Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/DgyjxYVSY-H3RQwDWyr5x_6wXa4.roa
File: DgyjxYVSY-H3RQwDWyr5x_6wXa4.roa (raw, json)
Hash identifier: ohk49USPGDYcybgA46mAJGYDIfPLT2bWesXsi0iySFM=
Subject key identifier: 0E:0C:A3:C5:85:52:63:E1:F7:45:0C:03:5B:2A:F9:C7:FE:B0:5D:AE
Certificate issuer: /CN=e4c86da3f483246518d368034bc86113906a55a3
Certificate serial: 01927B7AB4DE79696094B7DFEE7D2DB619C4
Authority key identifier: E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/DgyjxYVSY-H3RQwDWyr5x_6wXa4.roa
Signing time: Fri 11 Oct 2024 12:08:11 +0000
ROA not before: Fri 11 Oct 2024 12:08:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.10.122.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sat 12 Oct 2024 10:44:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7b:7a:b4:de:79:69:60:94:b7:df:ee:7d:2d:b6:19:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4c86da3f483246518d368034bc86113906a55a3
Validity
Not Before: Oct 11 12:08:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e0ca3c5855263e1f7450c035b2af9c7feb05dae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:1d:6b:ad:2b:11:27:5d:22:89:9e:48:3e:3b:
04:60:09:56:26:83:d0:92:76:78:1d:09:47:62:7d:
3a:c0:82:b5:ac:10:65:1b:c2:2b:82:60:80:3a:c3:
10:a2:49:c0:50:a5:40:83:6f:9b:d7:ce:43:2e:02:
e5:9b:f1:59:d0:68:b7:78:0b:6c:f0:4e:e8:83:c3:
79:6f:12:79:b7:84:5a:ca:b6:60:c2:23:70:65:2b:
42:d2:0d:83:22:f5:fa:2f:40:e5:84:b7:2b:d1:c0:
0b:56:ef:38:38:d2:d5:34:1c:f4:6f:c5:bf:71:5a:
b9:11:82:04:9f:1d:f6:aa:b4:de:92:0c:5c:f0:9c:
6c:02:77:2d:5e:eb:01:67:5c:9a:46:80:b6:b3:c3:
40:ec:ce:3e:85:ae:18:2d:6b:51:e8:72:8f:19:9d:
41:ab:75:1f:65:54:4b:af:17:1a:f5:70:d0:25:f7:
7c:a7:4d:4c:40:0d:cf:ca:28:ff:ba:6e:e6:ba:20:
3d:58:17:ab:f2:12:ea:74:1c:43:aa:ed:6c:3f:9d:
7d:ad:ab:4a:47:9e:d9:88:05:53:3f:67:20:4b:d3:
4c:4b:f7:ce:0e:2b:b2:7d:76:76:3f:95:47:50:51:
04:61:70:03:c2:aa:cf:71:5d:67:31:34:86:44:2a:
0b:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:0C:A3:C5:85:52:63:E1:F7:45:0C:03:5B:2A:F9:C7:FE:B0:5D:AE
X509v3 Authority Key Identifier:
keyid:E4:C8:6D:A3:F4:83:24:65:18:D3:68:03:4B:C8:61:13:90:6A:55:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Mhto_SDJGUY02gDS8hhE5BqVaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/DgyjxYVSY-H3RQwDWyr5x_6wXa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/b4e503-574b-4565-9217-c511a3e912b6/1/5Mhto_SDJGUY02gDS8hhE5BqVaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.122.0/23
Signature Algorithm: sha256WithRSAEncryption
14:9e:23:04:de:c3:ce:d0:11:69:b0:6f:7a:53:50:e9:8e:ff:
72:27:06:4b:4c:90:f8:fb:68:c8:a2:45:2d:f5:d2:4f:03:ab:
98:1d:52:41:d7:3a:84:5d:6b:66:b7:97:a7:a8:90:48:49:0e:
b5:41:e4:38:cc:3e:9e:df:a7:f6:8c:ee:6c:c4:f6:9c:30:9d:
f8:69:75:cd:10:5b:7e:cb:84:d9:99:28:cd:17:5b:e6:a5:46:
93:38:47:6d:2a:b2:ce:49:73:87:86:44:8a:3e:b1:8f:e0:eb:
78:74:08:d3:ac:94:a5:99:f7:c4:23:91:4d:79:90:99:d8:9a:
7e:18:55:a3:de:24:b2:8c:fb:be:2e:b7:f2:d0:f8:79:b3:47:
94:e0:01:f3:dc:03:b3:10:e1:ea:16:5f:a7:29:10:cd:7b:7c:
b4:9a:3e:63:1f:5e:d8:71:06:2a:2a:97:83:07:ba:45:b4:37:
11:5f:c0:21:ed:bc:c1:3c:c5:1a:b2:ad:8b:87:58:f4:93:2b:
37:c0:0b:f3:60:3a:95:42:a5:bc:da:95:10:d2:58:03:e4:c6:
67:a0:8c:85:a9:1e:1f:7a:1f:5f:8c:c3:b5:65:27:d0:12:1f:
fa:46:18:71:00:8e:65:ee:0a:c9:98:61:f8:56:9c:79:be:a3:
4e:95:56:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 12 14:17:13 2024 by rpki-client on console-ams.rpki-client.org