Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/TAafH5_QBEW0Qc1fp9GNmJhsvws.roa
File: TAafH5_QBEW0Qc1fp9GNmJhsvws.roa (raw, json)
Hash identifier: 7NDmbQEDRJiDNCu13HNxwEzO4ZsxUtMJ96eUvy1FsUc=
Subject key identifier: 4C:06:9F:1F:9F:D0:04:45:B4:41:CD:5F:A7:D1:8D:98:98:6C:BF:0B
Certificate issuer: /CN=ad9ef3c5b03ffc56dd30fc1d060d1588f264b2b3
Certificate serial: 018843FBA25ED01D4E326626E8772D77A29F
Authority key identifier: AD:9E:F3:C5:B0:3F:FC:56:DD:30:FC:1D:06:0D:15:88:F2:64:B2:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rZ7zxbA__FbdMPwdBg0ViPJksrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/TAafH5_QBEW0Qc1fp9GNmJhsvws.roa
Signing time: Mon 22 May 2023 15:02:24 +0000
ROA not before: Mon 22 May 2023 15:02:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.137.157.0/24 maxlen: 28
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:43:fb:a2:5e:d0:1d:4e:32:66:26:e8:77:2d:77:a2:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad9ef3c5b03ffc56dd30fc1d060d1588f264b2b3
Validity
Not Before: May 22 15:02:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4c069f1f9fd00445b441cd5fa7d18d98986cbf0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:53:4a:80:17:cb:93:3e:58:1e:0f:95:7a:b0:
17:1f:5e:f1:3c:75:bb:0f:fa:65:d6:78:b5:b9:6c:
4c:5a:e8:0c:13:55:12:af:68:af:de:52:a6:db:7e:
43:25:8e:6b:42:8e:aa:87:64:77:f8:42:8e:20:e6:
14:39:88:c3:d2:2f:5a:ca:9f:3a:01:25:79:82:07:
85:ab:a0:f5:ec:51:1e:21:66:05:2a:b3:07:1b:a8:
b7:70:0c:20:29:16:d2:2b:78:fe:77:28:3b:fc:82:
82:19:42:73:0a:1c:4f:ec:e7:b8:bb:c9:10:9f:19:
7e:5c:76:61:0f:7d:6b:12:0a:85:b8:76:b6:e2:75:
c1:2b:0d:1e:31:7d:f3:11:0c:ab:ba:f1:ae:0a:4b:
a5:c6:7d:63:8a:24:a8:cf:51:79:7e:ec:50:4e:9e:
3a:20:be:d5:04:21:e8:c4:65:8a:72:ea:52:dc:f4:
2e:e4:bc:e6:29:ad:cc:8f:40:27:10:db:16:ce:47:
a9:bf:7c:04:a2:b0:ca:8d:61:d3:cf:db:98:7f:6b:
0d:bc:20:c1:20:7f:82:38:b0:72:c7:ac:9f:2f:14:
ac:7b:c2:6d:4d:5c:98:14:55:74:ef:7f:df:16:1f:
3d:8a:80:6d:af:81:3b:a1:92:6b:41:46:27:8a:1e:
c1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:06:9F:1F:9F:D0:04:45:B4:41:CD:5F:A7:D1:8D:98:98:6C:BF:0B
X509v3 Authority Key Identifier:
keyid:AD:9E:F3:C5:B0:3F:FC:56:DD:30:FC:1D:06:0D:15:88:F2:64:B2:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rZ7zxbA__FbdMPwdBg0ViPJksrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/TAafH5_QBEW0Qc1fp9GNmJhsvws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/725a6f-0f29-492d-b231-9771b268f0ef/1/rZ7zxbA__FbdMPwdBg0ViPJksrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.157.0/24
Signature Algorithm: sha256WithRSAEncryption
50:dc:b1:7a:8e:fa:97:2f:17:37:b9:4f:cb:ba:dc:2c:64:5a:
7f:56:92:11:54:3b:81:35:4e:af:68:ba:3a:99:21:d2:18:7e:
29:13:f9:78:33:3c:97:c4:1c:47:8d:ed:24:56:ed:a4:91:3c:
17:1b:7f:49:e3:04:f6:3c:a2:e3:17:e6:08:00:2c:51:3c:e3:
c4:11:a7:0c:f0:84:37:cb:4b:b6:ef:0b:46:89:79:8e:e0:5a:
23:c8:23:44:16:1f:3e:f1:61:b5:a6:f7:22:0d:fc:fd:a9:09:
67:76:c4:c4:98:ac:b1:d1:1c:3d:3a:d9:a0:27:38:f5:b8:2c:
37:c5:46:07:82:7f:6f:28:3d:c8:c1:47:27:39:aa:df:df:ee:
99:e6:79:5a:2b:0c:bd:eb:6f:5a:91:68:e4:9b:5b:fd:de:98:
20:47:65:3e:0c:fe:87:ac:48:e1:10:db:67:4d:a8:48:3f:bd:
ea:86:81:19:f1:21:0f:d1:12:54:2b:e1:ad:b6:2a:f6:61:c0:
98:ba:54:1f:4b:9f:1c:57:93:30:18:5f:0f:fc:bd:85:c3:ba:
5a:33:fd:99:95:7e:20:fb:bd:c2:13:e2:dd:2e:79:61:4b:4d:
f3:84:ce:19:74:e8:44:9d:c2:c7:5d:5e:02:19:cf:b8:9c:b9:
98:ba:49:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:20 2024 by rpki-client on console-fra.rpki-client.org