Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/dsQ9oRefU9LgUH3HP6bKcESreBw.roa
File: dsQ9oRefU9LgUH3HP6bKcESreBw.roa (raw, json)
Hash identifier: svOi3zL6Cz8uI0ZN91IJv/u5r1Z33zkzbWDrBXxrzdg=
Subject key identifier: 76:C4:3D:A1:17:9F:53:D2:E0:50:7D:C7:3F:A6:CA:70:44:AB:78:1C
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 0190094C9D906B406D8E9E06BCD20D710266
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/dsQ9oRefU9LgUH3HP6bKcESreBw.roa
Signing time: Tue 11 Jun 2024 21:55:34 +0000
ROA not before: Tue 11 Jun 2024 21:55:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205896
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 16 Jun 2024 17:39:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:09:4c:9d:90:6b:40:6d:8e:9e:06:bc:d2:0d:71:02:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jun 11 21:55:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76c43da1179f53d2e0507dc73fa6ca7044ab781c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:52:88:db:cd:c8:7b:18:fb:1f:97:89:d7:9d:
0d:22:82:87:ff:bc:65:31:ae:e8:90:3a:bc:57:c5:
7e:db:76:0b:2e:05:14:72:04:df:e0:d8:45:ec:b6:
ed:07:24:67:b9:02:0e:37:3e:c9:cb:18:b9:1b:f5:
af:55:5c:96:6b:27:aa:ac:08:bc:22:ba:7d:69:f8:
82:25:cc:ea:4b:cd:10:c2:35:f1:e1:7a:ad:34:59:
62:79:5d:f1:69:a7:17:78:9e:7c:f8:8e:ac:8f:cd:
a4:bb:f7:63:ce:c3:ad:77:c4:fc:3a:d9:7c:da:b6:
99:cc:2d:3b:7f:52:44:48:50:f7:11:d8:1f:fd:2b:
18:dd:f5:99:3b:01:61:57:7c:9c:b5:e2:a6:f9:c4:
d1:cf:ab:20:bc:93:ad:5d:cb:f7:e4:dc:ae:f3:ae:
21:e4:24:d2:8b:87:fa:db:71:c4:a4:f5:96:88:f8:
b5:15:45:6d:bf:33:73:92:af:ee:1b:74:ae:33:e4:
b8:57:03:59:7c:c4:b4:85:c4:98:f4:1e:ad:12:3a:
78:71:cf:bf:a1:0c:ae:c5:09:df:36:e0:ce:1f:af:
72:97:a2:49:7c:4f:14:aa:20:7c:10:37:5b:92:04:
eb:65:1a:4a:ed:75:2a:40:15:0e:77:fb:31:92:63:
40:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C4:3D:A1:17:9F:53:D2:E0:50:7D:C7:3F:A6:CA:70:44:AB:78:1C
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/dsQ9oRefU9LgUH3HP6bKcESreBw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:62:0b:13:8c:96:c9:5e:87:81:87:1a:70:87:3c:19:69:d5:
f9:57:70:50:fa:73:98:c1:41:18:08:84:03:74:8f:52:1f:26:
4f:6b:62:2e:d4:29:32:e0:4b:12:64:09:4c:90:40:07:81:62:
6c:c4:1a:43:7f:a3:fb:40:f3:08:2a:00:5d:35:ff:78:36:ef:
d3:c5:73:2d:fa:3b:35:57:76:9c:02:a1:63:b4:f0:fe:69:c4:
68:b3:36:a2:c8:f9:7c:a2:47:16:c1:10:89:ec:3e:7d:be:c5:
d6:65:4c:13:c8:e7:08:58:db:29:41:77:a0:90:b5:bb:b6:ce:
59:e5:3b:0b:76:5d:a9:b8:6d:bf:21:c4:c0:c1:19:5f:c9:67:
aa:bd:e2:2c:68:8e:36:3a:7f:6d:91:b7:04:c6:76:cc:e4:7c:
65:be:61:c3:92:a8:5a:e6:6f:ab:61:cf:43:47:a3:59:b1:0e:
05:8d:84:75:52:31:57:ae:4c:b7:6a:ad:3c:7f:74:6d:21:92:
ec:a6:53:19:7c:89:c9:5c:33:5a:76:78:cb:29:9b:2e:11:af:
25:fc:82:72:64:4e:db:7c:09:26:3e:1a:66:d2:7a:a6:55:3f:
ac:5d:30:67:53:72:c9:6f:e1:72:8c:b8:89:93:81:57:19:62:
d0:b8:d2:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 16 19:22:49 2024 by rpki-client on console-ams.rpki-client.org