Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/nU7VwFZAJRwkUUdTTm-88ygZGyg.roa
File: nU7VwFZAJRwkUUdTTm-88ygZGyg.roa (raw, json)
Hash identifier: 4tgdd6vazuvywPVD1qCXVQk7rqt1f7A/vcKp11FgyjU=
Subject key identifier: 9D:4E:D5:C0:56:40:25:1C:24:51:47:53:4E:6F:BC:F3:28:19:1B:28
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018DE5ADC9812893197356B857E8CFBF5972
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/nU7VwFZAJRwkUUdTTm-88ygZGyg.roa
Signing time: Mon 26 Feb 2024 13:49:48 +0000
ROA not before: Mon 26 Feb 2024 13:49:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203576
IP address blocks: 185.148.241.0/24 maxlen: 24
185.148.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 20:43:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e5:ad:c9:81:28:93:19:73:56:b8:57:e8:cf:bf:59:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Feb 26 13:49:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9d4ed5c05640251c245147534e6fbcf328191b28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:30:6a:f2:3b:e1:44:b6:16:41:fe:42:9b:fa:
63:87:3a:c9:60:fc:17:70:91:85:8e:35:21:cd:1a:
d8:dd:5b:fc:ec:8c:bf:0b:47:ad:f4:73:f7:a9:1d:
ed:85:8b:3f:7f:9b:3d:9a:55:4d:fa:f5:44:1e:b5:
e3:20:59:66:7f:e9:b1:44:b5:c5:88:7c:ac:8c:be:
64:11:6c:64:22:c7:d8:a4:c8:9c:f0:35:5e:0c:c1:
07:a3:3e:89:2b:64:a0:39:0f:04:d1:9a:a7:2a:ea:
e3:f4:ed:75:0e:66:18:ed:55:10:77:36:a3:d6:67:
f5:98:c2:33:2e:03:43:79:c8:f8:1b:5e:aa:d7:af:
38:ea:5b:98:e5:69:85:3e:57:99:e0:ee:db:b5:0c:
86:26:52:c7:41:c2:45:96:40:eb:84:19:4e:41:af:
dd:dc:55:f6:52:73:c4:33:4b:7d:ba:24:d6:ce:0b:
c7:af:3f:c3:9f:c1:5d:56:bc:53:d8:4d:96:c1:d5:
61:9e:85:e8:0b:65:a5:93:dc:d2:ba:9a:d1:af:1d:
c2:8f:74:88:d3:33:61:80:7c:a1:9b:66:92:70:34:
56:ce:59:f5:3e:9c:a9:6d:6c:64:a8:56:63:36:dc:
ab:1e:5e:08:3e:1c:92:40:3a:2a:03:3c:4b:8e:83:
fc:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:4E:D5:C0:56:40:25:1C:24:51:47:53:4E:6F:BC:F3:28:19:1B:28
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/nU7VwFZAJRwkUUdTTm-88ygZGyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.241.0-185.148.242.255
Signature Algorithm: sha256WithRSAEncryption
78:5a:29:09:01:c2:48:a0:83:74:5d:de:cf:50:59:9e:f8:bd:
44:e7:54:98:eb:24:68:4c:29:4b:20:1d:07:3f:1c:a7:96:9d:
43:0a:1e:52:b2:30:c4:62:c3:18:66:56:8b:e1:be:9b:39:16:
ef:6b:6b:42:90:28:41:d9:8d:1b:ed:37:8e:1f:e6:a3:2d:e8:
57:a5:96:cc:0e:a9:d0:0c:cd:99:29:e2:0a:be:34:dc:88:4e:
89:29:6b:1f:98:67:d0:65:70:06:44:75:aa:20:b3:62:f7:bf:
5b:21:13:e5:0c:8f:10:c5:f2:83:d7:4d:b1:ed:41:22:0b:e1:
61:3d:5c:7f:28:d5:4c:52:3f:18:dd:bf:f2:70:78:f7:c1:2f:
31:bb:25:5f:60:ed:b5:ba:69:fd:05:a4:20:81:c8:02:84:34:
70:0c:9c:52:14:4f:39:a3:71:7f:25:50:99:80:1f:af:d6:f9:
0d:76:dc:84:f4:8f:eb:ab:4e:9f:0d:bf:3f:43:7e:8a:31:1a:
4b:6c:33:10:ae:8c:45:30:5b:f1:d1:02:95:57:91:4d:db:1d:
73:76:72:96:65:9d:6e:1b:6e:4e:05:66:21:28:da:79:70:ab:
30:1d:16:4c:fe:36:ac:ae:63:0c:5f:97:b7:94:56:74:7d:37:
47:b6:e3:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org