Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/yD1sG9JF-2BOnf8U6_KYsR-xXh8.roa
File: yD1sG9JF-2BOnf8U6_KYsR-xXh8.roa (raw, json)
Hash identifier: TsHNkeh5SipgmsENZLCjff5vwRfI4/kWesHr/AQHxkc=
Subject key identifier: C8:3D:6C:1B:D2:45:FB:60:4E:9D:FF:14:EB:F2:98:B1:1F:B1:5E:1F
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01869AB4CE026930093BB915D6BF19CE5293
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/yD1sG9JF-2BOnf8U6_KYsR-xXh8.roa
Signing time: Wed 01 Mar 2023 01:06:25 +0000
ROA not before: Wed 01 Mar 2023 01:06:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 185.200.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 17 Mar 2023 01:21:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9a:b4:ce:02:69:30:09:3b:b9:15:d6:bf:19:ce:52:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Mar 1 01:06:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c83d6c1bd245fb604e9dff14ebf298b11fb15e1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:94:63:60:85:78:f1:6f:82:5f:ca:bb:68:41:
6b:63:03:33:27:8c:b4:ba:06:97:57:ba:0c:b3:b7:
3a:a5:62:26:84:72:de:50:26:45:aa:e4:78:fd:ba:
63:11:41:9a:a8:10:1b:2e:c7:d1:46:9f:ed:e6:30:
99:4f:f8:e0:d3:28:66:da:f9:54:72:59:ad:6b:bc:
47:b1:ee:0b:23:8c:e9:0d:b2:cc:01:74:8a:c3:89:
68:ca:75:cc:7b:22:55:97:77:1f:54:27:2a:6d:44:
bc:cb:37:1a:56:2a:a1:e9:f7:e1:fc:d7:bd:0a:04:
7d:d8:b1:a9:5e:60:9c:a4:67:63:a8:6b:ef:8f:76:
51:a1:d8:0c:4c:a8:92:20:b7:8f:86:4d:76:17:9d:
ed:27:7e:e8:8d:a1:93:96:c9:60:c7:24:11:8b:f2:
21:67:50:bc:9a:5f:34:23:b4:51:b8:95:5b:ea:a3:
f0:08:b9:e7:e0:56:a5:e9:c1:2b:1d:cd:54:e5:14:
c6:49:fd:49:ab:7e:1a:a8:f0:5b:54:49:77:06:61:
f1:d1:2c:92:d0:25:95:e7:90:0f:52:40:f6:a2:e9:
71:45:bc:3a:d6:f3:44:b3:e5:d9:b5:f6:fa:b6:8f:
a3:c4:2a:27:6d:3e:c5:45:09:55:1b:4f:00:9b:36:
8b:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3D:6C:1B:D2:45:FB:60:4E:9D:FF:14:EB:F2:98:B1:1F:B1:5E:1F
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/yD1sG9JF-2BOnf8U6_KYsR-xXh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.65.0/24
Signature Algorithm: sha256WithRSAEncryption
00:63:25:bd:66:82:73:ed:d9:b6:3f:09:74:ce:cb:01:b1:4b:
02:b2:78:ac:1c:55:eb:84:17:47:bb:a9:26:c4:42:d1:6f:39:
60:95:cc:48:14:05:a2:72:bf:08:9c:69:70:d8:a0:72:53:60:
76:e5:29:44:b7:09:5d:fb:85:e5:93:c2:59:b6:25:fc:51:03:
49:74:94:cf:8b:44:17:ba:ed:53:b8:f2:13:82:bb:45:df:0c:
6e:cd:fb:5c:bd:11:ac:79:ce:dc:c4:4c:40:00:29:da:00:60:
8f:7b:96:69:ff:eb:95:a7:9a:8b:fe:d3:b2:3c:a0:da:a2:3d:
d8:bf:bb:1d:06:11:68:78:1f:45:fe:32:9d:12:31:ab:3d:a3:
30:5c:f8:e5:ad:75:70:c6:7c:29:5b:1b:4e:82:43:eb:4d:c9:
82:a0:9b:4a:13:3c:0a:94:4a:f7:27:a9:23:bb:f6:42:de:fd:
e1:01:f9:09:98:ed:5f:a4:43:82:26:c4:55:bb:71:3e:bd:b2:
52:09:70:c2:23:51:d8:42:2a:32:97:53:e8:df:fc:43:3a:26:
10:9f:ab:92:53:9d:1f:07:2c:21:b1:80:e6:07:7e:cb:df:2d:
cc:6b:1c:4b:7e:7f:6b:49:d6:fe:90:58:da:4c:90:50:47:22:
d3:8d:7c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:48 2024 by rpki-client on console-fra.rpki-client.org