Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/3Y5R9xs_z3d9dWHl2oOkk2I_Uxc.roa
File: 3Y5R9xs_z3d9dWHl2oOkk2I_Uxc.roa (raw, json)
Hash identifier: aRhniHvzZmEKa/u//hWFpVAoSE1wRP2ChKiBl/VOoUo=
Subject key identifier: DD:8E:51:F7:1B:3F:CF:77:7D:75:61:E5:DA:83:A4:93:62:3F:53:17
Certificate issuer: /CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Certificate serial: 018ABD6A07A13B6D26B09F173515988EDF99
Authority key identifier: 7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/3Y5R9xs_z3d9dWHl2oOkk2I_Uxc.roa
Signing time: Fri 22 Sep 2023 15:02:37 +0000
ROA not before: Fri 22 Sep 2023 15:02:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 185.83.40.0/22 maxlen: 22
2a05:9800::/29 maxlen: 29
2a05:9804::/32 maxlen: 32
2a05:9800::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:bd:6a:07:a1:3b:6d:26:b0:9f:17:35:15:98:8e:df:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d0b44e492549e1b7da532c80c348850c5a44e80
Validity
Not Before: Sep 22 15:02:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd8e51f71b3fcf777d7561e5da83a493623f5317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:c8:5d:2f:d5:f4:56:cf:68:bc:84:22:d1:20:
60:8b:87:88:f6:40:52:26:09:29:ec:b6:5a:07:02:
30:c3:2a:60:ba:ba:ae:48:c3:f2:c1:56:64:21:2c:
27:cc:e9:6d:f2:64:67:27:a7:d7:dc:29:17:8e:71:
de:3a:46:4b:25:64:aa:78:a6:d5:0e:b6:6f:9e:8d:
bf:f8:49:83:af:2a:27:76:3a:1b:be:f8:e3:92:9e:
ff:25:44:df:50:37:da:0d:da:6d:d8:46:f2:a2:5b:
fc:16:a0:f2:97:97:97:61:45:fe:25:0d:28:82:4b:
c1:d5:c3:ef:79:c9:77:39:81:6b:d1:1e:ba:79:99:
2f:cb:1b:dc:21:c9:9c:9a:e3:1b:e0:71:bd:fd:31:
4e:24:73:93:d1:3f:43:1a:1b:e2:f9:f6:df:a5:bc:
38:f4:76:14:73:92:37:6c:e0:29:7d:9e:db:96:a1:
3e:c5:bb:53:5e:f1:6b:3b:1e:fd:0b:22:89:67:0d:
9e:04:35:4b:80:89:01:20:34:66:e0:4d:96:18:c4:
d0:76:24:70:b4:f3:21:70:46:5e:54:bb:90:cb:37:
9b:85:b0:74:28:4a:cf:5c:68:6e:3f:be:38:b9:b7:
43:46:51:e2:e1:b5:60:c5:3f:b0:ed:b9:27:41:ea:
8f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:8E:51:F7:1B:3F:CF:77:7D:75:61:E5:DA:83:A4:93:62:3F:53:17
X509v3 Authority Key Identifier:
keyid:7D:0B:44:E4:92:54:9E:1B:7D:A5:32:C8:0C:34:88:50:C5:A4:4E:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQtE5JJUnht9pTLIDDSIUMWkToA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/3Y5R9xs_z3d9dWHl2oOkk2I_Uxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9231f-b3df-4012-96d7-7204b811250f/1/fQtE5JJUnht9pTLIDDSIUMWkToA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.40.0/22
IPv6:
2a05:9800::/29
Signature Algorithm: sha256WithRSAEncryption
97:7d:f6:a6:ce:9b:32:71:22:e2:03:55:62:ef:03:bc:b2:ea:
2e:3d:23:6e:ec:9e:35:4e:69:be:03:c9:07:a0:2a:a9:94:ef:
e7:5f:81:25:c1:70:56:92:9a:65:19:f5:67:ae:42:55:a3:aa:
42:56:04:47:ad:d5:16:62:8b:4d:18:02:b6:5f:69:b9:12:d7:
81:69:87:b1:24:e5:5e:c6:8c:e6:9b:ac:d9:e8:04:85:d6:25:
dc:1b:54:c3:66:2a:53:e0:04:8a:2f:89:2f:cd:da:72:71:f9:
1f:10:bb:c7:07:d3:4d:a0:5c:94:09:2a:fe:68:52:2a:83:b6:
18:19:a1:3c:c4:12:c1:b6:62:9d:39:26:6a:43:0d:fb:c2:4f:
15:8d:76:36:1f:07:36:77:bb:f8:76:e0:c8:e1:fc:62:7e:e9:
d0:59:c6:0f:dc:84:b0:f9:f4:86:4e:30:3d:63:3d:e6:5b:c0:
0b:29:0b:d9:91:ad:46:25:03:b1:9f:6f:3f:a1:c2:7f:19:82:
02:7b:4c:b8:8e:4e:44:fe:a1:b9:75:35:d1:6c:05:11:da:69:
e3:a6:b7:e6:4e:13:f0:36:23:04:3e:da:40:9f:f7:19:37:f5:
6d:0a:a8:dc:4b:8e:ee:62:ec:1e:d5:9a:fe:0e:b6:d4:24:86:
d5:43:53:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:31 2024 by rpki-client on console-fra.rpki-client.org