ADAE384C52
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Y3KiYHnFM_AA2JKLZ9FlD6AJrig.roa
Signing time: Wed 22 Feb 2023 21:58:17 +0000
ROA not before: Wed 22 Feb 2023 21:58:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.17.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Mar 2023 02:36:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7b:22:65:c6:40:02:14:03:11:b9:c4:ad:ae:38:4c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Feb 22 21:58:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6372a26079c533f000d8928b67d1650fa009ae28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:52:0c:89:55:1e:ff:45:5e:2c:2b:82:53:50:
b7:d4:47:1c:3a:55:ab:7a:ec:02:66:15:dc:5a:28:
bb:cd:39:e4:23:1d:0c:b6:af:de:44:26:4d:21:51:
27:ea:18:ce:16:a1:59:35:f4:d2:a6:38:0f:0d:87:
1a:fb:b8:5d:b0:f1:2a:21:7b:8b:45:2b:20:a5:2f:
30:ab:10:89:86:94:be:49:1b:0c:89:39:fe:f1:66:
2a:61:ef:30:26:bc:53:13:35:c2:1c:78:d7:6c:42:
a2:db:02:87:7f:ba:4c:64:2e:98:35:a2:e2:a8:ec:
17:d0:89:ed:f0:ad:57:94:59:9d:d3:dd:38:76:e7:
1e:90:58:1f:77:a8:68:27:8d:62:88:46:d0:12:21:
80:a3:58:bb:29:ac:4c:c1:31:1c:cd:d9:1f:e1:74:
b8:65:99:39:66:ff:e4:65:b7:48:83:84:ef:a1:df:
49:63:b3:62:14:f9:92:41:d5:51:62:d6:bb:b7:b0:
d2:df:fa:ef:9b:e1:92:9c:99:69:07:fc:42:a3:bd:
75:1d:65:e9:c5:9f:94:18:eb:0e:36:a5:5a:b4:b3:
5c:71:dd:35:8d:c3:a8:ec:ff:3e:a0:38:bb:29:60:
1e:4a:25:9a:bb:b1:03:d5:8b:3f:dd:05:31:ff:a8:
04:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:72:A2:60:79:C5:33:F0:00:D8:92:8B:67:D1:65:0F:A0:09:AE:28
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/Y3KiYHnFM_AA2JKLZ9FlD6AJrig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.65.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:d4:74:a0:24:01:cb:3c:54:e4:09:ea:e1:75:fb:2b:72:30:
ca:35:e9:60:8f:c0:c1:ae:a2:f2:1c:65:db:48:b7:c9:43:01:
58:b7:02:64:ed:dc:87:6c:84:86:06:f8:47:26:e4:cd:e5:3c:
df:7d:40:8d:1f:c5:b6:2a:b3:37:67:a6:44:de:72:4e:f8:1c:
20:d2:94:66:bd:bc:3a:e2:ee:d7:10:94:62:c9:ca:63:a0:d4:
a9:68:66:7b:3c:55:26:2c:ae:8d:3a:28:4a:12:60:07:a0:68:
cf:b2:cf:d9:00:39:cf:ba:26:64:dc:ae:d4:04:2f:66:b9:3d:
ef:6e:1d:e0:f7:1b:d5:70:97:40:15:bd:66:79:cf:80:a4:63:
ed:5d:12:f0:71:39:a7:49:78:3e:10:b5:ea:bf:44:ff:52:4f:
69:42:e8:a9:66:6a:e2:fa:91:cd:8a:90:61:93:3f:2d:57:97:
e8:6b:4e:33:24:64:b4:76:81:07:b5:88:4a:4c:87:04:0f:ed:
cf:12:fb:f5:1a:06:01:bc:96:df:47:ea:40:5b:79:82:53:97:
28:7b:9c:43:0c:dc:5a:8c:87:2a:39:c5:67:f5:ad:db:f3:6a:
9f:43:c0:a8:93:50:84:3d:aa:76:19:0d:d7:f9:11:a9:98:4f:
a8:7a:9e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:00 2024 by rpki-client on console-ams.rpki-client.org