Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/5D9BRICVJ_-CS-UySYMZEhnmUjQ.roa
File: 5D9BRICVJ_-CS-UySYMZEhnmUjQ.roa (raw, json)
Hash identifier: YBrDgDSHvYcADiGLaOqXw1dLwnDj7hVHlkJwXccZbl0=
Subject key identifier: E4:3F:41:44:80:95:27:FF:82:4B:E5:32:49:83:19:12:19:E6:52:34
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 018B84B918D7098D649B1B068CFD78CBF4A4
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/5D9BRICVJ_-CS-UySYMZEhnmUjQ.roa
Signing time: Tue 31 Oct 2023 07:53:24 +0000
ROA not before: Tue 31 Oct 2023 07:53:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199614
IP address blocks: 185.74.52.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Dec 2023 08:48:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:84:b9:18:d7:09:8d:64:9b:1b:06:8c:fd:78:cb:f4:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Oct 31 07:53:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e43f4144809527ff824be5324983191219e65234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:cc:fc:f1:a5:fc:d6:0a:c0:2f:72:89:44:6c:
c1:b1:56:ac:a5:46:35:05:69:dc:99:e9:de:2c:80:
21:79:76:41:5f:4b:6a:e6:b6:d9:f4:59:a5:00:ce:
23:e9:98:ff:4b:06:d0:2a:bb:38:b9:00:2f:94:62:
d3:89:b2:e8:3d:7c:2e:4b:05:ba:56:94:c5:7c:07:
06:e9:ea:78:d6:6a:03:4b:e9:b0:42:31:e2:0e:c2:
59:e0:7c:52:64:69:f2:d1:40:2c:8f:9a:c1:42:fb:
5b:35:93:4c:b3:16:af:3c:c8:eb:5d:1f:28:0d:eb:
bc:96:34:f4:7a:60:15:55:7f:af:cd:88:9d:f5:57:
b6:60:c8:cf:23:bd:9e:a2:e8:c6:59:1f:39:26:36:
b3:96:a7:dd:d3:3e:5c:27:11:78:d0:c2:9f:16:2e:
c6:18:2d:32:9a:08:05:9d:7b:63:90:77:81:14:6e:
cf:b8:af:b3:1c:6a:3d:32:c4:5a:8b:b1:9e:d5:66:
e8:03:08:50:6b:d6:38:68:12:d1:5a:5f:cc:3f:16:
11:f8:cd:da:68:34:96:be:dc:cd:4f:dd:00:ec:24:
dd:9c:18:29:b6:40:8a:13:bf:74:57:3c:19:28:6b:
35:c7:ed:24:18:fd:92:0d:77:2b:59:19:33:25:67:
2d:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:3F:41:44:80:95:27:FF:82:4B:E5:32:49:83:19:12:19:E6:52:34
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/5D9BRICVJ_-CS-UySYMZEhnmUjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.52.0/23
Signature Algorithm: sha256WithRSAEncryption
23:8c:28:63:cf:56:b3:b0:6a:00:ff:39:bb:98:25:91:1d:72:
90:ed:a9:1d:f6:71:35:79:b5:7a:b8:86:73:f8:ca:43:e0:18:
19:ce:d7:76:b3:6f:16:57:48:2e:da:11:76:38:15:be:4e:de:
0c:f2:af:af:66:c0:17:bb:26:ad:a0:60:b1:2b:b1:d6:8f:47:
9f:86:03:bd:75:b4:e0:92:c2:34:c1:e9:f5:dc:d7:b0:a5:ed:
e5:0a:95:30:66:5d:47:fd:38:90:45:d0:74:2c:4a:eb:46:d2:
1b:b9:85:72:3c:1f:5e:ef:3d:d2:05:54:db:5b:d1:01:4a:22:
77:dd:d1:63:00:a2:d2:87:c2:8b:a4:6b:7a:05:f1:3e:3c:d4:
96:b8:93:32:3a:75:50:a4:d2:4c:55:01:62:1d:3e:aa:15:f1:
ab:5c:c0:39:c4:17:ef:a5:da:e8:23:ec:18:d1:55:82:11:d6:
82:62:9c:db:8e:45:7d:ff:9a:4d:2d:4c:30:b2:53:9b:5f:bb:
9a:d9:4a:9e:fe:f2:88:d3:8f:19:36:3f:77:78:67:dc:63:82:
83:2b:5b:bb:92:d4:c7:4b:25:18:74:90:87:60:4f:dc:7d:91:
8f:d0:d0:94:64:07:ed:f8:52:b4:7f:56:1f:df:bd:13:0c:44:
95:d0:73:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:37 2024 by rpki-client on console-fra.rpki-client.org