Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/RiWqSI9dSHxKAW8y8z2nO-8WU-c.roa
File: RiWqSI9dSHxKAW8y8z2nO-8WU-c.roa (raw, json)
Hash identifier: S7j5DWM17yjoifmiJtTd32yJjV7EJYfhTV11gDVfioo=
Subject key identifier: 46:25:AA:48:8F:5D:48:7C:4A:01:6F:32:F3:3D:A7:3B:EF:16:53:E7
Certificate issuer: /CN=4cbfd3e72d4a0396f95347336b42678f68c26430
Certificate serial: 018D92A492EB087145D2609149F7762609FA
Authority key identifier: 4C:BF:D3:E7:2D:4A:03:96:F9:53:47:33:6B:42:67:8F:68:C2:64:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/RiWqSI9dSHxKAW8y8z2nO-8WU-c.roa
Signing time: Sat 10 Feb 2024 10:51:15 +0000
ROA not before: Sat 10 Feb 2024 10:51:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210388
IP address blocks: 185.8.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 10:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:92:a4:92:eb:08:71:45:d2:60:91:49:f7:76:26:09:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cbfd3e72d4a0396f95347336b42678f68c26430
Validity
Not Before: Feb 10 10:51:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4625aa488f5d487c4a016f32f33da73bef1653e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:30:f3:5d:76:99:71:58:dc:69:27:51:11:21:
6d:ec:66:b7:b7:6f:67:84:48:c8:25:6e:a7:a4:98:
ce:a6:9e:7e:62:eb:11:8f:54:43:9e:05:f7:cb:ae:
e0:54:e9:b6:3a:be:9a:35:ec:b7:6e:78:51:d3:af:
07:15:a0:78:b1:0e:58:5e:17:dd:b7:7a:c5:3c:a5:
28:f3:df:af:3b:8b:7e:60:db:ea:8a:f0:83:da:2e:
aa:da:f4:0e:ee:a1:e3:d2:a2:79:2e:98:8b:1a:f7:
8f:4b:95:c3:d5:b5:0b:f6:3c:ae:17:91:eb:67:a1:
31:27:c9:71:53:a5:02:ed:fd:e8:09:50:d1:db:1e:
7e:61:5e:b4:b2:36:2d:2e:90:e1:74:dc:b4:ad:0e:
78:64:4d:e9:18:24:fe:00:ee:98:50:95:9a:f6:56:
0a:58:69:21:b5:78:c2:b4:92:6d:c7:34:f2:57:07:
c0:79:b6:b5:ae:3d:57:fe:1c:59:2f:4f:dd:0e:c1:
98:be:e5:b1:7a:7f:fc:0a:7c:e0:02:22:60:50:7e:
e5:20:aa:0b:5b:71:52:69:4b:f1:fe:d2:40:39:58:
54:d2:8f:91:e0:4d:9e:80:22:d9:98:ea:c2:d7:ba:
c4:8f:90:dd:81:0c:98:ab:db:ce:86:86:e0:18:16:
51:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:25:AA:48:8F:5D:48:7C:4A:01:6F:32:F3:3D:A7:3B:EF:16:53:E7
X509v3 Authority Key Identifier:
keyid:4C:BF:D3:E7:2D:4A:03:96:F9:53:47:33:6B:42:67:8F:68:C2:64:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TL_T5y1KA5b5U0cza0Jnj2jCZDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/RiWqSI9dSHxKAW8y8z2nO-8WU-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/b5733b-3891-449b-9950-ff60e218ed41/1/TL_T5y1KA5b5U0cza0Jnj2jCZDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.35.0/24
Signature Algorithm: sha256WithRSAEncryption
75:60:ac:3a:cd:e4:6e:84:ae:d0:69:c3:44:33:33:33:ce:f7:
75:49:30:ba:8a:41:d3:e4:9e:65:2d:d0:fb:7f:bb:4b:aa:d4:
c0:87:98:c8:58:92:af:aa:a1:76:9e:71:da:c4:76:7c:d5:66:
a8:77:f8:27:cb:c6:33:07:01:e1:8b:5b:9d:a5:7f:45:fb:d5:
a4:64:e5:be:dd:a7:38:9c:f7:9e:d0:1a:f7:fe:65:a6:7a:60:
2c:01:bf:a8:00:3f:72:d0:23:96:b3:67:a0:6e:63:b1:04:a2:
43:48:ec:6d:78:0e:0a:8b:a9:07:08:26:f6:53:cf:75:9b:b1:
5c:bf:e4:97:42:68:1d:dd:7d:94:02:02:c4:a2:7e:4c:e0:57:
e6:be:dc:95:1c:ae:5a:ee:a4:9a:75:b7:5f:16:0b:d1:69:d3:
b8:12:78:7f:db:ad:94:24:48:45:17:be:d9:55:e7:f7:f6:06:
53:c0:f8:dc:6b:0b:b6:33:29:c2:42:24:5a:dd:24:15:b6:e4:
3f:3a:7c:b7:6e:5c:73:9e:c2:28:ff:3a:ac:58:f3:4a:42:5e:
99:6a:f9:6c:ad:58:18:fa:1f:0d:c4:af:aa:41:38:19:72:d6:
8f:f2:cd:f8:b9:c4:87:95:6d:35:12:d6:5c:fe:11:f7:a5:c7:
c4:37:b7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:58 2024 by rpki-client on console-ams.rpki-client.org