Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/dYFrv6HSC8gBcEwavADQpL_VjqQ.roa
File: dYFrv6HSC8gBcEwavADQpL_VjqQ.roa (raw, json)
Hash identifier: R5U4bb0BAOiaOgXpBCRGSbUfG9j7HDMuRnUmiz42tlk=
Subject key identifier: 75:81:6B:BF:A1:D2:0B:C8:01:70:4C:1A:BC:00:D0:A4:BF:D5:8E:A4
Certificate issuer: /CN=86ee201c65d655ee9cfe251f951ea91bba154567
Certificate serial: 0185711E353FE976BCEA74CD4AC10C255213
Authority key identifier: 86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/dYFrv6HSC8gBcEwavADQpL_VjqQ.roa
Signing time: Mon 02 Jan 2023 06:14:43 +0000
ROA not before: Mon 02 Jan 2023 06:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8972
IP address blocks: 185.201.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Jun 2023 17:09:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:35:3f:e9:76:bc:ea:74:cd:4a:c1:0c:25:52:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86ee201c65d655ee9cfe251f951ea91bba154567
Validity
Not Before: Jan 2 06:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75816bbfa1d20bc801704c1abc00d0a4bfd58ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:16:46:42:d3:e3:e6:49:a9:bd:3e:2e:68:58:
bd:e9:90:aa:71:3e:d1:5c:70:3e:7b:91:30:42:ea:
09:42:ea:a0:cf:11:98:8c:3d:bf:ca:41:22:3c:5e:
ab:4b:12:48:69:dc:34:4b:d3:aa:58:ac:36:71:fe:
13:bb:ee:1c:7a:5e:30:0b:fb:b3:56:d0:85:52:cd:
e0:bc:e4:a0:c8:85:c3:62:61:36:f1:77:6d:b0:bb:
16:49:a2:4a:51:68:dd:e5:82:97:26:a3:ad:29:b5:
a8:06:80:0b:41:da:37:fc:02:a1:95:d6:e6:01:c7:
34:11:f5:11:46:66:d4:27:31:0b:9c:52:fd:f8:99:
c8:3b:e7:94:9c:d0:ec:db:90:2a:6a:ff:ea:61:e2:
db:1f:de:64:b7:fe:15:95:88:15:7e:a3:f1:3d:6e:
93:d2:2f:f8:f9:61:5d:af:bc:8a:c0:7f:00:8e:cc:
c5:6b:8d:fc:0c:78:05:de:cb:06:2d:9e:d4:42:73:
60:d7:74:7c:9d:13:c2:fb:fa:b5:8c:95:89:a8:8a:
9c:9d:b8:ad:0d:a1:90:a1:d8:ad:16:5a:14:5a:6d:
46:ab:a4:a2:13:47:bf:f7:76:4b:14:62:db:99:58:
0f:fd:36:cc:e6:2e:27:e4:12:7b:b2:32:7f:05:d9:
1d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:81:6B:BF:A1:D2:0B:C8:01:70:4C:1A:BC:00:D0:A4:BF:D5:8E:A4
X509v3 Authority Key Identifier:
keyid:86:EE:20:1C:65:D6:55:EE:9C:FE:25:1F:95:1E:A9:1B:BA:15:45:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu4gHGXWVe6c_iUflR6pG7oVRWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/dYFrv6HSC8gBcEwavADQpL_VjqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/13a735-3b1c-4d9c-8cfa-a8ca8e4c7e77/1/hu4gHGXWVe6c_iUflR6pG7oVRWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.16.0/24
Signature Algorithm: sha256WithRSAEncryption
58:27:7e:2b:07:85:8a:63:1c:cf:a6:27:89:61:b2:3d:8c:2e:
aa:0d:da:b9:ff:29:f1:f2:ea:75:0f:d2:ab:7e:9b:d4:a3:6a:
4f:8f:74:c1:e8:52:ad:0c:31:3e:b9:3e:aa:2d:75:26:16:64:
b6:eb:a8:13:96:a1:4a:38:fa:12:27:6d:69:b3:aa:df:24:1c:
dc:48:92:d0:72:b6:89:38:1e:ee:b8:89:ec:1a:f3:50:99:8c:
27:12:7c:e7:3b:53:3e:38:26:d9:4c:1f:d1:fc:1b:91:a3:c2:
d2:1b:9b:47:b1:d9:b2:42:fa:d7:47:a2:f7:5f:d0:f8:c8:0d:
d7:5f:cd:8e:a1:96:f1:c8:88:df:23:6d:b3:be:f7:e9:01:71:
0c:1f:26:c8:cc:1a:50:6a:a1:ab:ba:fa:4f:3c:87:c4:d9:ae:
10:1c:e4:66:77:52:a8:28:17:67:4e:61:28:b9:91:95:c2:c4:
31:92:36:98:89:23:40:6c:2f:e4:3b:61:bb:60:df:38:18:88:
50:09:ae:de:1a:77:88:84:9a:56:1f:b9:05:49:2d:f5:77:11:
d4:c0:91:b8:0e:c3:49:a3:ca:8b:2c:bd:2d:25:65:12:14:a2:
c7:aa:e0:7a:0a:d4:c5:5b:13:b3:6a:c5:87:b8:dc:ae:ae:57:
6b:6f:f3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:32 2024 by rpki-client on console-ams.rpki-client.org