Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/2QY7rSgh4_0M2BmHYBWtH-DTZgE.roa
File: 2QY7rSgh4_0M2BmHYBWtH-DTZgE.roa (raw, json)
Hash identifier: eFjiDiNljZqGK0PzpjEimVOBNmOSYk6mdBWge+ZCqJE=
Subject key identifier: D9:06:3B:AD:28:21:E3:FD:0C:D8:19:87:60:15:AD:1F:E0:D3:66:01
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 01856EC20606448A42C1854F10B2077E1F6F
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/2QY7rSgh4_0M2BmHYBWtH-DTZgE.roa
Signing time: Sun 01 Jan 2023 19:14:47 +0000
ROA not before: Sun 01 Jan 2023 19:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50114
IP address blocks: 185.110.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:c2:06:06:44:8a:42:c1:85:4f:10:b2:07:7e:1f:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Jan 1 19:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d9063bad2821e3fd0cd819876015ad1fe0d36601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:61:b4:cb:27:99:ed:f2:7e:7a:df:f3:c8:64:
6b:d7:db:39:11:6d:6c:07:15:1a:d7:ce:d4:95:c6:
f4:aa:fb:61:fe:e7:27:4e:6a:5e:d2:af:10:84:4e:
0f:6a:58:29:2e:87:1b:27:3f:80:b8:11:cf:9b:5d:
5d:0c:bd:b3:a4:1d:c3:81:7f:a1:9d:6d:e3:dd:48:
17:ab:d0:15:29:34:c4:3f:5f:9d:8a:dc:e2:2e:8f:
73:9f:4a:01:c2:16:33:04:d2:85:5b:38:01:f6:08:
e7:c2:0d:f6:ae:2a:d4:97:d8:ec:49:33:c2:ca:cc:
79:cd:17:d2:b2:9a:ea:11:ff:1a:e0:c0:15:ca:14:
55:1a:69:ad:13:fa:bc:c0:2a:78:21:d8:c9:0f:72:
a1:ed:14:c1:4b:8b:4c:70:c7:f9:3c:f4:c1:16:e7:
2e:59:c8:68:c6:a6:73:fe:a4:4f:81:90:ac:a9:7f:
55:c7:91:e8:a3:49:69:b4:84:89:a2:be:8b:50:5b:
b7:8d:e8:28:b4:8a:94:b3:82:75:d4:1c:d5:e9:10:
cf:a6:e0:f6:97:d6:96:4b:ca:71:89:e8:bb:a0:30:
43:3c:a5:c6:f5:21:f3:27:37:8d:dc:21:7d:8d:f8:
9e:b3:e0:75:87:fa:6b:88:a5:36:74:7f:1e:49:87:
86:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:06:3B:AD:28:21:E3:FD:0C:D8:19:87:60:15:AD:1F:E0:D3:66:01
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/2QY7rSgh4_0M2BmHYBWtH-DTZgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.237.0/24
Signature Algorithm: sha256WithRSAEncryption
70:52:5b:29:b0:c1:cc:cd:ad:05:26:e0:49:54:84:9d:ef:cd:
99:d6:2e:e2:47:39:ec:61:33:62:cc:06:46:49:f4:bb:28:5e:
fa:35:f5:dc:43:01:76:48:c1:ce:1c:12:64:7f:79:10:09:27:
d3:85:e9:a6:2b:d4:e2:1b:fd:b2:2b:21:03:99:81:20:ee:88:
59:1d:12:e7:8a:f7:d2:ba:41:8f:43:78:ab:a4:7f:38:1d:f8:
c4:3a:0e:b2:2e:6b:c4:5a:e9:e3:43:c5:e5:45:ae:bf:f6:b0:
c2:7c:b7:c8:85:f6:6d:db:77:2d:60:fe:b8:06:5c:b2:58:f5:
de:62:71:54:57:0d:95:28:c8:99:ba:26:21:3a:e5:37:c4:21:
84:75:57:d2:95:90:6e:0f:5c:78:66:cc:3f:3c:ee:3e:31:24:
f9:a2:2f:0b:10:51:ea:c6:15:5f:ad:07:91:15:3e:a1:3c:5f:
da:6f:f4:13:7b:02:0a:50:78:2b:34:1b:9f:65:34:50:8b:a4:
f3:0f:87:6f:b1:0b:f9:ab:b1:4d:3f:c3:af:4e:b6:08:55:f9:
ee:87:ac:fa:78:3c:4f:de:c4:ef:f6:3c:d5:51:74:3f:e6:5e:
57:5b:89:5f:1e:43:b3:c4:f9:28:08:c1:6b:50:a2:27:73:15:
e6:1f:7f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:18 2024 by rpki-client on console-ams.rpki-client.org