Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/4XHyDFgC2K9DPSb8mo0dA4iUvOc.roa
File: 4XHyDFgC2K9DPSb8mo0dA4iUvOc.roa (raw, json)
Hash identifier: hKckFjMYzySmqV5cPVeG9VyQrlsTfXs+5nhSsYi8BwY=
Subject key identifier: E1:71:F2:0C:58:02:D8:AF:43:3D:26:FC:9A:8D:1D:03:88:94:BC:E7
Certificate issuer: /CN=91242d9769b759349c8018c908736e54dffc0cb5
Certificate serial: 01867AB0DF11DC606B510BEE6B090F0E2126
Authority key identifier: 91:24:2D:97:69:B7:59:34:9C:80:18:C9:08:73:6E:54:DF:FC:0C:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kSQtl2m3WTScgBjJCHNuVN_8DLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/4XHyDFgC2K9DPSb8mo0dA4iUvOc.roa
Signing time: Wed 22 Feb 2023 19:54:17 +0000
ROA not before: Wed 22 Feb 2023 19:54:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 185.249.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7a:b0:df:11:dc:60:6b:51:0b:ee:6b:09:0f:0e:21:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91242d9769b759349c8018c908736e54dffc0cb5
Validity
Not Before: Feb 22 19:54:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e171f20c5802d8af433d26fc9a8d1d038894bce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:8c:22:3c:c8:04:f0:ea:89:02:4c:5c:6d:6a:
14:e8:32:6f:f2:59:93:64:f5:bd:9c:4d:5f:ac:ce:
00:46:03:f4:34:98:5b:f3:9f:8e:89:16:15:a1:da:
cc:8e:43:51:6a:b0:d8:b5:63:f5:0a:30:e5:81:04:
1c:e4:5e:a0:8f:f9:5d:33:59:e7:2a:ec:e0:af:b2:
96:48:4d:37:91:5f:41:78:17:af:21:f2:0d:39:38:
38:87:08:f8:75:df:a1:9e:93:d1:32:67:14:48:28:
85:b5:f0:06:21:c2:68:76:5e:25:88:65:dc:33:8a:
75:de:0c:42:c3:b5:a3:03:96:61:1e:29:48:25:73:
3d:59:b7:48:f4:5e:5e:14:71:43:66:27:f6:bf:0a:
c1:fd:16:91:c6:8f:0f:6d:c9:d1:28:48:16:14:0c:
6b:72:42:62:60:35:05:52:c6:bb:3f:ad:9c:29:ce:
a8:13:4a:e2:88:47:95:a5:05:90:5d:ff:da:dc:83:
19:a9:0d:9c:e5:6c:8e:44:a4:01:0c:78:7c:32:49:
b0:ce:d6:bb:48:76:78:4d:20:ab:ae:4b:02:38:0a:
f4:a7:79:62:a4:05:d7:35:0e:66:d4:32:ec:e1:53:
c5:d8:fc:21:c5:79:5a:db:47:54:b3:3a:11:06:f9:
a1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:71:F2:0C:58:02:D8:AF:43:3D:26:FC:9A:8D:1D:03:88:94:BC:E7
X509v3 Authority Key Identifier:
keyid:91:24:2D:97:69:B7:59:34:9C:80:18:C9:08:73:6E:54:DF:FC:0C:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kSQtl2m3WTScgBjJCHNuVN_8DLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/4XHyDFgC2K9DPSb8mo0dA4iUvOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/1c3b20-c966-4840-8be2-2e10a1e7198e/1/kSQtl2m3WTScgBjJCHNuVN_8DLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.55.0/24
Signature Algorithm: sha256WithRSAEncryption
52:14:9e:f4:f0:6b:73:ed:12:61:37:d1:2d:ce:b6:85:02:0d:
94:1b:b7:3d:4a:50:78:37:a2:bf:89:ae:1b:92:07:84:ed:ab:
e4:0e:b6:5a:e1:cf:d9:ba:8f:0d:7f:70:f3:f5:6c:63:b1:9a:
5d:5d:dc:8e:5f:3d:cf:34:90:62:52:e6:e4:d7:e4:11:11:32:
45:15:2a:17:71:e5:ef:1c:d7:d3:86:f5:6e:03:6a:77:37:92:
8f:d8:44:d5:f9:8c:60:2e:d8:7c:06:2a:fd:15:c4:8e:e4:d9:
b4:77:76:f8:e1:9a:53:e8:26:83:2f:58:10:c1:cd:89:22:7f:
56:ac:ca:11:22:b6:0f:23:b1:58:b1:d8:8f:d0:79:cc:3d:1f:
50:1b:1c:61:5d:fc:b5:a5:e3:93:be:e7:bc:c3:40:1b:cf:56:
7f:35:39:93:10:1b:7a:ca:24:c7:40:5b:77:51:71:b2:dd:04:
72:dc:17:9d:a7:0d:62:ec:9b:b4:8f:38:5b:6b:03:f6:04:30:
9e:e4:ac:85:6d:5d:20:c7:b0:93:09:2e:ce:d1:91:d9:dc:91:
95:a4:11:9f:e6:1f:94:09:27:83:e5:ae:a1:45:c2:93:b6:14:
aa:52:5d:a6:db:ac:46:d9:d8:dd:37:08:44:cd:79:7d:db:2f:
9b:2a:fa:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:37 2023 by rpki-client on console-ams.rpki-client.org