Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/yfbp7ZhzntG2qrGXx1v-e1Ia2Qw.roa
File: yfbp7ZhzntG2qrGXx1v-e1Ia2Qw.roa (raw, json)
Hash identifier: Sfc8hnGwgxcIVNrqMKfGPkPLpu4CjZu0/Wk6uFz+Ufs=
Subject key identifier: C9:F6:E9:ED:98:73:9E:D1:B6:AA:B1:97:C7:5B:FE:7B:52:1A:D9:0C
Certificate issuer: /CN=53d0359f9f8b20815ce4d988e109bf82306e4c74
Certificate serial: 018697C610FDC839078508098560256632D3
Authority key identifier: 53:D0:35:9F:9F:8B:20:81:5C:E4:D9:88:E1:09:BF:82:30:6E:4C:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/yfbp7ZhzntG2qrGXx1v-e1Ia2Qw.roa
Signing time: Tue 28 Feb 2023 11:26:25 +0000
ROA not before: Tue 28 Feb 2023 11:26:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209854
IP address blocks: 185.239.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 11 May 2023 17:14:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:97:c6:10:fd:c8:39:07:85:08:09:85:60:25:66:32:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53d0359f9f8b20815ce4d988e109bf82306e4c74
Validity
Not Before: Feb 28 11:26:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c9f6e9ed98739ed1b6aab197c75bfe7b521ad90c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:99:d7:60:fa:c7:52:68:6f:7f:4e:57:42:0d:
1c:46:aa:e8:65:94:ec:0b:bb:ed:d1:fe:d1:6d:92:
18:d3:08:74:c1:40:75:8b:5b:fd:86:86:b8:38:af:
3f:75:ed:35:28:6b:da:b0:3d:70:43:99:e1:b1:05:
d3:47:06:c7:40:43:e1:3d:82:c6:c5:8d:a5:0b:5f:
37:1f:08:3c:b1:ca:d1:6c:51:8a:44:8e:6d:65:11:
92:4d:27:8b:e8:51:0c:e9:40:d2:9a:95:b6:b1:9d:
9c:53:5a:77:e9:66:5d:b1:87:6b:a8:1b:7a:8b:c7:
f9:fa:1a:48:26:e3:56:d9:1a:a2:1f:99:a1:0f:d4:
be:61:63:17:d7:01:83:1f:fc:f8:39:52:1b:dc:a8:
ce:b9:ca:5f:49:e5:cf:36:f2:4d:fc:64:b6:a7:24:
d3:f0:75:19:67:d0:2f:0e:d4:d1:78:87:87:2b:5e:
05:69:24:c5:37:b8:cb:dd:5c:a9:f7:dc:e2:ce:65:
d5:bf:0b:6b:21:85:b3:85:b5:80:15:f8:11:5f:50:
91:6e:c4:eb:8b:a9:52:b2:bc:9e:52:b2:67:73:78:
85:52:05:f2:af:42:4c:f2:3b:1f:b0:0f:6a:2c:fa:
b1:c3:8f:b4:cc:88:50:34:04:c9:2c:7c:ca:41:73:
e7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:F6:E9:ED:98:73:9E:D1:B6:AA:B1:97:C7:5B:FE:7B:52:1A:D9:0C
X509v3 Authority Key Identifier:
keyid:53:D0:35:9F:9F:8B:20:81:5C:E4:D9:88:E1:09:BF:82:30:6E:4C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/yfbp7ZhzntG2qrGXx1v-e1Ia2Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/493571-210e-4d1a-8819-a6c49ce90756/1/U9A1n5-LIIFc5NmI4Qm_gjBuTHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.189.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:3f:50:c6:69:88:88:99:36:53:2f:00:31:63:1d:36:22:c0:
7b:1f:1d:21:76:af:8c:ca:b8:17:ce:da:9f:27:aa:f4:ab:96:
8b:d0:4f:a8:46:7a:ad:e3:72:16:cb:56:b7:36:17:13:3b:4e:
cc:c3:18:1a:bb:f4:38:15:b0:af:d3:de:52:17:fe:34:bc:8b:
bc:f5:43:8b:ee:b6:44:b3:80:21:2f:62:92:02:c8:9e:aa:97:
bf:b4:b2:3a:c2:5d:3f:f6:13:59:32:86:e4:e4:10:6f:6b:5b:
51:9b:ce:71:f5:5b:d5:10:c7:56:80:4d:ea:f3:a9:3e:40:29:
e7:00:c1:18:c4:b2:3a:9c:4e:e3:c0:e0:22:ce:e2:69:4a:b9:
d8:0b:d0:fc:39:a2:c3:49:af:f1:d8:81:26:6c:79:a3:30:85:
29:0a:63:68:18:57:79:59:f5:a8:09:00:0e:e3:0f:13:7a:89:
a5:7f:67:86:e6:fd:98:a2:18:90:dc:70:65:d1:6f:c8:ac:f5:
4a:72:0c:af:8e:ce:35:aa:6f:91:12:cc:d8:50:dc:31:d5:55:
fc:bb:9c:de:47:a5:41:89:06:9b:fa:cf:d3:35:dd:bb:35:88:
53:1d:f9:74:9f:0a:e0:2b:cf:88:39:2e:5c:39:66:0e:dd:6e:
93:4c:8c:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org