Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/D9KkCoNp99uTZYGIi4NBAgDw9iQ.roa
File: D9KkCoNp99uTZYGIi4NBAgDw9iQ.roa (raw, json)
Hash identifier: a59XcJ1JoIWfUP3ooFTH/MlF3p3Cv6y+JqmEpljqXQA=
Subject key identifier: 0F:D2:A4:0A:83:69:F7:DB:93:65:81:88:8B:83:41:02:00:F0:F6:24
Certificate issuer: /CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Certificate serial: 0185A846688441FC7EDDBFB66E67F1AD5FEA
Authority key identifier: 50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/D9KkCoNp99uTZYGIi4NBAgDw9iQ.roa
Signing time: Thu 12 Jan 2023 23:17:44 +0000
ROA not before: Thu 12 Jan 2023 23:17:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205570
IP address blocks: 185.254.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 18 Feb 2023 18:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a8:46:68:84:41:fc:7e:dd:bf:b6:6e:67:f1:ad:5f:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50592e68895c7068b4655508917ad5bbddbd0a5f
Validity
Not Before: Jan 12 23:17:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fd2a40a8369f7db936581888b83410200f0f624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:00:30:0b:ec:ec:c5:54:c1:63:14:3b:85:c0:
58:43:d1:16:5d:1a:1e:78:8c:b5:92:d1:77:33:b1:
c6:7f:32:8b:ab:cc:25:2d:ce:2a:28:7f:00:21:c8:
20:d7:96:72:bb:d2:a3:92:ad:e8:7d:1e:d3:aa:0d:
43:93:47:08:59:1e:92:6e:0f:56:87:c3:d6:66:3b:
a6:0b:db:e7:36:86:47:9b:ee:3e:03:3a:82:99:fe:
18:d4:ff:fa:df:45:16:95:45:0f:9b:7e:e5:de:1f:
a5:d5:39:fe:85:3c:fd:52:e2:2f:39:c1:80:56:6f:
59:1c:9e:7d:a2:e7:e0:64:69:01:59:f9:c0:6d:3c:
90:da:e1:4d:f7:5b:20:5d:1a:44:d3:36:a2:12:83:
66:c6:29:f8:97:38:ab:69:9a:66:89:d6:7d:b0:c9:
a3:b7:a9:a5:33:aa:c9:32:80:74:cc:15:fa:e1:77:
fa:07:e1:aa:a8:d7:9e:ff:42:69:1e:63:d3:a2:f5:
cd:3b:07:c1:02:d3:be:7f:97:4b:fd:a6:e0:a8:45:
02:af:bd:33:fc:77:70:19:2e:35:12:ef:9c:59:3c:
f8:94:b8:f3:78:1f:ae:ba:9c:32:f5:10:9a:a5:7f:
33:f2:1d:bf:90:c6:ce:41:19:f3:0a:01:7a:af:c2:
0f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:D2:A4:0A:83:69:F7:DB:93:65:81:88:8B:83:41:02:00:F0:F6:24
X509v3 Authority Key Identifier:
keyid:50:59:2E:68:89:5C:70:68:B4:65:55:08:91:7A:D5:BB:DD:BD:0A:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFkuaIlccGi0ZVUIkXrVu929Cl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/D9KkCoNp99uTZYGIi4NBAgDw9iQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/2a8100-172b-48e3-a32a-7bbd28ce4a75/1/UFkuaIlccGi0ZVUIkXrVu929Cl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.95.0/24
Signature Algorithm: sha256WithRSAEncryption
61:da:0f:3b:9b:e6:14:0f:4a:62:87:3d:d1:7d:98:51:1a:ec:
aa:b7:31:ae:f5:fd:96:eb:2d:81:96:ac:b2:09:e8:63:1d:a3:
5d:8e:4b:f0:64:2a:25:70:a7:91:67:c4:12:53:df:78:af:5d:
95:42:99:62:d2:2a:a8:5e:28:2a:f2:70:9d:e9:ec:90:2d:f2:
28:d6:e3:43:c3:24:1f:9e:e1:be:ed:79:0c:33:49:68:da:bf:
09:fe:69:b0:bd:bf:a8:ee:f8:e8:25:4a:02:b8:02:d6:85:6e:
29:f9:60:dd:ef:5a:58:b1:69:05:d2:41:31:03:ce:18:62:f2:
cc:74:8a:a3:8e:1f:a0:69:98:a7:cf:56:e3:8e:d7:14:41:ce:
89:9e:8b:ec:d3:3c:9a:5f:da:af:26:7b:a4:ef:d9:9e:6f:3b:
c6:50:ff:c5:7a:58:4d:eb:fa:aa:d8:5d:7a:53:16:da:2b:07:
95:d5:2d:e9:90:64:11:ed:2a:15:61:fc:ef:3b:74:8f:fa:37:
5d:f1:9c:bd:e4:46:9b:7c:a7:68:b0:f0:c9:9d:b3:4b:b3:c9:
c0:2f:0f:22:9a:a7:53:01:ff:1d:83:40:da:5d:2d:b3:0f:7d:
b1:3f:79:28:dd:89:f3:36:45:66:ac:0d:c8:c4:c7:35:b7:12:
7c:84:90:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:52 2024 by rpki-client on console-ams.rpki-client.org