Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/clFsgWq9A0rdbyoj92PP7P_-HeE.roa
File: clFsgWq9A0rdbyoj92PP7P_-HeE.roa (raw, json)
Hash identifier: MkDafZ+foSDP6aFL2IoJO8Pfd3AiGzoTcTjOfj37/I4=
Subject key identifier: 72:51:6C:81:6A:BD:03:4A:DD:6F:2A:23:F7:63:CF:EC:FF:FE:1D:E1
Certificate issuer: /CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Certificate serial: 0185718C28E5FC169F4E9FAA34366E0EF05A
Authority key identifier: 95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/clFsgWq9A0rdbyoj92PP7P_-HeE.roa
Signing time: Mon 02 Jan 2023 08:14:48 +0000
ROA not before: Mon 02 Jan 2023 08:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58152
IP address blocks: 185.187.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:28:e5:fc:16:9f:4e:9f:aa:34:36:6e:0e:f0:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9588d8b4c7aa45a9b2cd737c614871eb7181babe
Validity
Not Before: Jan 2 08:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72516c816abd034add6f2a23f763cfecfffe1de1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:52:37:d8:22:7f:04:d3:eb:eb:4b:e3:e3:68:
14:10:e9:b6:dd:92:89:e8:36:f6:63:68:c6:2a:4f:
86:17:73:dc:48:97:d1:f2:96:69:69:b1:a1:6c:2c:
c0:d5:5f:d9:5e:ba:68:cc:0f:a3:96:c8:78:80:c8:
8e:10:d4:41:3d:2f:b4:ec:c7:09:af:84:e2:62:ee:
98:df:a5:9c:3f:6a:cf:4e:d3:42:c5:2e:47:27:96:
fe:ed:1b:94:ac:6d:ba:68:03:ee:74:f9:0a:dd:d7:
9a:26:44:34:9b:07:d6:00:94:75:60:ee:c3:69:ca:
9e:61:69:a6:0e:29:f2:9d:80:21:52:f8:3c:f1:0b:
f3:63:50:aa:23:f0:ae:88:06:ef:2d:0d:33:4d:78:
0b:e9:29:54:3e:d5:b7:49:13:cb:9e:62:14:76:e7:
0c:b7:35:ff:39:84:9e:e7:7d:7d:e1:37:a9:f4:4d:
b8:4b:0f:cb:2f:80:50:1d:e3:ab:f8:94:59:3a:63:
c6:03:6d:0d:33:9e:8e:52:0c:55:eb:87:50:72:0d:
b6:73:ba:19:6f:e2:14:bd:28:74:8b:4c:b5:8c:50:
d9:ba:0f:45:a7:f8:23:12:09:f1:64:8c:1e:de:62:
60:67:ee:94:f7:ab:7c:a7:f3:9f:26:80:00:fd:a6:
f5:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:51:6C:81:6A:BD:03:4A:DD:6F:2A:23:F7:63:CF:EC:FF:FE:1D:E1
X509v3 Authority Key Identifier:
keyid:95:88:D8:B4:C7:AA:45:A9:B2:CD:73:7C:61:48:71:EB:71:81:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lYjYtMeqRamyzXN8YUhx63GBur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/clFsgWq9A0rdbyoj92PP7P_-HeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/00c3ab-4a7f-4f74-b556-a488bd42024f/1/lYjYtMeqRamyzXN8YUhx63GBur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.50.0/24
Signature Algorithm: sha256WithRSAEncryption
95:4d:63:c4:9c:c3:50:30:b6:e7:d8:d2:eb:29:14:0e:5d:72:
b5:ce:be:ff:35:85:f2:56:66:41:30:f8:30:b0:29:63:d3:3a:
68:1b:ac:1d:f5:b4:aa:e4:5f:0c:82:99:f5:e1:d9:4f:c3:f4:
68:be:db:8d:db:6d:c6:17:e6:ef:7f:c7:ad:e0:fc:f4:fe:12:
e0:1e:cf:23:15:9a:4a:ae:cc:08:0c:fe:9f:1a:eb:e1:cf:cc:
54:3b:2d:35:8f:8a:c1:7d:fa:1f:dc:6b:61:11:2a:ff:84:4a:
ce:8f:7d:09:59:1f:70:33:38:71:ce:a9:25:a6:7a:8b:ca:5b:
82:0c:5d:16:c0:43:f7:43:22:14:50:9b:d8:fd:c6:c1:d9:f9:
09:ef:84:b5:f0:c2:f9:24:91:4e:dd:85:f0:bc:a0:7d:37:a7:
4b:6b:8e:bb:4e:4c:6c:d6:5d:f1:0e:6d:2c:42:94:26:36:76:
a8:4b:f2:22:af:b8:62:cc:3e:ad:8d:ac:4a:22:de:4e:a5:5b:
9a:db:8f:9f:42:e1:a3:60:c2:3e:ee:cd:da:80:75:61:04:08:
54:ca:81:6c:1c:ca:ba:c0:c9:e6:a7:1f:25:90:84:cc:b0:fb:
a5:01:d7:14:8e:3f:e5:d2:48:7a:6c:e1:d1:38:25:58:65:6c:
5c:21:b4:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:11 2024 by rpki-client on console-ams.rpki-client.org