Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/u7CGfysLDD9VO5-ZugPkbiSrrEo.roa
File: u7CGfysLDD9VO5-ZugPkbiSrrEo.roa (raw, json)
Hash identifier: lzQcj8ZuXniT4KbcBeWgZjFPcRaVknQTlDXO8PROHfQ=
Subject key identifier: BB:B0:86:7F:2B:0B:0C:3F:55:3B:9F:99:BA:03:E4:6E:24:AB:AC:4A
Certificate issuer: /CN=613d23f2121327d917d708d8fe153382455959a8
Certificate serial: 0188AFBD65245F111D1DECDD55196B5F0009
Authority key identifier: 61:3D:23:F2:12:13:27:D9:17:D7:08:D8:FE:15:33:82:45:59:59:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YT0j8hITJ9kX1wjY_hUzgkVZWag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/u7CGfysLDD9VO5-ZugPkbiSrrEo.roa
Signing time: Mon 12 Jun 2023 13:13:24 +0000
ROA not before: Mon 12 Jun 2023 13:13:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.209.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:bd:65:24:5f:11:1d:1d:ec:dd:55:19:6b:5f:00:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=613d23f2121327d917d708d8fe153382455959a8
Validity
Not Before: Jun 12 13:13:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbb0867f2b0b0c3f553b9f99ba03e46e24abac4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:b3:2e:6c:36:8a:61:a3:e3:3c:6e:e9:44:a0:
e0:79:e0:ec:1a:50:47:68:07:da:40:a5:4c:86:c6:
24:54:55:92:57:52:89:5b:76:00:b0:37:bc:bb:c7:
04:b3:42:54:86:63:ea:ef:ec:97:e3:d3:a7:f4:db:
d8:a7:b4:ba:5e:5f:df:a4:3e:82:cd:1d:9d:41:83:
81:b3:4c:52:3c:b4:81:45:1f:0f:cb:f6:b6:68:9e:
a2:cd:96:1b:ba:a8:c4:6e:17:ef:39:64:36:8b:dc:
aa:7e:ec:32:66:aa:a8:61:01:74:58:73:60:4f:e1:
85:67:d6:11:3e:1d:96:ce:fd:c5:77:4f:cb:e7:f1:
b6:05:b3:d5:7d:0a:58:38:5d:3f:80:a4:c4:5f:c7:
6a:93:55:15:61:83:c5:1f:5a:06:86:4d:d2:91:f4:
d9:90:1e:37:45:76:3d:0e:d6:b6:86:dd:ff:7d:6c:
53:88:97:43:19:27:1d:94:ef:27:03:99:e8:5f:01:
dd:4e:ff:34:78:7a:ac:29:6d:a0:0d:3e:62:89:b4:
3a:80:7f:f6:99:6f:fd:b7:7b:fb:58:5c:a3:87:f6:
7e:e1:45:6e:b7:a5:89:32:e0:34:57:72:61:49:a3:
b0:7f:43:55:4b:a2:68:56:74:be:67:76:02:87:4f:
a8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B0:86:7F:2B:0B:0C:3F:55:3B:9F:99:BA:03:E4:6E:24:AB:AC:4A
X509v3 Authority Key Identifier:
keyid:61:3D:23:F2:12:13:27:D9:17:D7:08:D8:FE:15:33:82:45:59:59:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YT0j8hITJ9kX1wjY_hUzgkVZWag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/u7CGfysLDD9VO5-ZugPkbiSrrEo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/fce6be-0896-4487-aa34-7a605ba40c1e/1/YT0j8hITJ9kX1wjY_hUzgkVZWag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.210.0/24
Signature Algorithm: sha256WithRSAEncryption
87:74:29:f7:79:3e:b1:82:5f:53:3a:38:f6:2b:c9:08:4c:0d:
f4:b5:c5:b2:64:d8:de:0a:4b:b4:60:0f:48:b3:09:50:dd:52:
9c:04:19:46:ac:37:2b:12:76:e0:63:73:bd:48:52:84:94:ff:
05:33:36:cd:b4:10:b7:cd:e5:f6:9a:2a:a1:a4:3f:2a:48:31:
04:46:4a:93:e4:86:23:1c:c8:61:17:06:ae:11:a2:14:a2:d0:
85:77:41:42:b4:be:da:ff:08:a0:7a:f0:b9:a5:70:04:ef:98:
da:0a:91:02:f6:f3:87:fa:fe:70:f6:3b:5c:52:2d:46:c2:9d:
e6:3c:b2:8b:5f:83:1b:6c:07:bc:1a:67:3c:9c:d6:11:26:24:
f5:f8:1c:08:36:4f:1c:d0:c3:75:da:fb:53:17:e7:06:30:48:
0b:b0:be:4e:7d:7f:a7:23:81:08:89:56:f6:94:c7:ec:de:39:
97:80:82:5d:df:bf:81:cc:20:16:a6:60:13:eb:b0:ff:e6:6b:
7a:8d:2a:52:12:3c:6d:0e:4e:dc:5a:e1:66:53:bc:19:40:ff:
dc:6c:ad:0a:af:54:af:ce:c8:06:95:ce:70:6e:43:b9:a8:35:
f0:60:98:a4:44:08:25:1f:4e:41:bc:5e:67:5f:fb:bc:3b:7b:
53:ff:36:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:18 2024 by rpki-client on console-ams.rpki-client.org