Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/9NHzbVV6BIso1srxnFGTcZCohrM.roa
File: 9NHzbVV6BIso1srxnFGTcZCohrM.roa (raw, json)
Hash identifier: Jjy0Mc6vKw3IpaGrEjC2PIDWYsWK2bd9kWrhS2sX1Kk=
Subject key identifier: F4:D1:F3:6D:55:7A:04:8B:28:D6:CA:F1:9C:51:93:71:90:A8:86:B3
Certificate issuer: /CN=fc282a794b3f7ab4cd6feb6c5fd6b3d256afc461
Certificate serial: 01856F14DCA6E2FBDF079B1F912904FBCF5C
Authority key identifier: FC:28:2A:79:4B:3F:7A:B4:CD:6F:EB:6C:5F:D6:B3:D2:56:AF:C4:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_CgqeUs_erTNb-tsX9az0lavxGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/9NHzbVV6BIso1srxnFGTcZCohrM.roa
Signing time: Sun 01 Jan 2023 20:45:16 +0000
ROA not before: Sun 01 Jan 2023 20:45:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.144.236.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 03:18:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:dc:a6:e2:fb:df:07:9b:1f:91:29:04:fb:cf:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc282a794b3f7ab4cd6feb6c5fd6b3d256afc461
Validity
Not Before: Jan 1 20:45:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4d1f36d557a048b28d6caf19c51937190a886b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ae:5a:c2:44:c4:60:df:b5:dc:55:57:e7:7f:
e4:72:e0:b8:07:30:85:53:40:1f:e3:95:da:03:f5:
ca:a6:3e:a4:46:53:40:08:c1:67:79:95:1b:bf:59:
41:cc:68:59:2d:33:07:c8:62:ca:3e:93:0c:6f:b9:
64:99:bc:f3:6c:5e:f3:1a:26:78:9a:6c:7e:7f:b9:
d2:34:10:28:45:31:4b:36:2d:2c:a8:55:3b:79:37:
d6:f1:25:79:05:52:32:36:38:99:f4:05:3b:a4:54:
71:ee:63:1b:5b:80:e7:5f:f3:04:33:5e:0c:d5:e6:
8c:11:8b:c9:44:0d:ff:f9:cc:28:7f:52:a1:49:91:
52:16:37:22:30:db:d9:25:19:10:2f:8c:68:81:59:
62:b1:1d:83:ce:24:0e:f3:60:fa:2d:f4:d4:d1:aa:
1c:06:78:91:18:80:2d:e1:45:03:69:d7:cb:63:72:
50:ad:00:03:85:b7:ce:2e:af:b5:3a:b6:1e:fb:db:
4a:4e:f3:f6:b9:87:64:58:65:ff:93:40:e1:22:97:
2b:1b:84:6b:9e:a1:ec:47:67:78:5e:c1:8a:cf:8b:
4f:6c:e5:42:e6:71:33:a4:53:d4:21:dc:a8:96:64:
e3:9a:4b:8f:f2:c9:bc:98:ac:52:6b:78:72:9f:7f:
b1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D1:F3:6D:55:7A:04:8B:28:D6:CA:F1:9C:51:93:71:90:A8:86:B3
X509v3 Authority Key Identifier:
keyid:FC:28:2A:79:4B:3F:7A:B4:CD:6F:EB:6C:5F:D6:B3:D2:56:AF:C4:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_CgqeUs_erTNb-tsX9az0lavxGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/9NHzbVV6BIso1srxnFGTcZCohrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/e485e1-a65f-43d4-b572-d3326c59bcd2/1/_CgqeUs_erTNb-tsX9az0lavxGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.236.0/22
Signature Algorithm: sha256WithRSAEncryption
be:11:1c:ca:86:fd:d8:7e:eb:22:30:6a:ab:72:9b:99:14:1b:
a4:c8:f1:82:78:36:6b:9e:17:60:6b:d8:67:63:77:05:77:ed:
16:02:f4:de:73:3f:8f:5c:63:bb:63:09:68:33:e3:fd:b6:c9:
60:8b:56:10:0d:35:69:60:31:aa:ec:19:11:84:d0:d4:d3:80:
88:60:d7:5a:1e:1d:ec:2b:fb:70:83:f4:a4:05:42:20:8f:bf:
ba:78:8c:4b:6b:c3:69:e4:b8:55:dc:c2:8b:9b:fb:6e:a0:c3:
0e:a2:ad:95:54:34:89:b3:2b:ef:c8:e1:fe:67:61:8b:2c:28:
cb:1b:ed:c8:91:80:c8:ba:a3:ba:9c:d0:ce:be:11:8f:8a:b4:
0b:3a:88:72:18:33:3e:2d:c0:57:e7:47:55:8e:af:c9:21:96:
2b:a4:24:5c:76:3d:9c:13:8b:c1:f4:50:b8:18:8d:b9:b7:1e:
90:0b:b4:03:1e:d2:97:c5:c9:4c:b7:60:0d:e5:9d:39:f5:3b:
5e:90:36:4f:33:a6:42:c4:cc:48:f2:a9:30:73:5f:b6:e6:63:
d1:35:0b:45:63:19:1f:c6:2f:33:b4:4e:ea:ad:5c:db:76:41:
7f:37:6f:23:88:42:3d:69:17:91:19:fa:8d:fe:6c:57:c5:86:
4c:1f:11:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:37 2024 by rpki-client on console-fra.rpki-client.org