Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/zU4wehnGbXnU-0KYLTlfOQT5f-k.roa
File: zU4wehnGbXnU-0KYLTlfOQT5f-k.roa (raw, json)
Hash identifier: gOC2KJeKFUyXUpuiT3km0XNF1DjeMBsnRe3m2J+Vjxg=
Subject key identifier: CD:4E:30:7A:19:C6:6D:79:D4:FB:42:98:2D:39:5F:39:04:F9:7F:E9
Certificate issuer: /CN=c0f92571108958786b65ffa241b1f11f6d058b56
Certificate serial: 018C0344110C9FF5194EDBA821A6932B2E17
Authority key identifier: C0:F9:25:71:10:89:58:78:6B:65:FF:A2:41:B1:F1:1F:6D:05:8B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wPklcRCJWHhrZf-iQbHxH20Fi1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/zU4wehnGbXnU-0KYLTlfOQT5f-k.roa
Signing time: Fri 24 Nov 2023 21:37:21 +0000
ROA not before: Fri 24 Nov 2023 21:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.79.75.0/24 maxlen: 24
185.79.72.0/24 maxlen: 24
185.79.74.0/24 maxlen: 24
185.79.73.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:03:44:11:0c:9f:f5:19:4e:db:a8:21:a6:93:2b:2e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0f92571108958786b65ffa241b1f11f6d058b56
Validity
Not Before: Nov 24 21:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd4e307a19c66d79d4fb42982d395f3904f97fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:be:cf:58:31:42:c6:5a:d4:d6:6c:e7:93:ec:
11:70:fd:1f:3e:92:ce:e1:36:a6:41:53:e1:20:5f:
4d:56:2d:af:16:87:41:6a:76:bd:9b:46:4c:09:7e:
a4:4b:93:d1:c3:76:85:23:02:a7:2e:24:fe:f1:48:
27:29:e5:c9:5e:6f:74:71:a7:5c:6c:76:12:b4:4d:
c3:9e:29:04:ea:e5:bb:ac:13:1a:ff:9b:c6:57:14:
16:f0:74:b2:57:be:3b:23:4c:b6:55:c6:66:64:bf:
50:0b:c7:d5:90:71:53:17:8a:1d:a3:07:31:9f:9a:
66:76:aa:ef:8f:05:a3:65:2d:48:59:ff:86:cd:f8:
27:db:cb:50:90:2d:30:5d:29:3f:8c:ec:52:27:2d:
13:ca:6d:e8:94:8d:4b:19:2c:66:c7:fc:dd:42:ff:
ef:0c:24:a2:c8:db:a4:e9:c8:68:04:e5:37:e6:84:
5c:a2:82:75:b2:8c:05:4d:a4:7c:ca:c0:4d:1e:f9:
7f:f0:e0:bb:d9:dc:eb:62:01:bd:45:98:21:2e:d0:
45:75:62:f1:a1:9f:bf:ba:d1:14:5d:ba:7a:d2:99:
80:e9:7e:99:17:dc:de:5f:fa:05:01:0f:27:b5:bb:
39:9b:4a:68:e2:46:fc:00:49:aa:ea:ae:0d:e6:44:
d2:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4E:30:7A:19:C6:6D:79:D4:FB:42:98:2D:39:5F:39:04:F9:7F:E9
X509v3 Authority Key Identifier:
keyid:C0:F9:25:71:10:89:58:78:6B:65:FF:A2:41:B1:F1:1F:6D:05:8B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wPklcRCJWHhrZf-iQbHxH20Fi1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/zU4wehnGbXnU-0KYLTlfOQT5f-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/wPklcRCJWHhrZf-iQbHxH20Fi1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.72.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:c7:86:3d:90:1f:76:74:48:da:4a:9f:70:76:98:75:b9:8d:
b1:30:a3:42:ad:1a:9e:1b:a7:97:80:68:2a:a3:01:ab:e4:49:
40:b2:0b:89:4d:2d:de:8c:ef:ac:52:29:da:f3:71:f5:2d:c8:
3d:bd:79:29:24:cc:9b:ec:dd:b9:ac:c8:88:d9:90:d5:88:91:
c4:01:9c:05:ce:be:b7:8e:7f:e2:ac:38:d4:c2:54:bf:92:0c:
bd:74:09:3e:05:86:29:5b:59:22:30:bc:14:2d:00:fb:ef:d7:
79:15:27:dd:c4:1f:21:db:27:4c:af:93:d9:a7:f6:8a:2d:f4:
7a:7c:35:4e:b4:73:33:3e:5e:d0:8d:ed:06:3a:69:f0:cf:82:
c2:1e:27:e8:79:7a:10:57:4a:a6:4d:88:42:d0:ff:1d:e3:bb:
2b:98:2c:72:28:d8:49:ac:e0:3b:66:02:53:c1:21:6b:11:dc:
e9:a2:32:69:8d:c8:ed:8f:37:77:87:5f:5f:b1:fb:9c:bc:2b:
92:55:ba:66:83:63:71:9f:33:4e:f1:37:03:f1:fc:8a:39:5c:
a8:7d:5a:8e:05:ff:a8:70:13:ee:c1:39:6f:61:d4:71:7d:cd:
3e:23:3a:38:31:e2:59:b7:9d:ff:16:a3:a2:ac:8d:2e:a0:3e:
c1:54:c2:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:52 2024 by rpki-client on console-ams.rpki-client.org