Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/CIxyyYU1070gdxuAtcd2KoPLM-k.roa
File: CIxyyYU1070gdxuAtcd2KoPLM-k.roa (raw, json)
Hash identifier: DrneycQmHi0UCNIiYddchidZWpagrBHm2AkDcAofc14=
Subject key identifier: 08:8C:72:C9:85:35:D3:BD:20:77:1B:80:B5:C7:76:2A:83:CB:33:E9
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C25B76AC8DF4E777CEDB652548E36
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/CIxyyYU1070gdxuAtcd2KoPLM-k.roa
Signing time: Mon 02 Jan 2023 05:54:59 +0000
ROA not before: Mon 02 Jan 2023 05:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56975
IP address blocks: 185.212.151.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:25:b7:6a:c8:df:4e:77:7c:ed:b6:52:54:8e:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=088c72c98535d3bd20771b80b5c7762a83cb33e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:29:81:77:84:d4:85:75:68:6f:73:7b:e1:29:
5b:12:6a:9b:c9:bc:8f:20:48:d3:40:2a:50:da:b4:
d8:7b:f9:55:59:57:60:ef:33:39:e1:82:98:69:82:
22:af:ea:11:87:c9:f1:10:da:58:89:b0:9d:94:22:
cc:16:37:b7:6b:3b:e0:6f:35:3a:ff:4a:76:09:91:
22:fd:58:ef:3b:4b:92:bd:ea:18:da:4c:38:b2:9e:
c2:bb:48:18:93:c9:8e:0c:a3:60:0b:3e:89:da:41:
8e:23:30:e5:42:14:f9:c3:7a:1e:0a:b1:f1:2f:b6:
de:50:ac:0b:e6:f2:7c:ba:a1:f3:83:3f:9a:2f:ef:
eb:35:3b:31:f6:5f:bb:d0:49:26:62:82:5b:39:78:
c2:f8:c1:20:f9:7f:ea:e2:80:56:5b:7b:10:71:d1:
3d:61:69:03:24:45:9f:97:2d:71:16:74:42:90:97:
cc:98:c2:77:4e:5a:50:4e:fc:cc:36:58:a2:7d:4b:
1e:aa:f6:f7:94:98:3d:ac:f6:58:bd:e5:1c:b8:5f:
e1:e1:dc:b8:eb:3e:00:1e:3f:35:ea:f1:40:fe:9f:
e2:85:4c:ac:46:e1:31:3a:aa:40:1c:a2:03:8e:65:
cb:94:49:a4:ad:a5:3e:f5:93:8c:41:3a:ab:0a:ae:
45:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:8C:72:C9:85:35:D3:BD:20:77:1B:80:B5:C7:76:2A:83:CB:33:E9
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/CIxyyYU1070gdxuAtcd2KoPLM-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.151.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:de:3a:05:ea:23:d8:84:b6:1a:0c:0a:72:25:fe:9c:4f:ad:
bd:54:4f:a7:ba:64:f5:6b:6a:be:61:73:d4:4f:e7:ca:4f:71:
00:f8:40:f6:49:4d:92:1f:b5:39:be:a1:f8:7f:95:10:b1:0a:
ae:c3:49:42:6d:31:36:92:02:60:4d:99:05:32:e3:3d:82:12:
78:81:c9:9b:7e:95:e1:57:33:dc:bf:0d:e4:19:d3:70:d7:00:
f6:b3:0a:df:82:73:54:25:5a:e3:77:42:ec:d8:6b:ac:2b:b6:
81:13:43:7b:29:22:24:8b:af:9f:e2:5c:ba:04:ff:1a:94:9e:
ff:26:75:84:7c:3e:09:8a:bf:b4:c8:85:c7:24:14:27:0b:7f:
c5:55:a3:7c:da:e8:fb:29:09:57:a3:0a:8f:9b:47:68:09:76:
30:b9:64:9e:0c:08:c4:12:f2:73:b1:1f:77:87:ac:60:1c:3c:
1c:81:17:3b:b0:41:a8:51:1c:ec:43:30:e1:94:c1:f6:ec:9a:
74:dc:46:fb:6e:70:ed:7d:aa:50:6c:53:3e:ca:42:7d:2b:27:
c8:d2:3e:af:09:52:1b:6a:95:51:c0:f6:15:b2:7c:7c:48:7c:
55:44:c7:df:0e:06:32:cf:72:43:c4:90:ef:dc:72:17:11:a8:
56:54:84:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org