Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/l3WzCD1PAXazxlmUFOMD2_y_Xpc.roa
File: l3WzCD1PAXazxlmUFOMD2_y_Xpc.roa (raw, json)
Hash identifier: ex89N/xmaRVcvXQSD0uKeEHes6KeEvnmvdPN8MAUCU8=
Subject key identifier: 97:75:B3:08:3D:4F:01:76:B3:C6:59:94:14:E3:03:DB:FC:BF:5E:97
Certificate issuer: /CN=c0f92571108958786b65ffa241b1f11f6d058b56
Certificate serial: 018BD9E7FEB3A4351FF06B49ED2E41F8435C
Authority key identifier: C0:F9:25:71:10:89:58:78:6B:65:FF:A2:41:B1:F1:1F:6D:05:8B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wPklcRCJWHhrZf-iQbHxH20Fi1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/l3WzCD1PAXazxlmUFOMD2_y_Xpc.roa
Signing time: Thu 16 Nov 2023 20:52:21 +0000
ROA not before: Thu 16 Nov 2023 20:52:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.79.75.0/24 maxlen: 24
185.79.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Nov 2023 21:37:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d9:e7:fe:b3:a4:35:1f:f0:6b:49:ed:2e:41:f8:43:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0f92571108958786b65ffa241b1f11f6d058b56
Validity
Not Before: Nov 16 20:52:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9775b3083d4f0176b3c6599414e303dbfcbf5e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f8:39:de:8f:c5:71:92:bc:33:59:36:99:42:
b3:cb:a3:98:83:47:cc:fa:51:bd:44:57:aa:7a:88:
08:ab:30:3c:0b:94:79:7f:7b:45:aa:70:ad:ea:42:
91:6c:ec:4a:c1:7e:73:15:2e:1a:e6:c6:55:70:7a:
4f:2c:2a:5f:f9:2f:93:7e:aa:7e:20:7a:e6:4a:61:
ba:db:3a:57:fd:19:b8:d9:db:b1:b6:1a:58:8c:46:
8a:37:e2:b7:50:98:c3:18:be:f7:b5:46:bf:18:e5:
df:73:17:fd:b4:d5:95:ef:a6:09:3f:fd:60:27:75:
fa:e6:f4:bc:cf:48:f8:a9:c5:63:7c:eb:cc:fc:c7:
b1:ac:f8:21:07:d3:5e:32:91:2d:6f:89:ea:ba:4a:
5f:7d:ce:28:37:e0:52:56:f6:fc:95:8a:c1:f2:94:
cc:32:20:14:bf:e7:f2:0b:71:46:bd:82:ce:73:59:
cb:40:9c:61:4a:62:6d:88:af:6f:ac:c5:4f:ab:32:
b8:c5:d7:9b:ef:ee:b3:0e:dd:53:d6:36:3b:1d:d3:
e2:a7:b0:42:62:1e:1d:dd:a6:9c:5d:b5:9b:4e:a8:
2b:a9:d6:5b:ae:d4:cf:a3:54:22:69:db:9f:cb:ad:
bf:86:76:71:04:6a:76:c1:c2:30:bc:14:ff:97:74:
cf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:75:B3:08:3D:4F:01:76:B3:C6:59:94:14:E3:03:DB:FC:BF:5E:97
X509v3 Authority Key Identifier:
keyid:C0:F9:25:71:10:89:58:78:6B:65:FF:A2:41:B1:F1:1F:6D:05:8B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wPklcRCJWHhrZf-iQbHxH20Fi1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/l3WzCD1PAXazxlmUFOMD2_y_Xpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/bf1ccb-9f32-4f41-8dad-9b2b9ea95535/1/wPklcRCJWHhrZf-iQbHxH20Fi1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.79.72.0/24
185.79.75.0/24
Signature Algorithm: sha256WithRSAEncryption
89:61:fa:44:6a:b7:84:89:da:bc:6f:39:2f:5b:9b:e8:74:95:
42:bc:9f:40:c2:e4:e4:fd:be:e0:c7:d3:37:22:c2:b0:15:62:
47:d5:4f:c6:87:38:97:d0:08:d0:f8:2e:8e:1e:ba:70:48:e8:
b9:20:bf:38:22:07:49:4a:17:30:7c:12:c8:de:f1:b6:b7:94:
9c:6d:2c:15:d2:94:df:5b:32:dd:cc:cf:4e:c9:9c:37:f7:ff:
f8:3b:5d:74:bc:03:f5:4d:62:48:93:39:51:fc:fe:97:fc:ae:
c4:b9:a4:b6:ac:9b:b0:56:1b:31:41:b6:35:29:9b:c1:ae:49:
94:40:10:14:50:57:a8:a5:39:a3:0f:31:69:51:9d:91:7a:63:
4b:90:11:95:be:69:0e:ef:3c:bc:c5:07:0b:00:f5:ea:5f:76:
40:7e:28:cc:4a:b9:83:bb:7c:6a:69:49:a9:8a:21:3c:e3:9d:
22:95:dd:2d:3a:54:5f:25:63:90:5e:1f:e6:05:d2:4b:2b:4f:
ff:1d:bd:46:b7:cb:cf:56:58:88:52:8e:45:76:32:23:41:d9:
67:08:f6:45:a5:95:3c:17:51:fb:69:1d:f3:df:09:ae:c3:73:
de:ce:d5:d7:41:ca:3e:39:16:f7:f0:24:a5:39:8d:98:0e:97:
7c:78:85:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:01 2024 by rpki-client on console-fra.rpki-client.org