Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1y3SQ8EPF95P45mRj2qjgcH_Yqg.roa
File: 1y3SQ8EPF95P45mRj2qjgcH_Yqg.roa (raw, json)
Hash identifier: Zz60AHmzj/3eeQ/5SAIF9O5TlSmDWD/praLU7yfATAY=
Subject key identifier: D7:2D:D2:43:C1:0F:17:DE:4F:E3:99:91:8F:6A:A3:81:C1:FF:62:A8
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C540775FEFD20B57775A5F138AD55E8
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1y3SQ8EPF95P45mRj2qjgcH_Yqg.roa
Signing time: Sun 01 Jan 2023 07:55:24 +0000
ROA not before: Sun 01 Jan 2023 07:55:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137882
IP address blocks: 185.255.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:34:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:07:75:fe:fd:20:b5:77:75:a5:f1:38:ad:55:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d72dd243c10f17de4fe399918f6aa381c1ff62a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f8:78:10:d0:f3:c4:c2:c2:75:0e:4d:c2:65:
b4:a4:95:e0:db:22:45:94:54:9a:69:45:d0:db:2c:
0e:e0:14:3a:23:a3:e5:34:43:8a:a4:1f:14:f4:15:
d6:11:f0:bb:6f:13:81:3a:bd:65:19:9a:91:1a:8c:
a8:a4:cd:1a:51:e1:93:a0:0e:4a:1a:83:60:71:6d:
3a:72:14:d8:30:8d:2d:08:73:a8:3a:6e:75:d2:e4:
0e:b3:0d:9f:1f:6f:66:50:07:2f:73:14:39:49:8f:
b7:73:ec:52:81:e4:f5:b7:14:e9:d7:bb:b9:93:36:
82:e3:8a:dc:3f:ab:e5:70:10:5c:8f:eb:e5:93:be:
50:10:12:5c:85:a5:8b:00:a6:70:2d:56:3f:20:a4:
cd:30:90:eb:81:23:92:86:0f:fd:b5:de:d7:5d:ce:
81:42:f2:31:7d:23:92:e8:62:2c:f6:ce:8c:de:74:
2e:e1:17:8c:ba:f6:5e:83:50:d0:b9:b0:87:eb:3f:
66:25:b8:5c:bb:83:cc:c0:30:ac:ae:55:62:8a:c0:
69:37:47:25:7c:cf:af:fc:aa:7d:50:93:f8:86:4e:
e5:2f:f0:a1:9e:5b:42:85:90:2d:e8:49:ab:75:ff:
fc:b0:58:0b:60:12:d4:63:82:79:e1:80:83:79:cb:
3a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:2D:D2:43:C1:0F:17:DE:4F:E3:99:91:8F:6A:A3:81:C1:FF:62:A8
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/1y3SQ8EPF95P45mRj2qjgcH_Yqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.152.0/24
Signature Algorithm: sha256WithRSAEncryption
37:db:00:f4:29:b6:6d:1d:e1:bb:43:8a:57:e7:29:da:bb:e8:
a9:ba:53:c7:2e:69:73:d7:46:99:ef:a1:9c:c7:9e:8d:71:35:
91:e1:1b:4b:27:98:61:f5:08:6e:0a:49:34:65:f2:5d:07:cb:
73:bf:c3:8f:a9:d4:d0:2e:24:7c:2e:44:29:88:45:9e:82:ec:
65:3c:1e:73:68:87:a3:31:ad:98:ff:d7:fa:1e:23:32:af:42:
e5:3e:8c:08:89:5e:bc:4f:60:55:c8:dc:d8:c7:77:ea:40:50:
66:b5:e3:bc:a7:7a:86:7f:f3:0f:8c:d0:d8:b9:01:7a:f6:48:
1b:40:29:04:09:c6:3b:85:e4:5d:06:e6:d7:fe:f5:26:ca:3d:
9c:93:9f:b8:de:25:81:cf:8b:e3:ab:9a:64:65:4f:a8:0d:c9:
81:56:92:df:30:50:7c:39:13:53:8f:4d:be:bd:40:49:69:eb:
45:0a:3b:3d:ec:d6:44:e4:14:7d:6e:54:44:21:c4:c4:41:85:
e8:3b:db:b3:6d:7a:4e:49:1e:8e:aa:a2:a4:b8:d6:61:36:ab:
d6:da:55:96:03:23:85:9e:d2:0b:c7:d3:68:17:63:b9:19:b1:
c2:82:12:63:a5:00:da:b3:01:40:12:2e:66:a9:ad:ad:c0:98:
ac:27:e9:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org