Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/H9bE8knrWTTfndf-opwCzQ87iFE.roa
File: H9bE8knrWTTfndf-opwCzQ87iFE.roa (raw, json)
Hash identifier: aNVbFpIEDSCgcR1hgsm6YwFwnu/OqbwCY5IJxhFThRM=
Subject key identifier: 1F:D6:C4:F2:49:EB:59:34:DF:9D:D7:FE:A2:9C:02:CD:0F:3B:88:51
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 01860135CB0242231E9D7CD31BB5168D43EC
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/H9bE8knrWTTfndf-opwCzQ87iFE.roa
Signing time: Mon 30 Jan 2023 05:45:47 +0000
ROA not before: Mon 30 Jan 2023 05:45:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 185.255.196.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:01:35:cb:02:42:23:1e:9d:7c:d3:1b:b5:16:8d:43:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jan 30 05:45:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fd6c4f249eb5934df9dd7fea29c02cd0f3b8851
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:20:7f:db:e5:8a:0b:9d:16:a7:60:65:1a:a9:
ee:ca:ea:5a:24:68:d4:c8:12:16:39:01:4a:2a:f8:
77:30:b5:23:a4:c5:19:d2:2d:fe:3b:c3:97:5f:df:
cb:7c:67:e8:bd:fa:c8:30:55:fc:1d:b8:72:38:fe:
00:b2:0c:29:4d:c1:ba:69:d5:68:cc:1f:80:e8:c0:
cc:bd:3a:03:8a:92:21:32:d8:a3:b9:c9:ee:fe:e8:
ec:ce:1e:09:18:38:66:71:cb:95:a1:2c:84:d0:26:
ec:c2:c0:f5:7f:ed:3d:67:5a:24:33:1d:a9:57:e3:
36:8b:fd:86:7e:37:97:5a:bf:96:01:65:fe:42:e7:
70:25:da:32:1c:47:db:fd:b8:fe:0a:34:01:00:17:
1e:53:54:c3:e8:48:10:6e:55:06:38:36:02:ed:8c:
72:e2:a3:70:c4:e6:65:84:a2:8c:df:ed:d6:76:f2:
32:58:54:97:2c:60:d0:33:5d:f2:59:52:75:ee:22:
e2:cb:f5:0b:c1:ae:6e:6c:1c:6c:12:4e:2e:8d:1d:
47:82:d6:66:36:a8:a6:d7:cb:91:9e:de:80:e5:1c:
43:fd:54:c1:f8:89:8b:7b:1f:5b:4e:2c:df:62:ec:
91:80:48:e3:d5:b1:a8:ce:25:08:4e:80:4f:08:9b:
c1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D6:C4:F2:49:EB:59:34:DF:9D:D7:FE:A2:9C:02:CD:0F:3B:88:51
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/H9bE8knrWTTfndf-opwCzQ87iFE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.196.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:cf:ca:e0:cb:86:01:0f:d1:82:cc:d7:90:e5:73:3f:08:de:
c6:ad:bb:9e:f9:a1:94:17:b1:e0:81:50:3a:e6:47:c6:97:90:
93:27:8a:05:5d:a9:28:a3:e6:8a:4b:e3:87:46:e5:a7:f8:ea:
94:0c:92:ef:4a:bd:4c:72:36:74:9c:d7:6b:13:f8:cb:1f:17:
20:f6:7c:53:e5:85:79:6b:b3:b1:e4:2f:2c:e7:75:3d:59:82:
53:ba:44:8f:82:b0:34:88:ce:3e:5b:c9:db:9f:bb:13:bf:ce:
ad:25:0f:3b:58:eb:49:f4:55:1a:7f:1d:05:38:2e:9b:ef:27:
43:70:44:76:25:bd:0d:d1:f7:f7:71:60:3f:36:ca:50:ae:63:
67:4f:2b:09:7c:d2:1b:2d:00:89:e4:25:1e:bc:ee:48:9e:41:
c0:07:cf:1c:48:8b:87:01:bf:17:1a:e7:94:f7:35:8c:cc:b8:
3a:08:80:2a:04:f1:4a:03:7b:72:fc:c3:22:0d:40:af:d5:01:
cc:ef:0e:fe:af:fd:a7:b3:ed:81:f0:6d:5a:b0:1c:dd:e8:d0:
fb:d3:b7:57:04:dc:f7:f7:a3:2d:d0:c5:02:98:8f:5d:fd:0d:
9d:f2:ec:57:62:01:a0:bb:4f:4d:46:b7:4f:5f:1b:17:19:b1:
51:25:bf:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-fra.rpki-client.org