Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/zsRId_qK49jy55aDJs_UW1YAhp8.roa
File: zsRId_qK49jy55aDJs_UW1YAhp8.roa (raw, json)
Hash identifier: B9Usjv1fW+/B7l0VvaWsfQWE+2dfrIAMmEsBy3toZ00=
Subject key identifier: CE:C4:48:77:FA:8A:E3:D8:F2:E7:96:83:26:CF:D4:5B:56:00:86:9F
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0187614B5FD382C98798E09CB7F722F11E75
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/zsRId_qK49jy55aDJs_UW1YAhp8.roa
Signing time: Sat 08 Apr 2023 14:35:42 +0000
ROA not before: Sat 08 Apr 2023 14:35:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47447
IP address blocks: 185.223.155.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:61:4b:5f:d3:82:c9:87:98:e0:9c:b7:f7:22:f1:1e:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Apr 8 14:35:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cec44877fa8ae3d8f2e7968326cfd45b5600869f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:88:ff:7e:be:6a:3d:5b:e3:16:12:90:65:0b:
3d:a1:20:3f:ea:de:8b:9e:cd:4a:08:39:58:e0:78:
29:f0:55:6a:6d:2d:dd:65:3f:c9:2c:a2:9e:ef:8d:
1d:d7:d5:88:01:b6:d5:fb:fd:a8:1b:c1:97:2a:e6:
7d:c8:a7:f5:db:7b:97:0d:3c:0c:de:b4:7d:c4:63:
3c:25:36:64:6d:04:73:ef:40:b9:9d:90:1d:6e:c1:
4c:ba:88:2b:b9:fc:38:e7:fb:a7:47:6a:16:78:7a:
13:44:c7:c9:13:ec:0d:ec:f6:f7:0b:fb:ce:f1:c0:
c1:21:d0:6b:ac:41:4b:5e:5a:12:dd:34:ff:1a:db:
e8:99:2d:50:ee:d4:35:e0:8f:11:cf:19:98:25:47:
04:07:d1:e0:0b:56:2d:21:3d:56:db:92:98:5c:9d:
9a:fb:8b:55:1b:e2:40:ca:c3:21:3d:17:93:e5:64:
4f:7f:47:1a:25:1d:26:e8:d0:37:da:14:67:bd:93:
62:d1:46:e4:46:9e:a2:29:d9:14:d3:50:2b:d6:81:
81:ad:68:e9:51:2e:ad:4f:d4:1a:ae:24:a3:0f:fc:
26:7d:43:0c:ad:b5:64:d0:9a:f4:a6:84:33:f0:d4:
23:36:89:33:d9:33:30:49:5e:91:da:cd:6b:da:1c:
cd:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:C4:48:77:FA:8A:E3:D8:F2:E7:96:83:26:CF:D4:5B:56:00:86:9F
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/zsRId_qK49jy55aDJs_UW1YAhp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.155.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:c5:72:96:12:21:13:02:3a:d4:b1:64:81:cb:66:a4:fe:f9:
7f:91:44:cf:3e:b2:c9:4d:24:f3:d1:49:96:00:17:70:61:25:
36:7b:b4:84:1c:6d:9a:04:4c:90:6e:ea:26:70:e5:99:c4:82:
27:ca:e1:a7:3c:fd:7c:ad:c9:da:d5:a9:e8:98:f7:8b:68:26:
c5:79:0f:3c:5d:c8:a6:66:ef:52:90:b8:22:ce:21:91:aa:9f:
3a:e3:53:fd:97:c0:5d:1f:c7:64:00:1c:25:52:e8:d0:10:f1:
a6:42:5c:77:6c:33:82:04:fb:00:2c:0b:e8:a9:d5:e6:ff:bc:
48:e0:d3:1a:af:56:db:1f:16:89:e1:a3:73:34:a4:48:e4:4b:
e5:39:42:47:62:8b:e9:e3:64:4c:d5:21:4f:82:0e:f8:18:b3:
aa:a1:3a:90:46:05:2b:d9:93:09:24:21:c4:19:ed:27:fa:11:
f2:19:ba:44:68:5b:4c:53:e3:fa:ec:c5:cb:09:83:4b:a8:47:
8d:a8:c7:78:2a:43:93:ef:32:8e:0b:af:a6:5c:88:55:69:cb:
e1:d8:4c:1e:06:6f:8b:66:d1:7f:b1:83:23:4a:ea:97:b4:3d:
1b:a4:f7:a0:a2:d0:c5:a0:32:50:0b:1d:a7:c3:87:93:47:88:
e4:48:c6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:30 2024 by rpki-client on console-ams.rpki-client.org