Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/ah9A9TNw_uOsTw8O0sjUFchN49U.roa
File: ah9A9TNw_uOsTw8O0sjUFchN49U.roa (raw, json)
Hash identifier: 2qcP89/0yriPG/5maR/X5Vwho9KTuNj6wyij8mVmDDM=
Subject key identifier: 6A:1F:40:F5:33:70:FE:E3:AC:4F:0F:0E:D2:C8:D4:15:C8:4D:E3:D5
Certificate issuer: /CN=04732b985f8f63ff8ae8eac7c70832b30cee80ad
Certificate serial: 018570E760C2A584AE69D0959C872600DE57
Authority key identifier: 04:73:2B:98:5F:8F:63:FF:8A:E8:EA:C7:C7:08:32:B3:0C:EE:80:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHMrmF-PY_-K6OrHxwgyswzugK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/ah9A9TNw_uOsTw8O0sjUFchN49U.roa
Signing time: Mon 02 Jan 2023 05:14:49 +0000
ROA not before: Mon 02 Jan 2023 05:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15695
IP address blocks: 185.86.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:60:c2:a5:84:ae:69:d0:95:9c:87:26:00:de:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04732b985f8f63ff8ae8eac7c70832b30cee80ad
Validity
Not Before: Jan 2 05:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a1f40f53370fee3ac4f0f0ed2c8d415c84de3d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:17:d0:84:85:be:27:81:9b:bc:74:bb:cf:95:
ac:21:89:d4:21:81:57:e1:f7:8e:98:05:5b:d0:6c:
26:93:00:85:3a:bb:71:39:4c:17:1c:6a:6b:0a:d0:
a5:2f:45:23:a0:af:c6:ff:db:35:33:a6:20:ee:8d:
d4:56:dc:1d:0c:b5:ab:0f:06:1a:27:e3:b8:e6:75:
fe:d2:e5:ca:fa:1a:3a:0a:1d:c4:6b:24:39:64:9a:
fa:c3:bc:52:ed:eb:54:54:fb:44:a4:a4:43:21:85:
01:6f:36:6b:87:fe:27:21:53:3f:b7:2f:c9:74:47:
55:ed:72:12:6f:5d:65:53:c4:85:0c:7f:bd:7f:a9:
35:82:b4:f6:c6:6f:c4:3c:68:72:92:28:ae:aa:ee:
e3:28:07:ef:2e:d5:cf:48:cf:e9:b4:24:43:b1:fc:
85:be:e1:93:e6:bb:e9:02:39:78:e8:91:bf:72:33:
10:71:05:6b:97:f6:f4:cc:1f:26:ba:fd:a1:5c:b9:
3b:06:b1:91:ac:ec:92:56:74:29:2a:bf:a7:37:3e:
96:d4:30:31:ee:0a:59:97:fe:5b:34:21:e3:e2:7b:
c6:25:6a:41:ab:f2:c8:70:37:ab:e5:a5:df:fd:1c:
7e:e1:ac:5a:b8:82:f6:7e:d5:31:41:4e:59:c3:d0:
ee:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1F:40:F5:33:70:FE:E3:AC:4F:0F:0E:D2:C8:D4:15:C8:4D:E3:D5
X509v3 Authority Key Identifier:
keyid:04:73:2B:98:5F:8F:63:FF:8A:E8:EA:C7:C7:08:32:B3:0C:EE:80:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHMrmF-PY_-K6OrHxwgyswzugK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/ah9A9TNw_uOsTw8O0sjUFchN49U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/6da0aa-1327-4fa6-a947-ada270825218/1/BHMrmF-PY_-K6OrHxwgyswzugK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.55.0/24
Signature Algorithm: sha256WithRSAEncryption
71:5e:9d:ce:fd:a5:1e:1c:1b:44:fe:69:e7:90:63:86:64:e9:
3b:74:b4:c3:0e:03:42:4f:9a:aa:3f:b8:8c:66:02:2e:f4:bb:
1e:ff:92:ea:38:0e:77:09:89:67:6e:4a:83:09:14:2d:5d:7c:
8a:76:8a:99:7c:94:f7:52:cd:16:49:a4:79:9b:fe:29:9c:1c:
27:f7:15:9d:cb:58:b9:e7:3a:63:55:6c:dd:83:51:46:bb:8c:
46:54:1b:c9:65:43:7c:4f:a2:d1:b0:29:a1:51:e7:ab:ab:26:
aa:b7:05:04:ca:2f:d1:a3:f6:53:9c:00:9d:c5:13:6d:16:a2:
03:a2:ed:fc:6e:cd:cb:99:7d:87:f3:ae:5b:91:83:59:db:81:
cf:23:a8:fd:fe:7c:5d:8c:e5:a3:58:41:78:c3:f5:01:60:73:
78:6f:a5:3c:c7:e1:c3:76:8a:d9:9f:f1:6b:be:9d:d2:42:9b:
92:72:39:09:55:9d:6d:4c:e9:7f:f2:e3:1d:99:b1:e5:03:89:
09:5c:9f:85:bb:85:8c:82:05:c0:71:0b:cc:b7:d7:50:fd:34:
fe:03:d1:76:85:93:5f:54:57:6a:1f:dc:cc:8f:50:51:e0:e0:
a1:69:2b:ab:d4:74:41:2e:12:3d:01:a2:d1:01:19:87:21:cc:
0f:0b:8d:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:24 2024 by rpki-client on console-fra.rpki-client.org