Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/DhQlGoFwljFws5D0hHEAFBk7GrA.roa
File: DhQlGoFwljFws5D0hHEAFBk7GrA.roa (raw, json)
Hash identifier: r9sQzITxR/JokDGLdEG3icam2a3dnbFmx5iwdshhaEg=
Subject key identifier: 0E:14:25:1A:81:70:96:31:70:B3:90:F4:84:71:00:14:19:3B:1A:B0
Certificate issuer: /CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Certificate serial: 018CC726B5B5E5A3C206467E61547EEA22B4
Authority key identifier: 48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/DhQlGoFwljFws5D0hHEAFBk7GrA.roa
Signing time: Mon 01 Jan 2024 22:30:51 +0000
ROA not before: Mon 01 Jan 2024 22:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16235
IP address blocks: 185.186.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 09:24:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:b5:b5:e5:a3:c2:06:46:7e:61:54:7e:ea:22:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4801a5b816158f07a8ca8acb37e97e2f20b06911
Validity
Not Before: Jan 1 22:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0e14251a8170963170b390f484710014193b1ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d0:9d:67:d8:bc:4e:24:41:fa:e1:d8:6c:e9:
dd:e4:c1:9e:da:77:24:2c:0b:b2:a5:c0:1c:b1:d5:
98:03:12:c3:61:f8:ec:17:26:ce:bd:60:a9:49:11:
3e:af:b1:82:79:e1:c2:76:82:0c:af:7a:69:3a:c1:
29:3b:8b:98:d8:0e:90:76:79:e7:ad:67:46:fb:b9:
9d:91:be:04:a4:6f:d8:43:01:f0:fe:b7:d0:7a:87:
2a:91:ab:c0:71:13:57:5e:f0:22:3e:31:22:28:5f:
80:46:2d:78:a2:01:17:c7:14:33:85:f8:2f:34:83:
fa:a1:d8:a9:07:f3:fa:e6:b4:3f:50:c1:84:fa:90:
06:12:fc:73:95:14:9f:a8:db:0a:ed:38:27:3d:71:
46:53:04:be:43:5f:4f:10:25:5e:b3:11:d9:7a:f8:
97:3f:31:01:20:df:d3:ee:3a:97:be:aa:1f:2b:46:
28:57:f0:90:65:8c:2d:ee:97:96:89:b2:4d:e4:09:
eb:4a:a3:5d:5c:1c:9c:79:31:9a:dc:1d:2f:09:09:
8c:f2:75:43:ec:66:5a:81:5e:a0:fb:0e:a8:cf:b8:
83:ba:a3:d0:4f:3e:3f:b4:98:23:33:58:6e:0c:17:
a7:6f:4f:35:46:9e:7a:29:c7:dc:87:b1:1e:b6:60:
67:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:14:25:1A:81:70:96:31:70:B3:90:F4:84:71:00:14:19:3B:1A:B0
X509v3 Authority Key Identifier:
keyid:48:01:A5:B8:16:15:8F:07:A8:CA:8A:CB:37:E9:7E:2F:20:B0:69:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAGluBYVjweoyorLN-l-LyCwaRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/DhQlGoFwljFws5D0hHEAFBk7GrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/7090a9-feed-4ea1-8459-ee810b83adcd/1/SAGluBYVjweoyorLN-l-LyCwaRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.241.0/24
Signature Algorithm: sha256WithRSAEncryption
28:45:2c:29:f9:37:cd:5c:1e:23:f0:8c:29:5f:96:66:10:60:
2f:9f:74:76:7e:89:e2:ff:2e:ed:16:76:4b:9e:f2:46:25:c6:
75:53:c3:cf:99:d2:2d:31:ac:fa:c7:89:5e:d5:81:fa:5a:9b:
dc:44:15:fd:a1:56:60:9d:0a:2d:da:36:b3:4a:ac:52:e8:f2:
9c:10:e3:40:ec:68:f0:45:4f:74:cf:94:81:c7:9e:a2:f2:89:
86:67:9c:d1:cc:fb:bb:e4:cc:c1:f7:60:9b:03:c9:ba:9e:9a:
bc:dd:bf:a9:04:cf:a6:18:ef:51:c2:77:b9:17:ef:8f:58:54:
39:33:f4:39:7f:da:fd:d4:8b:41:2e:72:f5:6c:04:5b:de:0f:
ea:62:bd:51:e2:aa:ea:0c:5c:ff:66:8c:52:56:18:0c:0c:d3:
13:8b:e5:d4:36:a5:06:91:1c:e9:92:07:53:0f:39:c2:26:72:
fd:0f:96:d1:05:f9:9e:3f:70:e7:0e:3b:de:ae:8f:a0:26:b0:
4b:6a:97:17:22:7d:7c:ff:f4:7f:8e:51:14:41:5b:03:a2:d0:
56:66:2e:b2:75:1f:80:b9:69:63:b4:a9:cf:71:be:9b:c1:f0:
52:d0:0a:93:5e:b7:3c:de:19:e3:b5:71:1a:47:2b:b6:6f:b1:
26:15:37:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:29 2024 by rpki-client on console-fra.rpki-client.org