Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/9Il-9QGf09qKaGD-y7514DiUVLo.roa
File: 9Il-9QGf09qKaGD-y7514DiUVLo.roa (raw, json)
Hash identifier: E9f90D2Y0fX0fZZBh9SFUbEr38wAQzb5r/FNUT8ahww=
Subject key identifier: F4:89:7E:F5:01:9F:D3:DA:8A:68:60:FE:CB:BE:75:E0:38:94:54:BA
Certificate issuer: /CN=d860f6f2c318559e65959cd5f28d159a0842d72a
Certificate serial: 018636C41FB7B8643A2F87C528A092323944
Authority key identifier: D8:60:F6:F2:C3:18:55:9E:65:95:9C:D5:F2:8D:15:9A:08:42:D7:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GD28sMYVZ5llZzV8o0VmghC1yo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/9Il-9QGf09qKaGD-y7514DiUVLo.roa
Signing time: Thu 09 Feb 2023 15:21:08 +0000
ROA not before: Thu 09 Feb 2023 15:21:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59447
IP address blocks: 185.234.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:36:c4:1f:b7:b8:64:3a:2f:87:c5:28:a0:92:32:39:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d860f6f2c318559e65959cd5f28d159a0842d72a
Validity
Not Before: Feb 9 15:21:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4897ef5019fd3da8a6860fecbbe75e0389454ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:55:4d:29:a9:f6:e1:c9:10:f7:28:e4:5a:cb:
8c:a0:ea:1f:a5:a2:28:42:ae:2a:4f:e6:66:a8:62:
ec:4f:a0:57:2a:14:44:bd:08:80:50:2c:7e:da:9e:
fb:2d:fc:d8:28:0b:d6:83:e2:6c:16:d2:d2:89:59:
69:2d:cf:c7:b0:93:50:3d:54:c6:71:95:33:b0:c8:
41:9f:08:39:f9:32:29:d1:de:06:22:12:4e:d3:c6:
22:7b:6f:22:92:a0:3e:5c:61:b7:f1:73:8f:0a:1b:
2e:05:62:e4:93:d3:c2:0a:28:73:5a:bb:f0:7e:aa:
54:40:79:8b:8c:d2:49:86:82:e2:2e:8b:0f:40:4a:
38:59:2a:89:b6:32:65:80:e4:24:20:4c:0f:48:a5:
32:55:6a:66:a0:62:07:90:25:f5:e0:77:8f:91:44:
82:e4:c2:8c:b0:43:be:42:8c:12:db:9f:be:e7:ac:
65:8a:da:6d:81:12:39:88:30:46:ca:de:d7:44:d1:
dd:fc:83:ff:c8:43:a3:c1:ea:93:75:b4:4d:5e:fa:
b8:c1:de:ff:fe:07:88:de:21:50:42:83:38:79:3b:
01:d0:d2:35:35:85:94:2a:59:e0:da:6a:ef:06:ea:
22:29:19:b0:1a:a4:a2:40:b8:fb:51:16:c3:cf:6e:
ca:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:89:7E:F5:01:9F:D3:DA:8A:68:60:FE:CB:BE:75:E0:38:94:54:BA
X509v3 Authority Key Identifier:
keyid:D8:60:F6:F2:C3:18:55:9E:65:95:9C:D5:F2:8D:15:9A:08:42:D7:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GD28sMYVZ5llZzV8o0VmghC1yo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/9Il-9QGf09qKaGD-y7514DiUVLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/76602c-c1ac-46a3-81bc-deeff3b2ae8a/1/2GD28sMYVZ5llZzV8o0VmghC1yo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.12.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:d5:11:df:16:76:9a:ea:73:63:b7:63:69:2d:53:7d:0b:9b:
6f:21:98:d1:68:68:50:55:99:32:12:0e:fc:7e:43:f8:6b:21:
2e:73:b0:96:7d:38:49:2a:4d:2c:d2:9f:60:ec:07:10:89:39:
88:fb:20:0f:66:a2:42:83:c3:e2:e0:d6:aa:c2:83:03:38:fe:
17:26:45:08:b0:87:80:83:5c:88:a3:33:76:de:b6:5a:a1:ae:
94:f5:1b:a2:d0:b8:7c:06:99:6d:0a:13:3e:50:57:63:a6:e8:
99:23:8a:2d:0c:9f:aa:cf:f5:ac:90:33:d0:57:c4:00:a4:b8:
87:d3:80:d6:29:4b:6f:b4:8a:0f:4d:00:b6:30:e2:e1:0f:f1:
98:1c:29:9a:4e:9a:52:06:57:90:94:24:da:65:2b:ed:cd:69:
80:8c:41:d6:eb:d3:eb:b5:4c:44:75:9d:ce:3a:a0:27:72:66:
c5:45:8c:ac:90:20:02:ef:b6:9f:c4:9b:d4:03:72:4f:68:56:
d8:ec:92:94:e6:88:f6:a3:63:ee:ff:51:0e:33:20:f4:ca:6c:
7f:75:c6:ca:a4:fd:56:9e:c5:04:80:91:dc:51:57:e2:a9:91:
00:31:42:45:fb:c2:15:c5:14:78:66:08:c1:18:36:d2:36:17:
af:0b:67:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-ams.rpki-client.org