Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/1IZWUK2Jdn_6uU0CxfgkyWxyjSg.roa
File: 1IZWUK2Jdn_6uU0CxfgkyWxyjSg.roa (raw, json)
Hash identifier: CzodTrfyc2PVuISDQWkLQ8UzGbsfhL8wTNhfyr+/gro=
Subject key identifier: D4:86:56:50:AD:89:76:7F:FA:B9:4D:02:C5:F8:24:C9:6C:72:8D:28
Certificate issuer: /CN=59602e4b08594c5caffbeb50d1e0a9d470eb92e5
Certificate serial: 01856F0248A9E3E9058DF1790051825B5DFF
Authority key identifier: 59:60:2E:4B:08:59:4C:5C:AF:FB:EB:50:D1:E0:A9:D4:70:EB:92:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WWAuSwhZTFyv--tQ0eCp1HDrkuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/1IZWUK2Jdn_6uU0CxfgkyWxyjSg.roa
Signing time: Sun 01 Jan 2023 20:24:58 +0000
ROA not before: Sun 01 Jan 2023 20:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56923
IP address blocks: 185.200.16.0/22 maxlen: 22
185.200.17.0/24 maxlen: 24
185.200.16.0/24 maxlen: 24
185.200.18.0/24 maxlen: 24
185.200.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:48:a9:e3:e9:05:8d:f1:79:00:51:82:5b:5d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59602e4b08594c5caffbeb50d1e0a9d470eb92e5
Validity
Not Before: Jan 1 20:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4865650ad89767ffab94d02c5f824c96c728d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:45:1c:b0:84:93:b1:a7:39:c8:24:a9:34:c4:
db:d6:42:34:04:dd:6c:39:28:4a:e6:2a:4b:8c:b0:
21:c7:18:ed:5f:c4:fa:fc:b3:7f:e2:b3:1b:68:aa:
37:15:f2:93:6e:b0:ae:4c:04:a9:ac:b5:2e:1d:fc:
7f:58:6c:91:98:79:81:47:a6:31:ab:30:04:ee:d8:
76:51:8e:5c:6b:fa:67:85:27:2e:44:70:e3:fb:d3:
7a:b6:f7:78:5f:ef:c6:bf:0b:f8:a5:28:eb:97:55:
29:3c:e7:6e:03:86:75:d1:c4:95:5c:21:9d:2c:5a:
51:d5:1a:0e:49:d4:44:e5:e7:19:c9:be:1c:71:f8:
67:ed:c7:75:52:08:5b:8a:3a:0a:ef:14:60:57:08:
f6:21:33:57:7d:b8:4a:5d:23:1b:06:eb:f4:69:bc:
d9:5e:8c:3d:ee:e2:c3:b3:8f:fd:a7:e8:34:af:8c:
14:9b:a9:b9:d5:65:30:72:9c:53:5f:08:44:c8:6c:
bd:26:5b:77:15:d5:c8:77:80:3f:6e:2f:5a:e4:9c:
16:c3:5e:f4:d3:18:ae:02:55:8a:64:40:38:d7:16:
b0:74:8b:93:12:54:d6:a8:a7:18:32:c2:4c:b7:17:
0d:e1:fa:83:d9:d3:6f:55:b0:e6:d3:ea:f3:08:80:
d5:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:86:56:50:AD:89:76:7F:FA:B9:4D:02:C5:F8:24:C9:6C:72:8D:28
X509v3 Authority Key Identifier:
keyid:59:60:2E:4B:08:59:4C:5C:AF:FB:EB:50:D1:E0:A9:D4:70:EB:92:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WWAuSwhZTFyv--tQ0eCp1HDrkuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/1IZWUK2Jdn_6uU0CxfgkyWxyjSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/27911b-064f-4d62-ba1c-e6626af759b7/1/WWAuSwhZTFyv--tQ0eCp1HDrkuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.16.0/22
Signature Algorithm: sha256WithRSAEncryption
17:7f:8b:6d:0f:d1:fd:9e:65:19:6c:f5:11:76:85:1a:2e:86:
60:1e:f7:d4:a7:c7:e8:9c:92:a3:db:4b:11:83:23:9f:c7:2d:
f6:6c:8a:6d:74:2d:de:95:e1:71:01:44:33:45:f5:d7:25:7a:
29:b0:18:5f:16:f0:c5:63:16:50:2e:f2:c9:74:ef:3a:23:45:
8d:ff:26:97:d9:b2:d1:55:51:12:35:c1:18:3f:de:ed:06:68:
be:27:f2:ed:09:6e:ef:63:48:25:92:e8:64:37:50:96:50:33:
b4:0c:25:dc:52:14:89:a7:e9:0f:40:34:b8:64:75:43:d0:55:
95:9d:78:0d:a7:3b:c9:6a:61:78:f8:1c:6a:c7:55:44:9e:6a:
0b:2c:2f:a0:9c:29:b8:cb:70:e2:96:de:3c:ec:41:41:83:ff:
e7:20:bd:20:45:2d:63:8e:12:19:e1:be:47:fe:2b:94:ae:44:
ff:50:f4:99:ba:24:aa:be:53:24:21:35:3d:2a:5e:89:0e:f0:
46:b8:71:89:c4:ce:31:0b:bf:87:66:3f:7c:dd:bf:c2:b9:28:
6d:21:be:a9:63:2b:d0:4e:c0:e7:4e:42:f2:3d:a7:44:e5:f9:
94:ef:13:ba:3c:a9:6d:d8:97:54:0f:46:01:db:6d:39:de:01:
9d:a8:aa:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:57 2024 by rpki-client on console-fra.rpki-client.org