Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/tD09qRJz6u2vOp5JKygyNbIZIoM.roa
File: tD09qRJz6u2vOp5JKygyNbIZIoM.roa (raw, json)
Hash identifier: DhlizdA0iIVjGL4kcL6XYJo6JKpbQl3RPPIZkIissmk=
Subject key identifier: B4:3D:3D:A9:12:73:EA:ED:AF:3A:9E:49:2B:28:32:35:B2:19:22:83
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01870CEE268C098722C22695EE2AF1A62EB8
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/tD09qRJz6u2vOp5JKygyNbIZIoM.roa
Signing time: Thu 23 Mar 2023 05:25:46 +0000
ROA not before: Thu 23 Mar 2023 05:25:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199742
IP address blocks: 185.255.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Dec 2023 05:50:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0c:ee:26:8c:09:87:22:c2:26:95:ee:2a:f1:a6:2e:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Mar 23 05:25:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b43d3da91273eaedaf3a9e492b283235b2192283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:6a:ef:74:64:01:b0:ec:09:03:3b:11:2d:99:
fe:86:aa:bf:bb:36:97:5f:e7:13:64:03:21:fd:61:
95:a6:f8:f4:b2:80:25:f1:18:f5:95:97:a3:62:eb:
5e:08:70:52:3f:5d:9f:06:04:05:3e:47:ca:a6:7b:
00:1a:9a:80:cc:c7:5e:ab:5f:8e:2c:be:8a:c9:ef:
c0:01:8c:66:1a:05:db:f7:d9:ee:f6:c1:9f:8d:f8:
6e:dd:f7:36:e2:b4:d8:83:6b:11:f9:59:39:e3:9f:
9e:bb:46:cc:dc:74:c6:36:2f:c5:4e:2e:6e:2d:7b:
1c:60:4d:31:3a:f7:03:77:3d:16:fd:c5:d2:10:b1:
bb:b5:36:84:df:49:e7:7d:d1:47:79:4a:5a:88:80:
78:d8:0b:46:5d:2d:e9:94:6a:33:e7:53:e3:37:b0:
2d:8d:a5:79:6e:5a:41:33:19:ec:87:1f:7e:8b:60:
8a:a6:df:49:46:54:03:a2:23:6c:45:6c:a3:e7:08:
d9:57:9c:9f:65:2a:c0:75:4c:8d:85:47:28:50:ff:
45:7e:f4:3d:7f:ef:b6:c6:ef:9e:c6:fc:00:83:3e:
b4:17:58:ec:e6:9d:f4:f2:41:8b:92:8d:a7:2c:65:
96:7a:c2:7a:7c:2e:dd:c6:c6:a9:f7:4c:51:46:83:
4a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:3D:3D:A9:12:73:EA:ED:AF:3A:9E:49:2B:28:32:35:B2:19:22:83
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/tD09qRJz6u2vOp5JKygyNbIZIoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.5.0/24
Signature Algorithm: sha256WithRSAEncryption
86:ff:65:6a:76:dc:8f:04:fa:9c:bc:9d:da:cb:a1:32:71:a6:
45:8c:64:2f:37:2b:ef:66:86:04:7b:81:56:54:e7:9a:a8:98:
c0:d7:43:5f:19:36:c1:d8:c1:1f:cd:c9:5e:a8:a8:ff:ae:c6:
7e:b2:bd:af:ef:26:45:48:6d:18:65:b8:70:48:5c:53:ad:e2:
d2:99:01:3e:6d:fa:ab:ee:21:8c:bb:e3:c0:3b:ad:73:c6:52:
2f:b6:43:bd:68:42:8c:83:fe:4e:f4:1d:93:49:76:0c:85:0e:
20:c1:e9:95:7f:6a:78:92:9e:b3:a6:98:a5:0e:dd:d2:51:cd:
74:48:61:94:ea:9d:e8:2e:c2:52:e1:27:95:ff:62:a8:93:38:
e7:67:a9:ad:bc:17:72:bb:a4:2e:30:b4:8d:42:a6:b4:20:6e:
9f:d4:ba:03:18:61:4b:ad:9b:46:3f:80:59:d2:95:8f:b1:c4:
b4:ae:13:a4:26:e9:20:b3:8e:56:af:f4:8f:f8:8a:30:32:bf:
a2:7c:dd:15:0e:50:06:1c:a5:2e:e6:16:98:68:fc:2f:09:ab:
4b:35:84:23:a8:57:a7:37:f6:25:ff:b7:e0:b9:8e:df:54:76:
fd:ad:bb:fa:8a:bc:88:9d:2e:18:2a:b2:bb:c6:04:15:87:6f:
6d:54:3d:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org