Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/4f3f08-986b-48e4-85dd-34ffdb442113/1/H4TDjTzce7hZnekNPsCx9FOmKe4.roa
File: H4TDjTzce7hZnekNPsCx9FOmKe4.roa (raw, json)
Hash identifier: p/MphnRdvttlkv+vzwU+rWQpRXEKx3TusmOHGFh7cls=
Subject key identifier: 1F:84:C3:8D:3C:DC:7B:B8:59:9D:E9:0D:3E:C0:B1:F4:53:A6:29:EE
Certificate issuer: /CN=50399d4435bb85fae910abe38e68533204dfd60b
Certificate serial: 01856D540DCF9CEBAD17A408B6B603DD6F4E
Authority key identifier: 50:39:9D:44:35:BB:85:FA:E9:10:AB:E3:8E:68:53:32:04:DF:D6:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UDmdRDW7hfrpEKvjjmhTMgTf1gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/4f3f08-986b-48e4-85dd-34ffdb442113/1/H4TDjTzce7hZnekNPsCx9FOmKe4.roa
Signing time: Sun 01 Jan 2023 12:35:03 +0000
ROA not before: Sun 01 Jan 2023 12:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9443
IP address blocks: 185.167.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:0d:cf:9c:eb:ad:17:a4:08:b6:b6:03:dd:6f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50399d4435bb85fae910abe38e68533204dfd60b
Validity
Not Before: Jan 1 12:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f84c38d3cdc7bb8599de90d3ec0b1f453a629ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:13:5a:d4:e6:a2:2c:05:08:2e:9e:cc:0c:35:
1b:0a:71:60:88:8f:9c:b4:77:9c:81:ff:8a:53:c9:
c1:a9:99:f5:93:af:2f:8c:ae:69:00:30:df:3d:cd:
8b:cf:0b:c7:34:39:04:07:f9:cb:a5:7a:26:8c:98:
f6:de:87:89:41:0f:3a:3e:da:8f:52:5c:87:bc:c5:
37:66:8d:2c:c7:0a:b8:af:e0:3b:d2:31:12:23:4d:
08:1e:8a:16:9f:d5:c8:80:30:04:c2:da:ee:70:4c:
42:a5:fd:8d:b9:57:7c:94:69:26:cf:44:2b:ae:52:
23:4a:4b:e0:8d:2b:a2:d7:d8:bc:c5:5c:13:7b:bf:
35:77:45:d9:35:90:53:d1:0a:c5:a4:25:f7:74:00:
75:09:70:01:f5:4b:71:01:d3:f8:bc:e7:eb:dc:1e:
18:a7:20:95:39:94:59:95:56:23:69:86:80:33:6f:
75:a7:63:39:17:f1:22:96:cd:25:63:5e:8a:1b:c6:
df:9f:c3:02:b3:e9:62:a8:e8:20:69:f2:cc:c3:4a:
6e:2f:42:e0:8a:3b:c9:0f:b4:1e:6a:28:02:d2:9f:
6e:8a:9f:72:45:89:89:05:53:4d:a4:27:22:61:c9:
7a:b6:db:f1:e3:c5:90:16:bd:e1:cc:e3:2c:6c:84:
97:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:84:C3:8D:3C:DC:7B:B8:59:9D:E9:0D:3E:C0:B1:F4:53:A6:29:EE
X509v3 Authority Key Identifier:
keyid:50:39:9D:44:35:BB:85:FA:E9:10:AB:E3:8E:68:53:32:04:DF:D6:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UDmdRDW7hfrpEKvjjmhTMgTf1gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4f3f08-986b-48e4-85dd-34ffdb442113/1/H4TDjTzce7hZnekNPsCx9FOmKe4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/4f3f08-986b-48e4-85dd-34ffdb442113/1/UDmdRDW7hfrpEKvjjmhTMgTf1gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.191.0/24
Signature Algorithm: sha256WithRSAEncryption
12:18:ea:95:19:4b:e2:c0:71:7c:4c:19:55:97:bf:80:34:ce:
4e:01:53:d0:3e:71:54:c1:a3:65:c3:32:e6:09:20:d6:48:d5:
05:7f:28:64:e4:e8:87:01:0f:ce:a8:19:24:03:e7:ce:42:76:
90:d6:a4:06:b4:3d:c7:8f:7e:ad:73:7f:5f:c6:8c:30:5d:45:
b6:df:ac:9b:4e:76:50:bc:94:c4:fc:8c:46:a6:1c:31:b1:13:
83:99:59:45:e0:0b:f6:d8:50:7a:e0:89:61:66:2b:f2:56:ef:
f2:73:5b:63:ec:b1:24:c9:05:dc:0c:95:e0:0c:ae:47:dd:f0:
a4:bb:4c:fd:f2:6c:ba:54:4a:48:75:2c:21:fd:56:d3:83:68:
d9:d2:4d:47:db:b0:8c:46:62:3b:61:c3:91:c8:1a:35:b2:1c:
3b:b7:86:2c:36:91:76:f1:54:79:11:80:03:4b:ed:8f:ef:31:
77:30:b5:08:b9:25:cc:88:92:bc:a4:a3:5d:34:b7:98:1c:47:
20:c8:51:ca:aa:3c:e4:44:f6:a5:80:21:3c:1c:6d:a9:86:b2:
61:32:be:ec:37:56:c3:6d:90:6f:bd:f3:91:22:14:fe:10:7b:
df:7d:25:e9:cf:60:6e:32:82:9e:4c:20:7e:cb:b4:01:29:72:
28:b9:84:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:06 2024 by rpki-client on console-ams.rpki-client.org