Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/Ma4Shzf7RrQKo0CgNpQW3TPF7Nw.roa
File: Ma4Shzf7RrQKo0CgNpQW3TPF7Nw.roa (raw, json)
Hash identifier: dnBWJwMViM7UBH6X6nX4/6NuFA6C5WTud0gJxMgtJrE=
Subject key identifier: 31:AE:12:87:37:FB:46:B4:0A:A3:40:A0:36:94:16:DD:33:C5:EC:DC
Certificate issuer: /CN=607e5caff4f47b2b8dc81cc36c8e346662639898
Certificate serial: 018B182F50C4C200AA302D5E40C1990034CA
Authority key identifier: 60:7E:5C:AF:F4:F4:7B:2B:8D:C8:1C:C3:6C:8E:34:66:62:63:98:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YH5cr_T0eyuNyBzDbI40ZmJjmJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/Ma4Shzf7RrQKo0CgNpQW3TPF7Nw.roa
Signing time: Tue 10 Oct 2023 06:03:55 +0000
ROA not before: Tue 10 Oct 2023 06:03:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211953
IP address blocks: 185.189.52.0/24 maxlen: 24
185.189.54.0/24 maxlen: 24
185.189.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 10:25:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:2f:50:c4:c2:00:aa:30:2d:5e:40:c1:99:00:34:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607e5caff4f47b2b8dc81cc36c8e346662639898
Validity
Not Before: Oct 10 06:03:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31ae128737fb46b40aa340a0369416dd33c5ecdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e9:dd:a5:74:91:04:68:51:70:3c:97:76:33:
33:56:f5:1c:d2:bd:d0:97:45:53:73:65:93:1d:60:
c4:c3:ad:f4:cf:8b:74:12:2d:80:fd:f9:82:82:b9:
66:2a:30:f7:c1:30:1d:07:92:84:b3:fc:2e:0c:bf:
e6:e1:6f:14:ce:ad:a3:32:7f:22:53:1d:69:a0:ad:
ac:d8:44:9b:9f:e0:cf:db:52:5c:81:6a:d4:c8:93:
e4:d1:db:00:ad:e7:d2:17:85:a7:37:27:44:dd:57:
51:53:77:f7:e2:1e:36:5e:f6:ca:11:b5:4e:9d:a6:
8f:ee:13:e8:6d:af:d3:a4:a8:5f:ae:ba:87:17:41:
d4:74:6e:9c:a8:1a:ba:85:c5:44:7e:6f:79:e2:25:
19:8b:43:7c:46:aa:0b:a6:1d:d0:53:bc:17:b4:96:
df:48:4c:3d:ab:b4:94:f3:80:6c:79:f2:6a:f5:99:
47:ad:0a:c5:0c:4c:1c:e9:a4:f1:7f:9a:68:b5:e3:
65:0a:af:12:89:20:59:c9:65:14:4e:05:1e:6a:59:
5f:57:94:1f:bd:2a:b5:17:85:41:a8:ec:57:60:45:
59:70:03:14:53:79:f3:41:23:3a:35:f5:5f:e8:38:
3c:fd:53:6a:82:d6:d4:45:ce:e5:dc:f3:8a:0e:2c:
2b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AE:12:87:37:FB:46:B4:0A:A3:40:A0:36:94:16:DD:33:C5:EC:DC
X509v3 Authority Key Identifier:
keyid:60:7E:5C:AF:F4:F4:7B:2B:8D:C8:1C:C3:6C:8E:34:66:62:63:98:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YH5cr_T0eyuNyBzDbI40ZmJjmJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/Ma4Shzf7RrQKo0CgNpQW3TPF7Nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7d66de-5f0c-4765-a0f6-67fbf2155e4e/1/YH5cr_T0eyuNyBzDbI40ZmJjmJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.52.0/24
185.189.54.0/23
Signature Algorithm: sha256WithRSAEncryption
48:74:f8:a8:cc:51:fe:ea:8d:a8:b0:6b:c2:5e:8c:85:05:05:
b3:b1:36:4e:bf:61:47:42:a2:3a:6f:03:4e:8d:ab:76:61:6b:
e8:23:c3:df:ec:2f:64:72:cd:80:7c:f1:6e:de:42:49:85:fe:
f1:f6:cb:1a:7e:d6:b5:c1:16:97:86:0e:64:2e:2b:c7:fb:b4:
40:eb:64:ec:65:26:b9:94:5e:e8:ad:80:f6:8b:97:8e:73:3c:
eb:15:35:22:bc:78:02:39:a3:4e:0d:86:e8:0d:22:15:77:82:
27:32:70:d1:da:c5:16:e1:dd:a0:f8:35:b2:b1:60:4a:21:2e:
7c:f4:7d:26:3e:c8:ef:76:62:1d:78:4c:42:2f:4b:7e:2c:57:
a7:a2:34:f9:99:81:46:4d:80:72:5a:c5:57:b3:7e:23:86:1b:
9f:52:c8:21:8c:ca:41:45:f2:40:ce:71:d9:23:3a:d7:83:b7:
2c:ac:cb:42:0e:a1:76:21:41:03:64:a8:3d:0d:79:02:93:eb:
3a:b5:85:62:05:f7:d6:f0:a3:2d:bc:6b:77:86:b6:66:0e:59:
04:50:e6:08:24:3a:37:ab:6d:e1:f6:df:74:13:6e:41:4c:d1:
2a:de:92:f8:90:49:cd:37:b1:21:2c:57:fa:b7:17:e2:2b:62:
e3:42:32:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:07 2024 by rpki-client on console-fra.rpki-client.org