Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/FYhe0arRdlPw0RnqqICqcgHIHsg.roa
File: FYhe0arRdlPw0RnqqICqcgHIHsg.roa (raw, json)
Hash identifier: IKp5cfX8q/aXJo/NVAM+DUHL6jZ2wdEW/GrjjND0MI8=
Subject key identifier: 15:88:5E:D1:AA:D1:76:53:F0:D1:19:EA:A8:80:AA:72:01:C8:1E:C8
Certificate issuer: /CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Certificate serial: 01857115129C36FFD2B17A0A0F8D1FFC9A27
Authority key identifier: DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/FYhe0arRdlPw0RnqqICqcgHIHsg.roa
Signing time: Mon 02 Jan 2023 06:04:44 +0000
ROA not before: Mon 02 Jan 2023 06:04:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202709
IP address blocks: 185.63.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:12:9c:36:ff:d2:b1:7a:0a:0f:8d:1f:fc:9a:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db489fbe98994cbc098c876ba63e560ac17e5b2f
Validity
Not Before: Jan 2 06:04:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=15885ed1aad17653f0d119eaa880aa7201c81ec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ec:06:4d:54:b7:de:af:28:c4:43:95:ea:8a:
88:d7:45:63:5e:80:70:57:bb:85:0c:5a:c0:9d:e6:
e6:f8:6a:32:7b:54:4a:02:f1:79:4c:b8:27:fe:f0:
39:ec:36:1a:19:1b:b5:10:c2:26:70:54:41:e8:30:
75:cc:c1:3f:47:e5:dc:aa:18:cf:9a:1b:0b:06:6e:
3a:55:9d:e0:e8:80:b3:4b:10:47:1d:f9:17:92:49:
f5:81:4b:00:99:71:98:cc:2a:1e:fa:5f:dc:93:2e:
bb:c5:db:80:ad:0a:7d:b1:b9:de:23:42:65:12:6b:
68:3a:e6:28:e6:2b:38:d7:ad:e0:7a:67:75:71:5b:
36:e5:1c:3c:74:a2:4b:be:c6:bc:11:a4:5a:b8:aa:
42:57:b8:90:6c:e8:d4:17:a2:a0:24:90:e5:72:71:
6c:3f:7d:1d:2e:37:d8:ce:8f:4d:38:ad:cc:e9:f1:
6a:dc:82:5e:49:83:13:ee:6a:fc:2e:e8:00:b3:a3:
a4:76:92:ab:e5:62:e0:a0:5e:fd:c4:de:d5:1f:ae:
84:b3:19:74:8e:ee:c7:ef:27:14:9c:8f:0f:49:63:
c4:fc:38:f6:e3:6f:63:c3:ba:95:77:89:7f:e5:33:
0d:35:c8:5e:5f:ba:f3:0a:25:e7:6d:49:9b:05:27:
5d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:88:5E:D1:AA:D1:76:53:F0:D1:19:EA:A8:80:AA:72:01:C8:1E:C8
X509v3 Authority Key Identifier:
keyid:DB:48:9F:BE:98:99:4C:BC:09:8C:87:6B:A6:3E:56:0A:C1:7E:5B:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/20ifvpiZTLwJjIdrpj5WCsF-Wy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/FYhe0arRdlPw0RnqqICqcgHIHsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/6cac50-3f13-4ef9-8b6d-decec41a71d1/1/20ifvpiZTLwJjIdrpj5WCsF-Wy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.63.231.0/24
Signature Algorithm: sha256WithRSAEncryption
18:8b:9b:21:f4:fd:87:55:e1:b2:0b:a1:22:20:47:8c:78:91:
83:6f:c5:40:ee:03:08:ac:d1:a6:bb:da:ce:18:47:05:2a:ef:
e0:25:17:ce:e1:1c:ae:70:e2:d3:d5:32:5c:7f:72:ad:51:65:
f3:51:5c:80:9e:a9:ac:79:03:8a:82:77:1b:e6:50:32:de:b2:
3b:37:74:1a:b2:b6:f5:8b:5d:5c:32:93:e1:eb:59:bf:29:de:
54:83:e4:11:30:a9:c4:d4:2c:79:90:64:33:ec:75:3f:5a:d5:
4f:09:7d:69:85:7d:97:17:d4:28:6e:38:49:f6:8b:e3:60:0c:
69:84:fd:6f:6f:a7:c0:98:10:de:65:f1:ff:9c:c5:82:9f:72:
ca:b6:1a:35:ca:98:b0:f1:14:87:d7:38:2f:19:80:67:c0:82:
c8:72:74:8b:89:67:0a:be:47:88:65:3e:2b:bb:54:7a:c2:26:
8d:f8:cb:bc:11:19:2e:17:c9:6c:4b:df:82:39:71:a5:de:78:
17:3d:0b:22:90:2a:b8:c0:bf:ff:f6:0e:3d:0e:c6:70:5b:7c:
9a:cf:3b:2f:51:a1:1e:bc:ab:a7:90:1b:8b:20:a7:a7:fb:15:
c6:20:92:81:35:96:92:2a:8e:5a:a1:6a:9a:37:73:e8:b7:e6:
46:36:54:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:41:30 2024 by rpki-client on console-ams.rpki-client.org