Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/zWmC932Bvju9rSn2EiDCHer-HQ0.roa
File: zWmC932Bvju9rSn2EiDCHer-HQ0.roa (raw, json)
Hash identifier: 0RaFSaJBU35R1+cho6aUXJEf6VpzDZ+gSU1UYpoCgw4=
Subject key identifier: CD:69:82:F7:7D:81:BE:3B:BD:AD:29:F6:12:20:C2:1D:EA:FE:1D:0D
Certificate issuer: /CN=f1f186e97097c8417d9437d70cfdfc527331b5a8
Certificate serial: 018B4C28FAC9F0369513D46E787CA541BB3E
Authority key identifier: F1:F1:86:E9:70:97:C8:41:7D:94:37:D7:0C:FD:FC:52:73:31:B5:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8fGG6XCXyEF9lDfXDP38UnMxtag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/zWmC932Bvju9rSn2EiDCHer-HQ0.roa
Signing time: Fri 20 Oct 2023 08:17:15 +0000
ROA not before: Fri 20 Oct 2023 08:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28819
IP address blocks: 185.252.22.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 20 Oct 2023 14:13:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:4c:28:fa:c9:f0:36:95:13:d4:6e:78:7c:a5:41:bb:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1f186e97097c8417d9437d70cfdfc527331b5a8
Validity
Not Before: Oct 20 08:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd6982f77d81be3bbdad29f61220c21deafe1d0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6c:d2:74:41:8b:c6:df:a6:3e:e8:36:94:59:
49:ce:24:6f:d5:84:3a:ad:ca:39:eb:3c:70:69:18:
74:01:62:38:f8:2b:dc:26:5c:57:5f:ca:f9:74:f4:
ce:4a:69:c8:52:72:8c:1f:ee:51:df:aa:e1:04:fd:
b2:09:61:3c:0c:bf:8e:da:70:3f:08:b8:5e:71:12:
4f:85:5d:ac:cf:6c:ba:15:f4:1e:c6:d2:88:85:70:
99:85:7f:a0:bd:e3:3e:14:77:ba:fe:08:ad:1a:e4:
d9:07:42:9f:19:8e:de:8b:bb:c2:dd:c7:e0:52:77:
42:e6:c3:2b:f8:24:f1:d2:77:40:7a:7c:1d:f8:15:
84:79:db:09:c9:df:65:3a:70:63:b9:b9:40:f5:a8:
da:3d:dd:c8:7c:a9:55:64:b8:72:c7:28:cb:d0:47:
c4:9a:b8:b8:f7:48:da:c4:6b:bc:e8:06:90:26:88:
4a:d5:88:8a:2f:b5:76:42:0c:f0:45:77:b6:4e:1c:
54:52:cf:ce:94:c9:ac:e4:de:0e:41:8d:b9:d4:2c:
da:e1:f7:3e:05:6d:fc:88:19:67:78:47:ef:1c:6a:
4e:c7:9a:53:e0:bd:45:ab:c0:b5:dc:fa:09:18:52:
dd:ea:83:61:e5:d9:bd:e1:eb:55:4a:21:46:32:19:
cc:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:69:82:F7:7D:81:BE:3B:BD:AD:29:F6:12:20:C2:1D:EA:FE:1D:0D
X509v3 Authority Key Identifier:
keyid:F1:F1:86:E9:70:97:C8:41:7D:94:37:D7:0C:FD:FC:52:73:31:B5:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8fGG6XCXyEF9lDfXDP38UnMxtag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/zWmC932Bvju9rSn2EiDCHer-HQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/5c3b99-b8ef-4ed1-857c-b65cd136262e/1/8fGG6XCXyEF9lDfXDP38UnMxtag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.22.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:5f:09:6e:c4:45:6b:2c:9a:7c:65:f8:f8:77:42:f1:85:8a:
b4:32:20:40:bb:ec:9d:e3:d2:a9:a5:c3:66:a9:cd:72:71:67:
45:f5:1c:87:dd:6b:ac:1e:f5:5a:e5:4f:0f:00:b7:bf:4f:a2:
4c:19:22:8d:09:57:60:bf:dc:eb:ae:4c:28:b1:43:9e:aa:c9:
92:48:d0:02:6c:da:de:a1:b1:75:2b:42:62:90:06:fa:3a:b6:
4b:60:0a:08:c1:50:b5:24:ee:19:6c:5c:21:aa:b5:5c:e5:6c:
ee:32:fe:20:89:4e:f1:f6:89:ca:88:51:69:4f:ff:c5:6e:86:
e6:d3:0e:6c:c8:f4:33:7e:13:bf:e5:02:5b:b9:f9:c5:82:0a:
28:89:2b:f4:6a:df:73:88:01:c5:d6:15:f4:29:d0:88:88:e3:
84:7e:03:b0:d0:97:48:93:26:5d:1b:11:50:50:15:b8:a6:56:
f3:03:68:fc:69:ea:d2:52:ff:d8:27:69:47:30:9f:3e:df:98:
59:64:f8:f7:e3:ce:34:4d:45:a1:ab:95:f6:cd:26:06:cc:34:
a6:16:58:d9:2b:e2:da:f1:0a:e6:62:7d:b6:63:b7:5a:89:f5:
2b:7f:90:bc:ea:61:0f:e3:5c:59:68:12:d2:a5:f2:db:70:96:
5e:a1:76:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:58 2024 by rpki-client on console-ams.rpki-client.org