Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/DZG8UVk9hnYfWdQnMXt8oPMKcvY.roa
File: DZG8UVk9hnYfWdQnMXt8oPMKcvY.roa (raw, json)
Hash identifier: y4y26a431Ny7AbV3SmGARCgHx1hr5cQqwMLwICmuQ/A=
Subject key identifier: 0D:91:BC:51:59:3D:86:76:1F:59:D4:27:31:7B:7C:A0:F3:0A:72:F6
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246E3A00B9B54043D29D7CF927F3D66
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/DZG8UVk9hnYfWdQnMXt8oPMKcvY.roa
Signing time: Mon 02 Jan 2023 11:38:46 +0000
ROA not before: Mon 02 Jan 2023 11:38:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.255.56.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sat 04 Feb 2023 12:20:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:e3:a0:0b:9b:54:04:3d:29:d7:cf:92:7f:3d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d91bc51593d86761f59d427317b7ca0f30a72f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:40:06:35:c3:5b:0f:2b:17:64:04:79:4d:f3:
c7:c2:07:c8:65:d5:8a:9a:28:0e:03:7f:96:e9:c0:
e8:df:59:e8:2c:b1:a8:17:0a:fd:89:fd:2d:f8:ef:
ef:5b:35:28:2f:d4:ff:97:c3:f1:5a:4f:cd:15:b3:
2f:ae:f1:0e:67:a9:82:40:d7:dc:3c:b0:98:a0:1f:
98:21:e6:85:e2:6c:21:a7:4b:56:7b:3b:72:f2:62:
fc:49:85:84:fd:a1:01:6a:c2:e2:a5:f0:64:53:1a:
84:87:cd:b8:22:65:e9:16:26:90:6c:32:1a:dc:23:
da:69:29:14:c0:a0:64:43:e8:d2:ed:b7:e4:52:07:
55:8e:80:d4:b1:e2:48:94:06:12:5b:3f:d6:78:86:
e3:8a:c4:6c:63:e7:b1:ed:76:01:5c:5d:a3:10:a7:
ce:69:d1:40:46:fb:8d:14:99:b4:00:11:44:38:54:
4b:b6:7a:d3:87:f3:4f:20:cc:2a:ef:0c:43:2a:be:
b7:4c:54:33:a3:4a:15:b3:7c:11:6c:37:e8:77:60:
36:db:60:71:b4:c7:63:1e:79:07:45:e2:9e:26:0c:
51:eb:75:c9:ca:ea:fb:2c:33:0d:f2:b3:2f:c2:3d:
11:39:cd:7e:30:46:e7:d6:f3:14:72:20:b2:5b:2f:
be:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:91:BC:51:59:3D:86:76:1F:59:D4:27:31:7B:7C:A0:F3:0A:72:F6
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/DZG8UVk9hnYfWdQnMXt8oPMKcvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:85:90:22:50:62:fc:0d:22:18:62:2e:12:5a:0f:6b:48:8a:
16:24:4d:e5:6b:54:d5:8f:08:e4:73:ec:f3:47:71:53:63:2e:
39:8e:78:87:70:fe:e1:7f:86:3b:78:81:73:72:5c:72:7f:6c:
98:70:69:42:be:f2:09:99:7a:3d:58:e0:a5:e8:ce:0a:fa:b5:
55:8f:2f:25:d8:37:8b:29:56:14:12:0c:b3:c1:57:d4:66:29:
2c:2c:84:52:cd:5d:3d:a1:4b:42:6f:65:82:b1:98:69:f2:2b:
f0:8a:c2:83:76:b6:97:9f:c3:df:f1:e2:89:f6:90:f5:f0:55:
19:4a:4c:f4:e4:e7:3d:b0:1a:a5:61:64:09:ac:12:c6:14:d6:
f9:7b:40:50:74:90:5b:c7:c7:31:f9:49:99:01:e6:1d:76:07:
4d:07:ff:a2:68:c6:07:b7:67:f3:d3:ea:48:85:1f:0c:c7:4d:
b9:6f:99:ae:d8:26:87:30:ff:59:5f:44:14:30:f7:69:3d:b0:
9a:01:63:8b:23:f3:1d:7b:0a:7c:89:0c:d0:12:51:fb:b0:9c:
4a:c7:8a:fb:97:ee:d8:cd:42:72:c7:95:91:cf:b5:31:ae:9e:
e6:2c:69:52:f7:ed:fa:4d:36:aa:72:a1:11:71:b4:42:ec:db:
e7:cd:f1:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org