Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/1-1YX3cBNr_xIS9_a82CZpjeknbs.roa
File: 1-1YX3cBNr_xIS9_a82CZpjeknbs.roa (raw, json)
Hash identifier: QFYLb410VlpsPGQ6aSRVId5CGs4izvwY8E2GryYCads=
Subject key identifier: FB:56:17:DD:C0:4D:AF:FC:48:4B:DF:DA:F3:60:99:A6:37:A4:9D:BB
Certificate issuer: /CN=9d17d9388e7631a6d19afb2b2642795a24c84081
Certificate serial: 01856C25A794DA395260C89F83CD4585A634
Authority key identifier: 9D:17:D9:38:8E:76:31:A6:D1:9A:FB:2B:26:42:79:5A:24:C8:40:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nRfZOI52MabRmvsrJkJ5WiTIQIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/1-1YX3cBNr_xIS9_a82CZpjeknbs.roa
Signing time: Sun 01 Jan 2023 07:04:45 +0000
ROA not before: Sun 01 Jan 2023 07:04:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203927
IP address blocks: 185.119.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:25:a7:94:da:39:52:60:c8:9f:83:cd:45:85:a6:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d17d9388e7631a6d19afb2b2642795a24c84081
Validity
Not Before: Jan 1 07:04:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb5617ddc04daffc484bdfdaf36099a637a49dbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2e:7c:63:f4:2f:e5:30:8d:58:90:f9:e3:03:
42:ee:70:5d:f6:07:31:3c:5c:43:41:c4:84:eb:3a:
cc:03:ea:9f:43:67:9f:00:b4:5c:0f:aa:56:e5:e3:
d3:51:8c:0c:c8:1a:aa:ba:95:e4:4f:81:e4:5d:11:
89:ab:c0:44:7d:f4:b8:68:7a:81:69:1b:fc:d1:55:
72:79:62:04:55:80:4c:ba:b4:5a:25:04:59:2e:b1:
a3:e5:e6:40:8d:27:84:f6:72:48:33:13:fc:d4:4e:
d7:74:e8:92:28:a2:2c:6a:74:6e:55:aa:50:cc:a5:
46:b6:76:d0:a9:68:3c:89:a3:fb:51:52:81:84:20:
1e:b7:98:87:26:26:65:e0:9a:ec:30:95:d3:ee:62:
67:ff:94:2d:14:8d:0e:1f:d6:6a:d8:cb:51:a9:15:
99:1c:6f:5e:72:5a:8e:08:b6:42:04:37:cd:47:e3:
d4:b1:de:8a:22:71:7b:94:fd:88:cd:9c:29:ea:07:
70:8c:4e:eb:c4:72:ac:c2:3c:c3:57:f2:e3:af:aa:
f7:34:76:49:0f:b8:0c:71:6c:de:cf:56:ee:13:9b:
a2:4f:87:5f:65:0f:98:9b:d0:6e:35:11:d1:78:ba:
a3:6a:73:f3:36:4c:94:c5:c1:14:3d:bb:0a:37:23:
8b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:56:17:DD:C0:4D:AF:FC:48:4B:DF:DA:F3:60:99:A6:37:A4:9D:BB
X509v3 Authority Key Identifier:
keyid:9D:17:D9:38:8E:76:31:A6:D1:9A:FB:2B:26:42:79:5A:24:C8:40:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nRfZOI52MabRmvsrJkJ5WiTIQIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/1-1YX3cBNr_xIS9_a82CZpjeknbs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e8444-8da5-466b-8400-7bd96d9c6286/1/nRfZOI52MabRmvsrJkJ5WiTIQIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.204.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:aa:fe:fc:31:70:3b:c9:dc:5b:ca:fb:ac:3c:23:7c:0e:23:
96:7b:b1:b0:85:e6:73:62:d0:bb:f4:0c:f2:8c:7f:1b:32:61:
67:e3:83:7c:9a:5b:c7:5f:dd:2a:b4:f0:f2:21:e9:b3:2f:3a:
5f:b8:9b:f0:c2:26:ec:5b:52:f4:83:34:b2:6d:ad:48:03:f9:
cc:57:dc:bb:1c:3f:0b:03:90:ca:91:c4:a8:1b:5f:06:de:43:
34:39:2d:5d:40:96:b0:38:72:43:ed:0b:e1:98:05:00:e8:d2:
c7:d8:4b:07:f4:73:3c:65:22:d0:0f:e2:f6:1c:9e:1c:e8:31:
68:a0:dc:4f:aa:b1:0e:10:99:61:24:1f:a6:07:b8:a3:8c:0d:
29:1c:a0:7d:dd:f8:61:fe:c6:e2:76:59:f6:a2:40:a6:35:34:
35:c1:c9:a7:80:cc:ea:fb:60:68:4d:bc:65:b5:53:dc:14:7c:
d3:d8:60:ed:c1:57:2f:3a:e2:18:1b:30:8a:d3:b1:c8:26:ee:
b7:e9:02:f6:44:bd:7c:8b:da:4a:18:d1:e9:ec:eb:23:26:2f:
e4:6f:e7:7e:d7:a5:7b:e1:8e:eb:b2:44:2a:00:5c:0a:8f:ba:
ec:0f:ee:a5:50:ed:a2:c7:f4:79:c7:3f:43:18:89:a1:08:64:
ff:cb:29:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:46 2024 by rpki-client on console-fra.rpki-client.org