Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/P1U7WQmrZ3XqFgZALFttldg59b0.roa
File: P1U7WQmrZ3XqFgZALFttldg59b0.roa (raw, json)
Hash identifier: UyU4fbb/UjVykevDluSN3LLLaxIZ9sDHL7g5eqJ+DF0=
Subject key identifier: 3F:55:3B:59:09:AB:67:75:EA:16:06:40:2C:5B:6D:95:D8:39:F5:BD
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018CC5DCBC9F719A7AEC8BB92EA2BA417878
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/P1U7WQmrZ3XqFgZALFttldg59b0.roa
Signing time: Mon 01 Jan 2024 16:30:26 +0000
ROA not before: Mon 01 Jan 2024 16:30:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41745
IP address blocks: 185.65.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 05:37:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:bc:9f:71:9a:7a:ec:8b:b9:2e:a2:ba:41:78:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 16:30:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f553b5909ab6775ea1606402c5b6d95d839f5bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:98:e8:ca:74:7c:46:d5:6e:28:78:22:bc:a3:
91:59:41:50:e2:02:6e:fd:f7:f8:bb:5d:a5:dd:0d:
67:ec:86:f8:cd:50:6a:14:ac:c8:cf:33:25:8e:28:
6d:88:aa:68:3e:e7:c0:00:8d:8e:d6:66:a1:b6:9d:
71:9c:75:1c:04:b8:8a:34:e7:87:a4:19:de:be:d3:
2f:11:76:5e:59:33:05:94:2f:29:19:89:49:da:40:
d9:96:0e:82:3f:07:c2:74:ef:d2:d2:83:01:53:6c:
6d:f8:f9:6b:b6:1f:e7:54:ad:3e:97:8e:0c:a9:24:
ee:b9:95:95:2b:25:59:2d:bc:23:fd:f1:37:e1:40:
ca:83:77:fa:7d:91:a5:df:33:c6:c1:29:36:6c:24:
d0:58:e5:66:39:48:7a:ac:1b:26:ec:69:f2:1e:b5:
3d:f5:f1:f9:f0:75:86:4f:f4:93:e8:62:1c:52:9f:
0c:05:5a:c1:e3:dd:25:1e:89:c7:7c:ef:28:07:93:
68:56:1e:dd:09:e9:29:b4:e1:e6:7f:1d:e3:4f:8e:
38:33:6a:ba:0a:b7:7d:23:09:ce:fd:7d:2e:58:64:
31:68:d0:ae:c5:f7:4b:d7:b8:a3:15:25:80:34:f1:
50:00:55:8d:1c:3a:f7:79:4a:fd:53:13:00:f6:f5:
5f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:55:3B:59:09:AB:67:75:EA:16:06:40:2C:5B:6D:95:D8:39:F5:BD
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/P1U7WQmrZ3XqFgZALFttldg59b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.202.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:58:b4:27:27:d0:51:0b:d6:51:89:e5:bd:d4:a7:80:45:5f:
cf:05:ca:13:ca:99:af:b6:d3:e3:07:bc:d0:e2:c6:2c:7f:ad:
8f:da:89:b8:d2:2e:62:6b:2b:9e:a1:13:41:a3:a3:17:5f:9f:
01:11:ad:54:8d:76:69:ce:23:71:82:b7:dd:c7:ab:76:33:a1:
ea:08:e8:c4:b1:d1:5b:e2:00:3a:11:98:d6:bd:a7:87:db:f2:
31:88:71:04:fe:e9:a8:98:40:c6:68:ad:d8:07:5e:de:5f:27:
be:d0:81:2c:98:8c:d3:8c:37:df:87:ec:0d:af:0d:b5:3f:9d:
3b:52:85:f3:da:90:ed:9b:07:71:59:f8:0c:3e:b0:f8:e5:41:
db:24:cd:f2:b6:a1:89:8f:04:a5:cb:cb:e5:ec:28:bb:c9:95:
11:44:2e:11:2e:a7:4d:18:66:b6:09:05:30:71:96:e8:fd:9d:
38:3e:2a:cb:a2:a0:01:41:b5:df:04:07:94:89:50:40:1e:e3:
41:ad:c8:d6:da:ca:a2:79:8e:26:aa:9f:43:2f:33:03:b7:68:
b6:f2:69:31:9e:3b:c6:fb:92:eb:95:57:36:73:1b:3e:5a:e5:
4b:29:82:77:c4:d1:36:6c:66:d9:db:6d:5d:5c:ea:d6:f5:95:
67:ab:65:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 09:25:11 2024 by rpki-client on console-ams.rpki-client.org