Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/14225b-bf95-45c9-8d7b-fc25d455af85/1/YDcOOKdUP1OB5ViiuQrczGRe2ss.roa
File: YDcOOKdUP1OB5ViiuQrczGRe2ss.roa (raw, json)
Hash identifier: ndD1JHl8GlQwRm/4dhEkpqrAIF6RX9C2NWzKZwrFu2c=
Subject key identifier: 60:37:0E:38:A7:54:3F:53:81:E5:58:A2:B9:0A:DC:CC:64:5E:DA:CB
Certificate issuer: /CN=5281b841f12769489d5fd343b72ba44f90c96f32
Certificate serial: 018BC872F018451E680A9BE8E7F931FA3766
Authority key identifier: 52:81:B8:41:F1:27:69:48:9D:5F:D3:43:B7:2B:A4:4F:90:C9:6F:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UoG4QfEnaUidX9NDtyukT5DJbzI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/14225b-bf95-45c9-8d7b-fc25d455af85/1/YDcOOKdUP1OB5ViiuQrczGRe2ss.roa
Signing time: Mon 13 Nov 2023 11:30:57 +0000
ROA not before: Mon 13 Nov 2023 11:30:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205541
IP address blocks: 185.13.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c8:72:f0:18:45:1e:68:0a:9b:e8:e7:f9:31:fa:37:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5281b841f12769489d5fd343b72ba44f90c96f32
Validity
Not Before: Nov 13 11:30:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60370e38a7543f5381e558a2b90adccc645edacb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:51:8c:8a:3c:7c:fa:66:de:bf:08:63:8b:70:
93:01:7f:99:01:43:0c:b8:33:2a:78:01:46:3e:29:
48:61:0d:8b:61:ad:69:e7:20:09:04:91:b3:ec:d5:
6c:7c:de:e6:ca:f5:5c:b9:cc:15:13:df:42:a9:eb:
ec:b9:a7:a9:46:fc:e1:69:69:62:c4:c4:27:4f:64:
f5:05:29:a5:f0:db:b2:64:1d:64:7a:10:f9:a3:74:
1b:79:f1:bc:c4:58:8d:89:60:27:e4:f1:52:d0:2d:
d2:6c:3d:8f:22:87:0c:65:fc:a7:90:69:6f:73:22:
a9:67:dc:5a:28:a0:e3:b4:a5:54:af:a2:0c:8a:a4:
93:68:d8:fa:97:f4:84:d1:10:cd:6d:67:2b:65:15:
56:fc:6b:e7:d6:f4:7f:05:be:63:35:fc:89:3c:92:
54:57:6a:cc:6c:ad:c8:7b:96:f3:1d:8a:a5:d5:fd:
d8:a1:36:4c:42:9e:c8:a1:27:69:11:39:b3:d4:41:
46:5e:11:f8:27:05:cf:2f:42:ec:f8:0a:9e:79:ae:
d3:43:61:f5:f9:6c:20:69:7c:49:03:94:cc:e5:e8:
fb:d8:2f:12:7a:b1:e2:25:d9:07:61:96:b9:d0:8e:
5e:1f:e1:16:23:72:4f:89:49:30:e9:33:c4:38:96:
1d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:37:0E:38:A7:54:3F:53:81:E5:58:A2:B9:0A:DC:CC:64:5E:DA:CB
X509v3 Authority Key Identifier:
keyid:52:81:B8:41:F1:27:69:48:9D:5F:D3:43:B7:2B:A4:4F:90:C9:6F:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UoG4QfEnaUidX9NDtyukT5DJbzI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/14225b-bf95-45c9-8d7b-fc25d455af85/1/YDcOOKdUP1OB5ViiuQrczGRe2ss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/14225b-bf95-45c9-8d7b-fc25d455af85/1/UoG4QfEnaUidX9NDtyukT5DJbzI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.66.0/24
Signature Algorithm: sha256WithRSAEncryption
85:50:b0:19:b5:33:f3:28:7e:b6:e7:da:ab:bc:95:ef:d2:75:
36:35:3e:f0:b8:10:f7:8f:cc:11:26:ed:3e:c8:8b:ff:ad:13:
25:3e:79:52:35:83:ce:5a:2d:89:68:ed:4c:b4:1e:a7:90:e3:
94:82:b4:be:ad:30:13:0c:32:d4:2b:59:02:22:0e:bf:6a:83:
ae:24:29:bf:7b:08:37:fa:ba:a8:ad:8f:ba:8f:24:3c:56:28:
6f:9b:91:14:0b:b9:a3:89:68:e4:be:39:6b:c6:e8:52:79:13:
93:90:8d:9b:8a:39:1e:ae:d2:18:64:e2:1f:c5:16:98:d1:6f:
53:6e:07:8a:12:69:d4:a0:44:f9:d7:b5:c7:89:ac:6f:5d:ce:
30:09:e3:b8:e5:5b:5d:e8:3e:53:a1:6b:75:8c:a6:9f:0a:d5:
2d:e9:15:2e:5d:b3:6b:32:ac:66:d8:89:84:b3:45:2e:8b:5c:
b3:4f:84:32:4c:1a:96:1e:15:ad:83:55:e5:73:97:b9:ef:82:
7e:7f:1c:ea:3c:ba:98:e0:f0:7a:4c:12:50:e6:76:62:0a:00:
ec:4d:9b:de:29:09:d2:a0:59:86:8d:5f:57:43:ec:21:fa:35:
bc:39:52:6d:4f:63:2a:9c:f5:21:1c:63:a2:84:23:15:aa:d8:
0c:d0:d7:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:30 2024 by rpki-client on console-ams.rpki-client.org