Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/9QhOzGgGYRlKaXxAL-KLPPfuFVw.roa
File: 9QhOzGgGYRlKaXxAL-KLPPfuFVw.roa (raw, json)
Hash identifier: ibTBEJ17xm49KHH3LhNMYr3crNzIOZJRrBVitewnwdY=
Subject key identifier: F5:08:4E:CC:68:06:61:19:4A:69:7C:40:2F:E2:8B:3C:F7:EE:15:5C
Certificate issuer: /CN=09f93d62beb75bb4232dcd052d270276d36f8573
Certificate serial: 01856BDC75C7D4D12CD3749B185452D2DFC7
Authority key identifier: 09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/9QhOzGgGYRlKaXxAL-KLPPfuFVw.roa
Signing time: Sun 01 Jan 2023 05:44:48 +0000
ROA not before: Sun 01 Jan 2023 05:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8544
IP address blocks: 185.141.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:75:c7:d4:d1:2c:d3:74:9b:18:54:52:d2:df:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09f93d62beb75bb4232dcd052d270276d36f8573
Validity
Not Before: Jan 1 05:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f5084ecc680661194a697c402fe28b3cf7ee155c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c7:7f:e1:94:42:3c:bc:34:8d:91:69:fe:c1:
70:6a:91:79:7e:d0:cc:26:20:98:e1:61:21:78:84:
08:7e:34:4c:99:05:36:cd:98:9c:51:9a:79:36:75:
b7:97:e3:31:6c:8c:5c:3c:a7:60:b8:dc:15:9b:72:
50:ea:54:27:67:68:25:76:1f:b6:32:5c:6d:d2:80:
63:92:de:4a:fa:53:70:ea:00:9f:42:92:17:44:ab:
44:51:d0:ef:52:a4:31:98:ca:b9:ae:40:58:ad:2a:
ca:a5:68:46:ae:08:cf:60:f1:f1:9d:0b:2c:7b:b8:
38:4e:64:d0:e8:97:d0:03:41:0d:83:ef:48:41:94:
62:b7:bd:fd:7a:ad:89:a7:eb:57:ef:3c:61:dc:c6:
1a:87:65:7f:13:f4:80:61:87:ca:e9:02:77:9e:8e:
9b:eb:30:d7:b8:26:8b:3c:38:ef:be:87:ba:f6:5d:
fb:35:5a:c1:43:76:30:d0:19:7e:89:ac:56:5e:87:
3f:46:8e:22:23:97:2e:5d:75:02:d3:85:2c:45:48:
cc:7d:4a:55:73:e5:ce:72:f2:e7:7a:9f:fa:23:9d:
7d:96:4a:5a:a5:47:1a:92:ab:ca:3b:6c:f9:ce:49:
70:d2:eb:1c:7d:ff:8f:a7:25:23:a4:dc:09:d0:1f:
cd:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:08:4E:CC:68:06:61:19:4A:69:7C:40:2F:E2:8B:3C:F7:EE:15:5C
X509v3 Authority Key Identifier:
keyid:09:F9:3D:62:BE:B7:5B:B4:23:2D:CD:05:2D:27:02:76:D3:6F:85:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cfk9Yr63W7QjLc0FLScCdtNvhXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/9QhOzGgGYRlKaXxAL-KLPPfuFVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/705aad-59b2-474e-a3d8-bf34d01f8b0a/1/Cfk9Yr63W7QjLc0FLScCdtNvhXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.194.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:43:d2:51:02:57:44:e4:b5:78:11:ad:57:03:db:8b:2b:1f:
85:25:37:eb:07:e9:9f:13:86:93:db:3d:8b:e9:09:b1:ed:c9:
d6:88:48:55:e5:80:97:38:6e:9e:d1:e9:da:94:ac:49:af:f0:
58:28:14:92:64:08:fa:8a:f4:c6:e5:46:45:b0:c9:c3:6f:ff:
8c:55:9f:9f:27:b2:d4:38:dd:31:b7:3c:07:2d:92:3b:a1:6b:
71:cc:2f:2e:c0:23:47:ab:8b:1f:6e:2a:34:b2:3d:c2:82:dc:
38:8e:4b:1b:a9:eb:a9:d9:36:3b:2f:c4:42:c4:6e:58:fc:b7:
37:95:f1:7d:c4:29:90:c6:c3:bc:eb:4f:55:f9:fb:ba:96:5f:
96:87:bd:94:9d:63:42:d9:3d:e8:6e:c1:17:aa:26:80:9f:03:
97:00:c8:65:f7:39:80:f4:08:bd:24:57:76:fc:92:31:60:db:
dc:e5:07:b8:2d:ec:54:72:6b:fc:09:52:7e:e9:c6:ee:4c:bf:
72:f2:ca:10:3c:4e:1c:72:c2:84:32:1d:43:29:5f:c9:16:b4:
cb:5f:0e:f3:bf:84:58:72:48:14:5a:7c:9c:f4:74:0b:fd:a2:
45:ec:bf:85:6c:da:c6:6b:c4:38:0d:2d:73:92:64:52:35:1f:
82:d2:ec:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:01 2024 by rpki-client on console-fra.rpki-client.org