Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Ap-YZekv3ucicyAtrkFj0F9UgwU.roa
File: Ap-YZekv3ucicyAtrkFj0F9UgwU.roa (raw, json)
Hash identifier: PmT6io067Zq7kZlvqiG97F8tNKyHV6DbvXHcdZ5DZ3E=
Subject key identifier: 02:9F:98:65:E9:2F:DE:E7:22:73:20:2D:AE:41:63:D0:5F:54:83:05
Certificate issuer: /CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Certificate serial: 01856E78DBC82A5831DE48F934BE2D471E3E
Authority key identifier: CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Ap-YZekv3ucicyAtrkFj0F9UgwU.roa
Signing time: Sun 01 Jan 2023 17:54:52 +0000
ROA not before: Sun 01 Jan 2023 17:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204639
IP address blocks: 185.44.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:db:c8:2a:58:31:de:48:f9:34:be:2d:47:1e:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb952f9c339cabd14234d00c84a252d7ec71a2a2
Validity
Not Before: Jan 1 17:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=029f9865e92fdee72273202dae4163d05f548305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:d1:b8:01:59:c7:65:76:c6:c3:b4:c2:1a:49:
e3:56:fd:10:16:ef:7e:44:11:87:eb:7a:3b:bf:35:
5b:d3:b1:02:cc:86:48:7c:5b:e2:1f:ad:f8:1c:78:
d3:fe:4c:d2:c2:bf:05:58:17:95:aa:90:0c:83:6c:
82:0f:21:39:0d:c2:73:6a:a7:67:18:04:a6:33:0c:
bf:23:5d:9d:4f:0a:7e:6c:89:33:da:b7:33:4d:ba:
94:9c:72:0c:72:39:a3:4a:7d:eb:d0:3b:52:1e:ff:
49:48:26:9a:6c:f1:34:22:d5:11:1c:48:37:d1:43:
0c:a9:af:80:44:40:22:44:f6:3a:8a:53:95:89:97:
4c:5b:28:29:32:ce:86:66:f4:c1:77:d3:50:d2:90:
fc:10:34:0f:0c:04:64:dd:7c:62:fb:8b:d3:6a:00:
2c:d2:8a:e1:ff:fc:58:66:30:a8:f1:f6:f8:5c:38:
d5:90:8b:db:6c:53:41:8d:ad:71:85:9f:dd:01:57:
f9:73:38:7d:b5:00:5e:61:1f:ca:dd:5e:d1:81:82:
ff:b6:d8:0d:1e:c7:9c:37:da:d8:b7:8b:90:31:dd:
3d:be:59:73:ba:81:46:b0:0e:96:f3:e0:e8:6b:97:
5b:6a:5b:7e:69:b3:93:c5:7b:4d:26:5f:d2:91:95:
7a:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:9F:98:65:E9:2F:DE:E7:22:73:20:2D:AE:41:63:D0:5F:54:83:05
X509v3 Authority Key Identifier:
keyid:CB:95:2F:9C:33:9C:AB:D1:42:34:D0:0C:84:A2:52:D7:EC:71:A2:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5UvnDOcq9FCNNAMhKJS1-xxoqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/Ap-YZekv3ucicyAtrkFj0F9UgwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/9098fd-7dc3-4e12-b893-fd22df3b57f6/1/y5UvnDOcq9FCNNAMhKJS1-xxoqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.44.118.0/24
Signature Algorithm: sha256WithRSAEncryption
67:8b:14:d2:99:e2:db:d5:95:e7:e6:1c:5e:e3:bf:f0:08:e4:
78:7e:d8:92:f6:7c:05:bf:9f:45:44:fd:09:b5:e5:3a:0b:23:
00:78:bb:6d:62:d2:7e:7e:93:24:90:16:6b:83:92:e4:14:5d:
3c:0d:01:ec:0d:50:39:0c:77:c2:fe:42:84:60:db:49:fd:17:
90:7c:1c:d6:4f:3a:e5:b1:c0:09:0e:09:cc:8a:34:4c:50:b0:
44:eb:6a:9d:7f:e4:48:ef:d3:ef:cc:1c:87:59:70:22:5f:37:
e3:ee:8e:68:43:ac:7b:27:48:16:20:18:fe:81:17:56:9c:dd:
9a:b4:01:1a:15:d9:cf:89:c5:e1:c4:3b:fe:be:4e:75:cb:84:
9b:73:51:97:ee:6b:44:26:25:81:dc:cc:71:4e:22:01:e8:04:
58:f6:b0:d6:52:3a:32:61:fc:cc:89:51:79:48:94:2a:f3:0c:
b6:8e:dc:44:a8:41:c6:80:32:d7:8c:2e:ba:7b:20:45:b0:53:
06:6a:9c:7b:29:d9:1e:f2:a2:de:73:1f:ce:51:d9:00:69:ee:
ea:91:ca:87:d9:fd:94:38:40:d3:60:01:82:8b:91:9f:46:9e:
87:cf:c0:a7:9e:28:8f:2f:ac:16:93:29:9c:21:44:2c:6e:dd:
9c:2c:91:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:35 2024 by rpki-client on console-fra.rpki-client.org