Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/1-NsSo0e2Z7NH8Hx9lxJoKMU1hqE.roa
File: 1-NsSo0e2Z7NH8Hx9lxJoKMU1hqE.roa (raw, json)
Hash identifier: 98pTePOGuYvlHYVglTpP7cgG2ukAK2kkSX5wvuP/qCc=
Subject key identifier: F8:DB:12:A3:47:B6:67:B3:47:F0:7C:7D:97:12:68:28:C5:35:86:A1
Certificate issuer: /CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Certificate serial: 018CC8DF6F09ECA503F9BD375CA653EFA51D
Authority key identifier: 5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/1-NsSo0e2Z7NH8Hx9lxJoKMU1hqE.roa
Signing time: Tue 02 Jan 2024 06:32:15 +0000
ROA not before: Tue 02 Jan 2024 06:32:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49581
IP address blocks: 185.200.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 02:09:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:6f:09:ec:a5:03:f9:bd:37:5c:a6:53:ef:a5:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dde4b3b82f209b701ae340cf53b974078f16a9f
Validity
Not Before: Jan 2 06:32:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f8db12a347b667b347f07c7d97126828c53586a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:63:54:d3:10:e3:0a:ff:15:bc:94:d8:a0:08:
f8:0f:da:27:b5:0d:ed:e5:b9:98:3d:7e:24:d0:5d:
a1:91:cd:d6:75:6a:c6:47:a9:40:78:98:c3:74:e0:
eb:b8:3c:f4:ce:15:d3:a5:ec:cf:36:03:05:79:d8:
00:fa:96:aa:40:cd:5d:90:e0:ad:7e:04:9a:1c:89:
a4:69:af:09:6b:de:5a:6f:02:11:1b:b7:0a:fd:c0:
f8:13:5e:4a:2e:5c:84:36:d9:fa:38:27:5a:77:ca:
59:d4:99:11:89:b0:3f:16:97:8b:2b:72:f3:e2:32:
50:68:f3:83:a1:ec:7a:00:02:9c:63:c3:ad:28:32:
4f:c3:c5:61:79:9c:19:2e:a1:40:d6:33:e5:82:74:
d4:25:f0:71:9d:18:31:d7:f3:42:eb:d1:1d:66:1f:
a8:d6:64:24:7e:a7:5c:13:79:61:ba:96:62:06:2c:
f9:fa:93:32:2d:19:3c:ca:4a:f8:1c:44:e1:2c:f9:
8e:f7:5a:f3:94:c5:44:ca:38:a4:eb:49:8e:b6:05:
d2:06:fd:73:65:e5:5a:c3:f8:36:bc:27:c7:77:a2:
3c:1f:9f:36:fe:cf:da:c7:68:36:a8:85:b6:86:6e:
6f:0d:5f:8b:41:06:55:d7:95:82:9d:d7:0d:e6:a3:
8a:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:DB:12:A3:47:B6:67:B3:47:F0:7C:7D:97:12:68:28:C5:35:86:A1
X509v3 Authority Key Identifier:
keyid:5D:DE:4B:3B:82:F2:09:B7:01:AE:34:0C:F5:3B:97:40:78:F1:6A:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xd5LO4LyCbcBrjQM9TuXQHjxap8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/1-NsSo0e2Z7NH8Hx9lxJoKMU1hqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/02bdf0-bf29-4dae-b19b-86a5518e2d52/1/Xd5LO4LyCbcBrjQM9TuXQHjxap8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.244.0/24
Signature Algorithm: sha256WithRSAEncryption
58:48:1b:f7:09:22:26:4a:7e:c4:ef:97:2b:86:1e:9a:c3:40:
30:ca:aa:dc:b3:62:e2:a4:71:7c:22:c8:67:c2:41:1a:e2:6f:
4a:5b:48:5c:a9:09:c2:69:a9:49:5e:c1:20:79:26:43:11:32:
c4:c3:c1:03:26:50:9b:93:e9:75:c7:a9:13:bd:1e:3e:2f:84:
a0:be:01:cf:d6:54:ea:d7:21:ef:79:ae:7f:3d:74:31:33:45:
81:f4:68:2f:15:01:b4:ee:05:dc:13:b4:1f:b2:4a:e9:ea:32:
0e:55:d9:4c:7c:71:a4:2b:33:58:2b:84:8e:8f:45:fa:57:c7:
61:c3:e9:61:df:57:1f:36:b6:da:c3:d4:43:07:fb:37:02:f6:
34:3b:6b:6a:e4:ef:ed:68:48:c6:87:d5:5e:fc:f3:2a:bc:4f:
92:17:a8:26:01:f4:39:25:ed:b1:31:66:d7:e1:70:18:7e:fb:
02:fd:48:08:bb:14:7a:fd:55:37:6d:43:90:86:33:a1:57:f4:
e6:13:25:bc:9f:fc:1b:25:61:c9:dc:82:f8:b4:f6:9d:be:74:
14:36:a7:89:ef:e7:5b:9d:d6:ac:39:7d:71:56:c1:67:b9:0b:
d0:74:0e:1a:9c:75:89:9b:f4:ca:5b:c6:6c:8b:07:a5:5e:b8:
74:5f:37:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:07 2024 by rpki-client on console-fra.rpki-client.org