Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/rfic9uDAqQxX5CJQ_sRjFcQkPFU.roa
File: rfic9uDAqQxX5CJQ_sRjFcQkPFU.roa (raw, json)
Hash identifier: 48tVsjMy0fMiSZV/mUn2VaagE9BU5mCp03lmCTT9758=
Subject key identifier: AD:F8:9C:F6:E0:C0:A9:0C:57:E4:22:50:FE:C4:63:15:C4:24:3C:55
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 018692D96464F3614E834DCC68D05FCE62DF
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/rfic9uDAqQxX5CJQ_sRjFcQkPFU.roa
Signing time: Mon 27 Feb 2023 12:29:25 +0000
ROA not before: Mon 27 Feb 2023 12:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 185.255.169.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Mar 2023 12:48:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:d9:64:64:f3:61:4e:83:4d:cc:68:d0:5f:ce:62:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Feb 27 12:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adf89cf6e0c0a90c57e42250fec46315c4243c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:98:ba:be:ab:71:bf:26:55:2c:9e:d3:ad:f9:
30:e2:9b:e1:34:5a:6d:31:c3:5f:a2:bf:ad:01:a7:
b3:3d:1c:98:42:b4:2c:e6:f7:37:59:66:5e:94:7c:
e9:90:5b:f3:58:5b:43:e1:9a:2d:bf:07:08:13:85:
70:26:09:cb:a0:5f:d0:99:9c:8b:c1:0f:c8:47:a4:
4b:fb:e8:e3:71:10:cb:4c:4e:bd:a7:1a:55:59:56:
66:69:ee:2e:77:0f:87:64:15:d3:a1:4c:ff:ed:0a:
a0:e1:b0:51:d9:b4:11:6b:f1:e0:bb:87:35:ef:56:
32:0b:64:79:b9:7c:4a:c7:0e:f5:d5:8a:27:4c:47:
0a:b5:12:64:b6:8b:06:13:65:4f:18:27:73:be:68:
9b:26:01:98:6b:b3:55:9a:0d:87:8f:d1:ca:ae:f8:
34:62:8c:41:b1:3e:08:0b:b4:1c:0f:2a:b4:8f:76:
b0:e1:53:60:54:89:b3:a7:5d:4a:00:1a:8a:93:ae:
f8:69:70:e2:33:66:88:ba:d9:d9:7c:8c:96:a4:f3:
fd:4b:37:24:1c:85:15:f1:87:c0:63:ac:da:92:82:
f2:d8:c7:11:5f:aa:39:60:63:3c:a2:06:cb:29:3e:
f6:ea:2e:6c:f3:e6:29:a2:29:4c:7f:c4:a7:fb:92:
63:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:F8:9C:F6:E0:C0:A9:0C:57:E4:22:50:FE:C4:63:15:C4:24:3C:55
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/rfic9uDAqQxX5CJQ_sRjFcQkPFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.169.0/24
Signature Algorithm: sha256WithRSAEncryption
35:b5:6b:74:16:2c:e7:c5:2d:3e:00:ea:5c:2a:04:c9:b5:e5:
b3:66:f8:e2:5c:b9:8a:87:62:45:8f:16:f6:39:9a:e3:b6:bd:
67:a5:8b:9b:e5:8e:ad:09:11:ba:bb:f4:a3:d9:1f:9b:62:a3:
59:c1:52:4e:9b:bb:15:cf:33:4a:be:ce:f9:eb:11:d5:8e:b7:
d3:e1:0f:c7:dd:c2:ae:0c:69:48:1b:62:7a:4d:f9:98:70:92:
ed:64:33:c2:68:af:07:ee:0a:bd:db:d0:31:a5:4e:72:14:e9:
6e:76:9d:27:e5:e6:3e:0c:7e:34:dd:24:8d:68:14:e3:6d:30:
85:f4:bb:37:65:2a:f3:b5:7b:eb:b5:3f:61:91:b6:1a:61:8a:
74:db:55:0a:36:f7:0f:12:14:a0:b9:98:ab:35:3c:45:dc:f5:
f8:b2:4f:fc:d3:29:cc:76:ef:00:f2:ad:22:00:81:67:c8:7c:
55:ba:74:55:a1:d1:7c:a0:cb:45:aa:b6:09:30:81:f8:7c:7e:
a6:84:ca:4f:45:ea:17:17:46:9b:7a:35:f3:62:dd:ac:92:b6:
0f:4a:56:56:65:e0:d8:65:db:11:78:73:4e:c5:ff:e9:66:9d:
88:e9:30:f5:cd:8b:68:b8:89:a8:6b:cf:e3:c9:04:5a:b1:fd:
8e:a8:ea:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:48 2024 by rpki-client on console-fra.rpki-client.org