Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/c626d5-d405-406e-8c81-5c01817fb822/1/859v7JtFtcEYwEQwuzzyHdzVCGE.roa
File: 859v7JtFtcEYwEQwuzzyHdzVCGE.roa (raw, json)
Hash identifier: 1g4ny0ci0D/CqX5vYEDpmfEKwx/OufF5qI3QRIKrJWQ=
Subject key identifier: F3:9F:6F:EC:9B:45:B5:C1:18:C0:44:30:BB:3C:F2:1D:DC:D5:08:61
Certificate issuer: /CN=6e83251661b0b774271c5cf526aab884b1fa7c7e
Certificate serial: 01856B4A3571B303EFFC2C17FA345FBC4884
Authority key identifier: 6E:83:25:16:61:B0:B7:74:27:1C:5C:F5:26:AA:B8:84:B1:FA:7C:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boMlFmGwt3QnHFz1Jqq4hLH6fH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/c626d5-d405-406e-8c81-5c01817fb822/1/859v7JtFtcEYwEQwuzzyHdzVCGE.roa
Signing time: Sun 01 Jan 2023 03:05:03 +0000
ROA not before: Sun 01 Jan 2023 03:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12874
IP address blocks: 185.43.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:35:71:b3:03:ef:fc:2c:17:fa:34:5f:bc:48:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e83251661b0b774271c5cf526aab884b1fa7c7e
Validity
Not Before: Jan 1 03:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f39f6fec9b45b5c118c04430bb3cf21ddcd50861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:76:74:21:02:4f:38:e7:5a:64:cd:54:e2:92:
2a:4f:45:df:2b:23:4b:a9:68:82:91:31:59:00:fc:
08:4b:87:f6:e2:aa:31:4b:c9:2e:9c:ec:c3:d1:91:
51:cc:8f:4d:3a:0c:42:70:46:d0:64:25:66:f1:96:
5f:49:f2:8c:9c:3b:7a:0c:97:99:49:0e:a2:1f:bb:
d3:82:80:63:b0:e1:fc:fb:92:01:26:52:58:85:95:
03:6f:2c:59:dd:78:46:27:f2:3a:aa:95:50:fe:4e:
d1:8c:7a:8a:e4:53:11:e5:b4:28:79:49:0e:3b:e2:
5c:07:b0:5d:05:2d:98:ac:7d:7f:b1:81:0b:97:ae:
09:a3:3e:2a:9b:dc:e9:27:63:15:0b:79:2d:0c:0f:
93:61:9b:95:05:1e:0b:a1:3f:a7:0c:ca:3d:41:fa:
d0:78:02:ca:75:eb:ec:cc:a1:32:09:12:fb:7d:50:
09:63:a1:ad:9d:94:84:6b:f5:73:70:f5:9b:a0:cc:
36:99:a6:a8:56:f3:13:e5:9e:f6:84:30:7f:e9:24:
c5:c0:9a:56:bc:88:6a:c2:b7:1f:58:ea:f8:ff:59:
6e:45:a3:4e:d5:fc:24:8e:de:45:7d:c1:12:35:4a:
68:22:5e:51:05:88:d6:37:f3:3f:c2:88:5b:92:a0:
0a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:9F:6F:EC:9B:45:B5:C1:18:C0:44:30:BB:3C:F2:1D:DC:D5:08:61
X509v3 Authority Key Identifier:
keyid:6E:83:25:16:61:B0:B7:74:27:1C:5C:F5:26:AA:B8:84:B1:FA:7C:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boMlFmGwt3QnHFz1Jqq4hLH6fH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c626d5-d405-406e-8c81-5c01817fb822/1/859v7JtFtcEYwEQwuzzyHdzVCGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/c626d5-d405-406e-8c81-5c01817fb822/1/boMlFmGwt3QnHFz1Jqq4hLH6fH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.19.0/24
Signature Algorithm: sha256WithRSAEncryption
57:79:f9:8f:0c:cd:9f:53:37:df:48:5b:fe:d5:55:cb:7e:a0:
b4:c3:63:3f:a3:b1:51:b5:f3:df:9d:14:b1:e5:c1:f0:d8:be:
b2:ba:8a:16:e4:8e:8f:ef:bd:64:26:3b:5b:fb:3f:77:59:e2:
eb:69:a1:46:23:4a:cb:58:ff:71:66:26:6b:e9:a3:16:1b:e3:
30:77:03:f5:f8:f5:53:ca:d6:5d:8c:57:f9:54:ea:33:cc:9e:
dc:57:48:05:fc:3a:6d:6b:80:37:0f:cc:e6:61:9a:00:ec:b5:
b2:04:c8:98:8f:9f:4a:28:4a:11:5a:6a:f5:b2:52:0a:fd:38:
32:51:24:e7:27:56:0e:b6:89:80:a1:f8:62:fe:ad:bb:57:a9:
18:9f:6b:1c:7a:1f:7b:15:f8:75:9e:b8:b9:b2:56:32:a3:52:
a0:79:23:b7:92:98:93:c3:a0:35:13:00:e5:38:dd:4a:2c:1c:
f6:c6:2a:1e:54:0d:09:1d:99:e5:a4:7b:95:47:56:05:5e:fe:
2e:79:b0:83:db:e6:8d:d1:d0:92:fe:d3:37:f0:ad:b2:d7:00:
87:eb:a1:ed:be:39:f6:db:2b:62:43:2d:57:97:6f:bd:1b:d6:
46:d0:d5:48:e7:cd:53:e9:75:68:e4:42:cf:9c:f3:fa:8e:57:
99:c4:2a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:38 2024 by rpki-client on console-ams.rpki-client.org