Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/DRIUZPgdlSoUYHDOyRK0vWdPW6k.roa
File: DRIUZPgdlSoUYHDOyRK0vWdPW6k.roa (raw, json)
Hash identifier: yK6ZjROdd+Fw7GhbFCXQm+0vsKOvQ7MTF/Uj2KhtTec=
Subject key identifier: 0D:12:14:64:F8:1D:95:2A:14:60:70:CE:C9:12:B4:BD:67:4F:5B:A9
Certificate issuer: /CN=7247ba43e270c98bdc642a9e3c218ca524eb0f53
Certificate serial: 018597156230FB1919EB557A6BD470C76EF9
Authority key identifier: 72:47:BA:43:E2:70:C9:8B:DC:64:2A:9E:3C:21:8C:A5:24:EB:0F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/DRIUZPgdlSoUYHDOyRK0vWdPW6k.roa
Signing time: Mon 09 Jan 2023 15:10:39 +0000
ROA not before: Mon 09 Jan 2023 15:10:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.227.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:97:15:62:30:fb:19:19:eb:55:7a:6b:d4:70:c7:6e:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7247ba43e270c98bdc642a9e3c218ca524eb0f53
Validity
Not Before: Jan 9 15:10:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d121464f81d952a146070cec912b4bd674f5ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a6:93:32:cc:f8:f8:db:13:14:7a:22:e4:76:
d1:a8:7c:86:dc:b9:1b:9c:e8:d0:e7:81:4e:4f:13:
c8:31:3a:39:54:b1:02:37:12:59:91:6e:55:2e:5a:
5a:71:4e:1f:f3:96:94:bc:f7:88:76:f4:f0:cf:2b:
9b:99:9c:35:c9:30:ab:a5:55:9c:cf:96:21:d5:5f:
b3:b0:a2:ba:ff:2d:02:a0:37:29:74:d0:52:84:5f:
5c:4a:fe:ed:03:91:f4:4a:a3:3b:cb:3e:09:07:70:
22:ec:1a:29:c4:88:fd:b5:93:09:17:75:fd:97:65:
d2:ce:06:41:68:e2:80:2f:f9:59:5f:2c:c8:27:3d:
6a:6f:a9:24:a0:5b:db:1e:cc:df:90:5d:b7:64:e3:
e4:eb:e7:21:71:fd:14:70:b2:b3:72:e3:0c:c6:14:
d9:84:b8:2d:8b:b1:49:73:fe:4c:51:a8:29:a0:ac:
90:57:8e:bd:0f:e8:09:af:2f:db:eb:89:b6:79:b4:
4b:d2:b9:e7:bd:72:52:07:13:58:5f:57:6e:98:25:
a1:52:59:1a:51:dc:ed:78:d3:a0:1f:92:78:28:60:
c1:fe:14:17:d0:9a:fb:88:9f:4e:30:60:73:26:48:
bf:d7:05:84:54:48:48:ed:71:6e:70:a0:c3:dc:ea:
9b:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:12:14:64:F8:1D:95:2A:14:60:70:CE:C9:12:B4:BD:67:4F:5B:A9
X509v3 Authority Key Identifier:
keyid:72:47:BA:43:E2:70:C9:8B:DC:64:2A:9E:3C:21:8C:A5:24:EB:0F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cke6Q-JwyYvcZCqePCGMpSTrD1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/DRIUZPgdlSoUYHDOyRK0vWdPW6k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/341068-28f6-4f81-993f-279203b1d92c/1/cke6Q-JwyYvcZCqePCGMpSTrD1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.234.0/24
Signature Algorithm: sha256WithRSAEncryption
91:2e:8c:f9:2d:c1:be:80:23:ab:7a:de:e4:6d:e4:04:15:e1:
58:81:94:3f:00:28:7e:87:39:37:b3:36:a5:73:27:d8:44:9e:
5f:23:c8:4b:a4:8b:2e:63:db:49:bb:2c:29:0b:9b:bd:9c:2d:
85:5c:26:67:5d:1f:53:3c:b1:c6:64:a0:20:c0:b9:6f:57:0a:
86:24:8e:47:80:70:e5:f0:f9:cd:b8:3d:53:6a:38:7b:0a:b0:
f9:af:c4:6d:f0:cc:78:b9:af:c8:48:e1:a1:38:7f:3a:d5:e4:
db:dd:71:ed:61:4d:58:75:ea:22:5b:4b:d9:cd:68:a6:77:20:
73:1e:e0:72:66:fa:df:b2:c8:37:07:bc:ff:cb:69:39:10:ed:
ed:a0:58:fd:d6:ec:68:7c:35:14:78:10:15:4b:7e:17:ae:45:
98:54:75:90:7e:8f:12:69:53:ac:e0:d4:60:79:41:74:b5:38:
af:64:61:fb:43:84:f8:92:5c:8f:ae:9a:52:96:f8:12:19:9f:
c3:cc:35:fd:db:a5:4b:6b:a7:8a:83:f8:c1:d4:26:d5:ad:b9:
89:fa:e9:a3:f6:ea:7b:06:de:86:8b:be:f4:30:89:05:67:f1:
4d:c6:fc:1f:79:71:35:6f:1c:44:19:cb:e9:20:e3:af:42:25:
95:74:ce:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:24 2024 by rpki-client on console-ams.rpki-client.org