Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/46b040-4ac5-45c1-83fc-74b23c9885e2/1/jHHybKXtwWTNx4UWhOmrdzYuVuU.roa
File: jHHybKXtwWTNx4UWhOmrdzYuVuU.roa (raw, json)
Hash identifier: x29/W30pMOHM8H9l3GySA+Omax9QAVQ3+qJhvjYQ6Fk=
Subject key identifier: 8C:71:F2:6C:A5:ED:C1:64:CD:C7:85:16:84:E9:AB:77:36:2E:56:E5
Certificate issuer: /CN=e418b861f85199539c3b600868d38a75561a5a92
Certificate serial: 01857082B840A63768821397BFD1F3E6B0DE
Authority key identifier: E4:18:B8:61:F8:51:99:53:9C:3B:60:08:68:D3:8A:75:56:1A:5A:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Bi4YfhRmVOcO2AIaNOKdVYaWpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/46b040-4ac5-45c1-83fc-74b23c9885e2/1/jHHybKXtwWTNx4UWhOmrdzYuVuU.roa
Signing time: Mon 02 Jan 2023 03:24:53 +0000
ROA not before: Mon 02 Jan 2023 03:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61089
IP address blocks: 185.9.196.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:82:b8:40:a6:37:68:82:13:97:bf:d1:f3:e6:b0:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e418b861f85199539c3b600868d38a75561a5a92
Validity
Not Before: Jan 2 03:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c71f26ca5edc164cdc7851684e9ab77362e56e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f3:7f:a4:72:87:b2:c6:c7:7f:a7:ce:47:fe:
69:35:e8:ca:68:21:ec:25:ab:87:b6:78:21:cc:1b:
d1:e5:41:b8:30:1d:24:4b:2b:c5:ec:b5:5d:26:95:
98:50:73:39:85:e2:cc:dd:e0:37:7e:99:b6:d6:2a:
dc:41:b9:ab:e4:95:5e:8a:1f:8f:17:46:17:0b:33:
68:18:7d:d3:f4:1c:e1:09:60:a9:1c:69:af:b5:19:
f8:2c:04:8e:79:eb:88:ae:ba:9a:ba:6d:f4:1a:fd:
d7:1a:38:9d:27:cb:b4:02:67:d7:11:32:81:38:84:
29:f1:d6:9f:ed:2f:88:3e:62:88:1b:95:0f:b8:7e:
3b:71:d0:38:0f:f1:00:57:fe:1e:29:82:58:e7:fd:
5c:c0:6a:49:f9:64:5f:c5:75:2b:c1:22:ca:ff:98:
6f:02:45:04:f6:f4:75:6e:73:5e:26:1d:ce:c1:1b:
7e:69:e3:f6:96:55:3a:6a:ce:78:93:31:37:fd:72:
1e:b2:b3:8e:be:f8:2a:da:a0:58:46:53:8f:3e:4e:
37:ad:78:71:af:9f:8c:ff:d1:79:3e:a0:c7:d0:c7:
24:1b:cd:97:01:bd:21:39:03:cd:c0:5d:84:18:56:
fc:ee:be:a3:88:d5:1f:5b:6d:2b:d8:7d:1d:b2:03:
45:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:71:F2:6C:A5:ED:C1:64:CD:C7:85:16:84:E9:AB:77:36:2E:56:E5
X509v3 Authority Key Identifier:
keyid:E4:18:B8:61:F8:51:99:53:9C:3B:60:08:68:D3:8A:75:56:1A:5A:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Bi4YfhRmVOcO2AIaNOKdVYaWpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/46b040-4ac5-45c1-83fc-74b23c9885e2/1/jHHybKXtwWTNx4UWhOmrdzYuVuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/46b040-4ac5-45c1-83fc-74b23c9885e2/1/5Bi4YfhRmVOcO2AIaNOKdVYaWpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.196.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:26:18:dc:01:6a:39:26:7e:8f:ff:e4:75:70:e1:88:2b:96:
93:ed:cf:4f:4a:81:bf:de:85:db:e1:a9:51:d4:f1:f6:76:d0:
41:2d:36:94:58:eb:88:5a:ab:e7:55:ef:a6:74:14:19:36:a6:
31:f0:22:43:3d:2d:c5:46:03:4a:64:6e:0f:89:72:72:65:98:
7d:20:c5:c7:22:39:c5:ec:2b:43:9e:ed:6d:a1:4e:8b:15:41:
ea:94:36:40:36:4a:5f:03:f5:a7:95:d9:0e:09:e4:fe:49:ff:
07:ce:df:d2:a2:12:62:f9:61:ae:5f:11:5a:27:a3:46:6a:fe:
d4:58:f1:31:af:1d:fb:17:a7:2b:73:7f:b9:0f:2b:66:80:92:
76:27:8f:69:46:13:b3:00:22:ba:c2:ff:4b:de:4f:02:ce:a1:
94:48:8c:17:7c:6d:8a:ec:12:f7:b5:f3:9c:c1:11:74:b0:16:
d0:9b:be:f4:c8:0f:28:bf:9c:5a:9c:7c:f5:31:d4:44:eb:cf:
f8:1d:6f:94:60:fb:c3:44:99:8e:37:b9:1d:ee:1a:be:ad:39:
2e:94:32:08:fb:33:d2:6d:d3:3d:1c:98:84:a8:8e:9f:b4:9a:
ee:02:a2:76:f4:27:ba:61:e0:de:d8:68:1c:c2:57:aa:4c:ab:
e3:65:43:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:51 2024 by rpki-client on console-ams.rpki-client.org