Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/on9qMe6_K4ozD8QhAGjaBVyPZNo.roa
File: on9qMe6_K4ozD8QhAGjaBVyPZNo.roa (raw, json)
Hash identifier: 7Rn0tNWLLTh3F37oD+/j6tYjg0NphWkDuV02cA2c9P8=
Subject key identifier: A2:7F:6A:31:EE:BF:2B:8A:33:0F:C4:21:00:68:DA:05:5C:8F:64:DA
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018CC49339C504EF5BC2524B596E8A2F858A
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/on9qMe6_K4ozD8QhAGjaBVyPZNo.roa
Signing time: Mon 01 Jan 2024 10:30:31 +0000
ROA not before: Mon 01 Jan 2024 10:30:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 185.212.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Mar 2024 22:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:39:c5:04:ef:5b:c2:52:4b:59:6e:8a:2f:85:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Jan 1 10:30:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a27f6a31eebf2b8a330fc4210068da055c8f64da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:be:cf:8d:48:3e:bd:1c:74:9b:ef:28:51:18:
56:98:34:60:cd:77:3e:e6:17:e8:f2:f9:7f:c6:8f:
40:c4:a4:c5:b6:41:db:2b:d1:89:00:05:fe:ed:ad:
fe:6e:ed:a3:50:0c:0d:81:25:80:1b:a9:66:26:63:
c4:6a:f8:df:4a:2e:51:62:37:ac:d1:fa:53:9f:1e:
72:f7:74:76:b0:8d:14:38:85:ff:8c:b6:30:8a:e0:
d7:f3:b5:03:b1:46:c2:bb:22:3e:ec:f3:b0:ac:b8:
f8:38:67:22:f8:23:f8:12:09:67:ae:09:30:16:d4:
72:61:d4:0c:c0:91:c2:91:29:c8:26:03:0b:29:3b:
a7:e8:75:44:2a:a6:ee:8f:a1:03:d2:9c:ee:60:fd:
4c:5a:4f:f7:f2:63:41:35:fc:db:fb:45:60:e4:18:
3d:9a:49:e3:ac:76:ec:e4:00:b6:14:c0:6c:3c:b9:
f0:82:c3:c3:33:6d:f5:8f:0b:52:06:65:17:16:d1:
40:3c:cf:b3:ec:94:7e:1b:20:f4:a7:b6:b5:72:75:
4e:29:62:d1:e5:80:e3:54:02:24:ff:76:8a:8b:79:
88:ad:58:bc:94:d4:cf:9b:09:7b:f6:89:d1:06:d6:
83:80:c6:ea:3e:d8:7c:a5:d9:d7:3a:af:d9:1c:3e:
99:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7F:6A:31:EE:BF:2B:8A:33:0F:C4:21:00:68:DA:05:5C:8F:64:DA
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/on9qMe6_K4ozD8QhAGjaBVyPZNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.175.0/24
Signature Algorithm: sha256WithRSAEncryption
91:35:0c:75:a7:94:22:e5:4a:11:c5:80:e3:f9:69:d9:c9:e9:
ea:7c:5f:c8:f8:10:fc:5d:e3:ab:32:06:29:e3:c5:fb:57:50:
29:3c:85:ea:9e:87:c2:ad:01:98:5a:e4:35:04:74:d3:2d:40:
9d:87:86:42:9a:e1:3b:7e:ca:46:12:e4:04:63:e6:a0:e6:ea:
aa:d6:b9:39:12:bf:9a:72:49:4b:01:19:60:62:4a:12:e9:cb:
e0:b3:fd:9b:6e:43:02:9e:db:74:2e:63:04:04:0a:74:0e:2d:
f8:27:b1:67:db:57:e0:eb:37:5d:a8:1c:e8:f9:d9:4b:ab:fb:
ee:83:c0:70:2d:74:57:e9:be:14:d0:60:3c:7d:e7:aa:60:1d:
b2:2e:bf:ac:34:06:01:34:06:fa:bc:4e:a7:ee:b2:ba:36:27:
bf:bd:7f:d4:83:d8:95:2a:ee:49:b9:54:0a:22:cf:44:e4:d6:
50:f7:be:2a:e4:8a:5f:a1:15:a9:dd:e5:f1:d6:33:32:c8:b7:
f6:12:5c:da:c8:73:e8:fc:92:52:d7:4d:9a:99:db:74:32:9b:
1a:5e:c0:b5:5e:33:49:d3:8c:d5:d3:6c:97:93:a9:18:3f:c4:
b5:de:a7:fd:e7:6e:af:c5:7f:0c:e5:9c:87:01:70:23:db:bf:
5b:25:8f:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:19 2024 by rpki-client on console-fra.rpki-client.org