Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/nRq4IWk_nJfpWpi2j-ps-34mx2A.roa
File: nRq4IWk_nJfpWpi2j-ps-34mx2A.roa (raw, json)
Hash identifier: BT9q/36H6QAgkSIp0hB1+iBZH3XdZotPFAhKYkEQf+s=
Subject key identifier: 9D:1A:B8:21:69:3F:9C:97:E9:5A:98:B6:8F:EA:6C:FB:7E:26:C7:60
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018570B06650C3C510B12D607530E24EEEE3
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/nRq4IWk_nJfpWpi2j-ps-34mx2A.roa
Signing time: Mon 02 Jan 2023 04:14:46 +0000
ROA not before: Mon 02 Jan 2023 04:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 185.212.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:66:50:c3:c5:10:b1:2d:60:75:30:e2:4e:ee:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 2 04:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d1ab821693f9c97e95a98b68fea6cfb7e26c760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:dc:7e:64:b8:48:49:0a:a9:ac:39:e3:3d:2e:
91:1e:3a:31:3c:94:2a:48:71:64:b2:19:a4:79:64:
17:74:22:2f:4d:83:b4:6e:49:b6:b5:d6:be:8d:2b:
2b:4b:ef:80:6f:bd:0e:96:ac:2b:f5:89:30:ab:39:
3a:b9:96:48:68:20:fa:d1:63:81:86:c1:8a:b5:e5:
26:c3:6c:20:79:a3:94:9a:bc:4d:64:cf:2e:2e:d1:
9b:24:75:c5:89:35:94:d4:84:4a:89:e4:ba:b1:a9:
6f:04:cc:09:11:40:27:d6:b7:0a:ce:1b:8e:d1:3d:
23:b7:62:06:e0:3f:25:2e:a2:79:5c:9f:92:7f:e7:
5e:0b:a5:d4:e4:a2:44:d7:d0:b0:08:a1:b2:3d:31:
a9:3a:39:b6:c4:17:cb:61:06:ba:1f:79:b2:72:29:
b5:b3:4f:ae:62:e9:69:a8:f1:51:3e:3e:67:1a:d8:
af:4b:e9:b4:c0:88:09:1f:f6:0f:b3:8e:1b:8a:05:
72:af:d8:29:92:9e:b4:71:a1:31:9f:9b:1f:8a:84:
73:02:ea:3b:8c:a5:d9:7b:bc:74:9f:52:2b:d9:6e:
07:69:28:9b:8b:5b:09:b6:b0:25:fc:be:f7:55:0c:
3f:db:0b:a0:01:80:c9:6e:da:8e:15:cd:5b:21:b9:
45:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:1A:B8:21:69:3F:9C:97:E9:5A:98:B6:8F:EA:6C:FB:7E:26:C7:60
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/nRq4IWk_nJfpWpi2j-ps-34mx2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.175.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:37:2e:33:4f:3b:f6:de:57:c7:f9:a1:d5:dc:5b:04:9f:7f:
9d:ef:cc:b9:c2:8f:93:09:7b:d6:3a:f0:e1:ed:04:dc:4a:2d:
79:8f:f9:3a:d9:6c:0e:cb:90:07:7d:cb:79:34:12:15:1c:af:
dc:70:f5:ce:0f:45:53:9c:b8:80:7b:6d:da:3f:c9:f6:b5:1f:
60:6e:96:67:e9:ca:03:4c:16:e6:18:ba:b7:0b:86:d8:0f:8e:
0c:2f:9e:9f:5d:2e:7a:c9:8b:7d:d6:7c:c2:9e:0f:a1:33:de:
f0:34:18:d9:e0:c0:74:02:e9:57:f0:ac:20:5d:fa:e7:ba:7c:
a4:78:2b:52:85:73:3e:8b:42:95:3a:d7:e8:41:2f:ef:98:e5:
02:1b:ce:f5:51:c6:07:c9:c2:2b:6a:87:68:94:a9:0b:69:f8:
12:fa:59:13:71:87:60:0e:86:63:22:c9:5b:c8:86:a0:c6:17:
26:97:b7:ef:71:e6:6b:c3:af:f5:13:d0:98:1c:4b:a2:2c:6f:
9e:34:57:8e:8d:8c:b4:b8:57:5d:ee:85:0e:30:9e:77:28:20:
c4:ea:fa:46:d2:52:5a:a5:0a:f4:99:d2:01:f3:84:c3:b5:a2:
15:94:4d:16:2b:19:41:09:6c:9b:b3:d7:31:f6:6c:eb:e1:c2:
f9:18:1f:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org