Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/32a353-6659-480b-abf7-eb073797ac66/1/penPWn1cJR9D_YMRSC4Bt13avPw.roa
File: penPWn1cJR9D_YMRSC4Bt13avPw.roa (raw, json)
Hash identifier: 9C3e/r/wu4SBcJmGKZbxDMu3vC4Pf2TADu3qcx4685c=
Subject key identifier: A5:E9:CF:5A:7D:5C:25:1F:43:FD:83:11:48:2E:01:B7:5D:DA:BC:FC
Certificate issuer: /CN=4570d28fc49aa0ae808c383f587f3ea4cfeb049d
Certificate serial: 01856ECB76F82F6D1AAA65E37D1D2A405DBE
Authority key identifier: 45:70:D2:8F:C4:9A:A0:AE:80:8C:38:3F:58:7F:3E:A4:CF:EB:04:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RXDSj8SaoK6AjDg_WH8-pM_rBJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/32a353-6659-480b-abf7-eb073797ac66/1/penPWn1cJR9D_YMRSC4Bt13avPw.roa
Signing time: Sun 01 Jan 2023 19:25:06 +0000
ROA not before: Sun 01 Jan 2023 19:25:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49028
IP address blocks: 185.165.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:76:f8:2f:6d:1a:aa:65:e3:7d:1d:2a:40:5d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4570d28fc49aa0ae808c383f587f3ea4cfeb049d
Validity
Not Before: Jan 1 19:25:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5e9cf5a7d5c251f43fd8311482e01b75ddabcfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:09:a1:99:e5:1a:45:d4:18:84:63:e3:c3:8b:
db:64:f8:33:d9:2e:d7:75:b2:28:6c:03:25:6b:ee:
23:af:8a:04:95:9a:a4:f1:6d:1d:93:ed:67:5d:dd:
dc:4c:ef:ca:3e:5f:bd:25:9d:ad:31:f5:4f:6d:99:
cc:42:ca:ac:14:84:dc:a2:df:39:cf:14:40:3e:c9:
26:5d:7d:0e:8b:43:c9:36:56:17:d1:bf:97:e8:06:
1f:e0:c1:25:38:48:87:86:c8:83:d4:dc:e6:ab:c7:
b7:0d:c6:bd:a0:e3:26:75:98:a0:52:76:4f:6e:9d:
19:df:39:cb:72:3b:b7:bb:1d:65:f4:32:27:80:f8:
2d:5e:08:cf:1c:8c:b3:b5:fc:9a:0f:35:6a:be:68:
e8:ea:11:61:17:46:15:b0:44:d0:76:01:c0:ae:6b:
26:8e:b5:b9:be:b5:16:c0:14:7b:77:60:e2:3e:cf:
c2:39:62:a9:b3:81:58:54:e3:a4:61:15:15:42:58:
a6:f2:e1:c5:9d:7b:d0:49:43:36:49:98:87:84:b9:
23:cf:7a:0f:e6:56:70:9b:a2:b3:75:11:f9:b7:b2:
e2:82:e2:09:bc:e2:71:df:26:6d:39:f8:de:9c:2d:
39:99:04:61:1d:5d:79:cf:38:4b:9b:4a:00:c2:92:
26:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:E9:CF:5A:7D:5C:25:1F:43:FD:83:11:48:2E:01:B7:5D:DA:BC:FC
X509v3 Authority Key Identifier:
keyid:45:70:D2:8F:C4:9A:A0:AE:80:8C:38:3F:58:7F:3E:A4:CF:EB:04:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RXDSj8SaoK6AjDg_WH8-pM_rBJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/32a353-6659-480b-abf7-eb073797ac66/1/penPWn1cJR9D_YMRSC4Bt13avPw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/32a353-6659-480b-abf7-eb073797ac66/1/RXDSj8SaoK6AjDg_WH8-pM_rBJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.193.0/24
Signature Algorithm: sha256WithRSAEncryption
81:f0:8f:7b:2e:7b:bd:0a:5d:17:42:b2:07:72:bd:ac:c9:cd:
f1:75:43:3e:18:02:1f:86:30:0c:4f:9c:1f:ee:4c:bc:21:d7:
c8:13:16:48:f8:01:dc:03:de:21:3f:ed:c1:37:1e:b0:e6:4d:
46:b5:56:a2:e6:d5:dd:9b:53:b8:60:c8:16:d9:ad:ee:8d:88:
3b:3a:a5:04:07:cf:01:b8:ab:8e:c5:fc:53:b7:11:1a:4b:a6:
aa:57:8d:44:da:ce:a8:1c:0f:f7:81:62:ee:f7:f0:2d:20:d7:
6b:0b:4e:56:f9:05:d5:02:22:fe:2d:a0:60:2c:4d:53:8f:ce:
40:fd:7b:e1:a4:c3:b2:db:c2:80:7e:5f:e2:11:10:8d:5a:a6:
9f:a9:77:78:05:54:c7:3f:e8:09:a6:58:b9:94:26:7c:c2:34:
27:37:0a:89:ec:0a:f9:57:1e:5b:1e:68:48:91:c6:5f:51:66:
f2:06:fa:19:3c:1b:f9:bf:ab:cb:63:ec:93:0e:db:55:8f:f8:
43:fa:8d:d1:ee:38:2c:f7:0d:36:c7:de:66:87:c1:4d:6b:be:
3c:f9:7f:b7:3d:2f:f9:bf:c4:2f:c7:69:70:9e:26:c1:89:d8:
31:5c:94:4f:38:b8:1c:a9:70:40:be:b9:ea:f4:5c:1d:a2:cc:
6d:bb:da:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:12 2024 by rpki-client on console-fra.rpki-client.org