Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/tyyLOOsaj7PKcfl_nZ_b_NHVgU4.roa
File: tyyLOOsaj7PKcfl_nZ_b_NHVgU4.roa (raw, json)
Hash identifier: g4Kbvxs6BZQbJOCuymY3Xsbl8hzdphce2nQmfRUqtw4=
Subject key identifier: B7:2C:8B:38:EB:1A:8F:B3:CA:71:F9:7F:9D:9F:DB:FC:D1:D5:81:4E
Certificate issuer: /CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Certificate serial: 0189AABAF6FF491082308DE5ED61F9895E25
Authority key identifier: DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/tyyLOOsaj7PKcfl_nZ_b_NHVgU4.roa
Signing time: Mon 31 Jul 2023 06:55:26 +0000
ROA not before: Mon 31 Jul 2023 06:55:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212573
IP address blocks: 185.52.119.0/24 maxlen: 24
2a00:dd00::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 31 Jul 2023 10:57:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:aa:ba:f6:ff:49:10:82:30:8d:e5:ed:61:f9:89:5e:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc02b18f588a50b9274fe3469ff8bd4a1649d74d
Validity
Not Before: Jul 31 06:55:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b72c8b38eb1a8fb3ca71f97f9d9fdbfcd1d5814e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:49:03:2a:8e:1b:92:e2:41:cb:14:0b:1c:e9:
26:7f:3d:61:43:5e:27:a2:59:b0:00:13:b7:17:fd:
57:78:4a:de:e8:97:56:22:56:9d:2f:f5:42:99:38:
90:51:2d:fd:6f:62:0f:be:14:d3:80:9d:9d:cd:ed:
d4:8b:eb:74:85:69:ff:23:5f:58:35:3f:d4:96:af:
91:37:2c:a2:eb:d2:49:eb:d5:5b:4a:7c:c2:b2:b2:
e1:43:bd:de:36:31:f5:2d:44:d7:66:ac:28:12:24:
27:94:6f:0c:15:d8:6f:f0:e1:f7:06:ce:e7:b6:41:
ac:8c:5b:9e:9d:ae:f2:d4:54:fc:86:ba:15:0a:63:
a8:85:93:04:2d:4c:99:53:8f:df:c9:38:db:d5:49:
ff:1a:15:c5:a4:ef:93:f5:35:ba:36:e2:08:b3:93:
78:be:c2:9c:87:47:ea:01:d7:c0:52:ad:6f:64:a0:
75:f6:d4:fa:c3:70:78:b1:95:e9:05:ef:3b:85:33:
44:57:d7:16:68:f5:60:00:c9:a8:34:11:66:2e:3f:
18:3c:d0:94:45:da:59:ea:98:ab:92:94:dc:39:3b:
2c:a2:71:05:f9:a8:74:58:59:68:82:47:e2:6b:ca:
81:bc:9b:dc:32:e2:d1:7a:53:96:04:81:25:64:ff:
cc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2C:8B:38:EB:1A:8F:B3:CA:71:F9:7F:9D:9F:DB:FC:D1:D5:81:4E
X509v3 Authority Key Identifier:
keyid:DC:02:B1:8F:58:8A:50:B9:27:4F:E3:46:9F:F8:BD:4A:16:49:D7:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3AKxj1iKULknT-NGn_i9ShZJ100.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/tyyLOOsaj7PKcfl_nZ_b_NHVgU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c861c8-c89a-4043-a02d-664f04d2a68d/1/3AKxj1iKULknT-NGn_i9ShZJ100.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.52.119.0/24
IPv6:
2a00:dd00::/32
Signature Algorithm: sha256WithRSAEncryption
42:90:22:bf:e1:d8:7e:76:42:cb:f8:fc:ea:b9:44:aa:57:f4:
68:99:ad:c3:d1:9b:22:f3:4c:1a:dc:de:50:32:60:7c:ad:65:
6c:b4:b8:0b:eb:25:47:2b:4f:d3:2e:e1:2a:aa:2b:3e:f2:77:
7b:c5:66:3f:9e:d2:68:b1:f7:82:cf:5b:20:fc:b7:fa:48:76:
e4:df:a6:45:f3:51:00:bc:96:ef:0b:0b:32:68:86:50:6b:53:
07:f8:11:c9:54:43:31:40:4c:40:89:c7:8c:5d:72:01:04:26:
ee:51:f0:f8:b9:2c:61:05:21:c8:a3:f1:72:43:c3:72:fb:48:
14:04:2f:cd:36:23:17:ef:2b:11:fe:fd:35:c3:12:60:16:87:
b9:7b:ca:61:5b:fa:c7:10:84:e2:ca:d7:96:d9:29:da:52:4b:
25:af:a8:e7:bf:3d:6a:6b:73:f3:d3:2a:ac:66:da:1c:95:74:
6f:61:4c:0f:69:ee:99:cd:49:9b:01:79:d1:16:31:0d:82:b2:
14:15:e5:13:a3:ca:69:6f:2b:b4:40:5f:48:90:69:d5:63:7a:
02:87:70:37:e8:e1:21:cb:e9:f2:62:48:0e:22:d4:3f:be:bc:
aa:52:3a:66:88:a1:b5:43:cf:5e:1e:1c:a3:55:4d:2c:40:5a:
c6:e3:b4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:42 2024 by rpki-client on console-ams.rpki-client.org