Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/N_MiQkz_DGgFfUEbvLb8D3QQGh4.roa
File: N_MiQkz_DGgFfUEbvLb8D3QQGh4.roa (raw, json)
Hash identifier: NWqCcp9TS7gGzrjlB9FLevYuH+TcvVcooFAxKVETE7Q=
Subject key identifier: 37:F3:22:42:4C:FF:0C:68:05:7D:41:1B:BC:B6:FC:0F:74:10:1A:1E
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 018570CBF24E93443DBFB2997D808D4B1242
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/N_MiQkz_DGgFfUEbvLb8D3QQGh4.roa
Signing time: Mon 02 Jan 2023 04:44:52 +0000
ROA not before: Mon 02 Jan 2023 04:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208426
IP address blocks: 185.42.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f2:4e:93:44:3d:bf:b2:99:7d:80:8d:4b:12:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Jan 2 04:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37f322424cff0c68057d411bbcb6fc0f74101a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d1:11:d4:83:bb:a4:4d:9c:88:0f:5a:1c:d9:
4e:73:d0:81:fa:42:c9:0c:43:31:76:d2:42:ae:e4:
29:08:ee:7d:e6:42:42:2f:b2:59:af:99:0c:70:5e:
cb:eb:4b:a2:62:d4:d7:55:8e:40:d0:26:15:01:ff:
ce:02:42:a9:7c:69:c1:03:2e:1c:f8:9d:09:09:48:
c0:62:21:8e:c2:c7:87:e7:56:06:d2:56:99:33:78:
04:b0:9d:2e:14:d3:86:cb:a3:78:dc:04:4a:47:71:
c9:6a:53:d9:71:49:8e:89:16:66:7d:47:f7:14:2e:
d7:c8:2c:a6:d1:ba:92:ce:f5:f8:7e:d3:35:68:38:
a4:20:2a:f5:92:51:fe:90:9d:a6:9d:9d:fe:10:4a:
a7:b4:2f:5e:b0:f2:5b:31:bb:d3:69:96:74:e0:da:
03:28:1e:c8:ec:01:93:b0:92:8c:44:27:ae:b1:52:
35:a7:16:7e:52:f7:f7:5d:d0:88:56:f1:2b:02:50:
00:5e:22:1c:42:fe:c8:30:cf:df:56:13:f1:e0:62:
7c:8b:80:9f:c9:35:b1:2f:0a:27:80:6c:06:c2:67:
19:c2:e7:b9:0f:76:33:34:ff:26:3d:6d:d6:8a:83:
4b:e5:07:e9:4c:e6:f6:5d:fe:59:56:59:3b:5b:c8:
84:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:F3:22:42:4C:FF:0C:68:05:7D:41:1B:BC:B6:FC:0F:74:10:1A:1E
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/N_MiQkz_DGgFfUEbvLb8D3QQGh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.187.0/24
Signature Algorithm: sha256WithRSAEncryption
93:0e:d9:cf:4a:32:ee:e0:87:86:8c:4c:b3:1c:df:8a:57:fc:
27:1b:eb:68:17:27:1a:7a:48:99:f9:17:c5:38:93:1b:79:90:
7a:6b:66:a2:47:17:aa:f3:72:56:32:36:9c:c2:16:b2:b5:f3:
5f:ed:29:ab:a8:4c:3b:15:3e:e9:0d:53:c4:2b:a6:1a:94:e6:
c0:20:1a:83:f9:c9:54:90:94:03:cc:2c:1e:c7:05:ef:cf:c0:
cb:79:f6:49:52:d4:32:5c:88:05:03:e4:3e:b5:7b:ce:76:04:
fc:f1:c3:63:6b:ed:12:f5:36:1b:51:ba:28:4e:95:1e:f3:6f:
f8:f7:22:75:37:af:06:28:b0:16:b3:21:c5:b6:d6:fa:68:8b:
44:7c:db:da:ca:65:18:26:68:d4:3b:b3:a5:dd:0b:ec:17:22:
74:d8:6e:04:1b:97:97:fc:a9:bf:5b:db:b9:a6:0f:70:1b:66:
3b:4b:5f:b0:89:0e:b7:31:05:2f:47:4d:ff:17:35:f6:50:2c:
bb:bd:f5:5f:eb:06:98:a6:8a:3b:c9:e2:84:ce:66:a4:ca:c3:
69:fb:50:d6:fd:31:12:5b:77:65:14:65:5b:da:71:b1:89:d0:
90:22:55:99:2e:c2:c2:85:40:bd:87:45:b9:97:23:93:fc:72:
f1:a0:be:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:46 2024 by rpki-client on console-ams.rpki-client.org