Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/9rT1ODC6tdS8hCE0P5iIX1Dvwho.roa
File: 9rT1ODC6tdS8hCE0P5iIX1Dvwho.roa (raw, json)
Hash identifier: /Ye3Chnb6IOLrP3VEfyEEki3iXwgInuvAhamRKIWr7o=
Subject key identifier: F6:B4:F5:38:30:BA:B5:D4:BC:84:21:34:3F:98:88:5F:50:EF:C2:1A
Certificate issuer: /CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Certificate serial: 018570B0656E6C15C03217CB6D5591C64B21
Authority key identifier: 53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/9rT1ODC6tdS8hCE0P5iIX1Dvwho.roa
Signing time: Mon 02 Jan 2023 04:14:46 +0000
ROA not before: Mon 02 Jan 2023 04:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44322
IP address blocks: 185.165.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:65:6e:6c:15:c0:32:17:cb:6d:55:91:c6:4b:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53da99f93518e29a945b07f60a18ef86e9b39e65
Validity
Not Before: Jan 2 04:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6b4f53830bab5d4bc8421343f98885f50efc21a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:a6:01:d9:dd:53:e6:9e:cb:32:9a:34:73:5b:
e5:ed:2d:1b:84:99:2b:4a:ae:06:9d:0c:e7:02:47:
2e:51:82:8c:37:74:c5:20:38:b8:89:7e:d1:c3:55:
68:a1:5b:e1:65:5d:9a:05:e3:d2:c8:7e:70:e1:a9:
9b:bf:c3:5d:55:f1:6c:f9:4f:3a:7a:99:74:94:dc:
17:1c:7c:cd:c4:1f:bb:f0:5b:bb:5e:ea:60:53:fd:
99:6b:37:8c:ff:f0:13:ef:70:40:49:9c:2b:17:78:
3f:c4:fa:c2:15:5f:35:b9:11:6b:19:e3:40:0b:d1:
25:1b:94:c5:81:da:91:53:61:20:03:bf:e9:d7:7d:
35:94:8a:64:1b:60:23:a3:3c:13:1f:63:7f:92:00:
3f:b0:45:ef:ad:91:a4:77:ae:ce:9d:a6:e9:4a:50:
fe:31:1a:1f:cb:e3:48:a7:f5:c9:e3:56:60:2a:14:
a6:8a:25:54:01:01:a0:09:0d:d2:69:38:c7:fe:d6:
3b:5a:13:f1:50:51:b0:56:53:45:29:0a:fa:b9:06:
28:69:3a:cd:93:42:ce:72:db:f8:7c:9a:fe:9a:eb:
76:a6:5a:c7:5e:cd:ad:2f:5a:70:4d:23:b5:8d:c9:
73:dd:25:ab:52:d5:91:73:59:b4:8f:8c:77:ae:df:
b7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:B4:F5:38:30:BA:B5:D4:BC:84:21:34:3F:98:88:5F:50:EF:C2:1A
X509v3 Authority Key Identifier:
keyid:53:DA:99:F9:35:18:E2:9A:94:5B:07:F6:0A:18:EF:86:E9:B3:9E:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9qZ-TUY4pqUWwf2ChjvhumznmU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/9rT1ODC6tdS8hCE0P5iIX1Dvwho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/583543-e331-4592-8d89-9f302c20ae70/1/U9qZ-TUY4pqUWwf2ChjvhumznmU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.112.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:db:a7:67:52:ba:bd:3a:b8:1b:c1:b4:d9:e9:6b:e1:f9:d1:
23:6c:56:cd:6b:12:72:56:4d:e9:40:d8:2b:37:c1:6b:fb:19:
75:04:93:c6:95:28:20:57:69:bd:ec:32:b1:c7:ef:00:75:a6:
75:59:37:e7:14:db:54:00:4c:84:0b:14:32:1f:a5:fb:be:a1:
65:3a:f8:e4:e7:c1:17:6f:e3:9f:cf:88:34:60:84:ce:06:a2:
ca:b1:56:06:21:bc:ed:03:a6:57:55:c6:35:b0:28:f2:a7:a8:
ed:bd:0c:37:98:8e:8c:77:60:6d:d2:57:6b:93:81:7e:dc:07:
64:d4:48:48:b8:e5:44:d4:06:cd:f6:ae:f5:3a:bc:57:48:87:
9b:96:cd:b2:93:57:9a:43:41:f8:85:b0:b0:2e:63:55:cc:4b:
0a:9d:91:08:a7:82:5b:50:98:16:fb:a5:ed:49:29:58:2d:b6:
c5:04:85:4b:e9:95:1d:00:64:1e:79:ca:39:06:fd:68:ca:fc:
fd:4b:19:a3:7b:ab:61:d9:ae:45:3b:83:bb:fe:82:33:f3:05:
36:4f:42:ef:79:7c:f6:23:85:2c:7f:a1:ca:d2:f8:41:30:e0:
a0:73:d6:2e:d6:3a:94:76:19:38:c0:3d:58:02:10:6d:a5:c8:
13:52:6b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:19 2024 by rpki-client on console-fra.rpki-client.org