Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/pZwsUheSR7l0qXVTDel8RP3A1Vc.roa
File: pZwsUheSR7l0qXVTDel8RP3A1Vc.roa (raw, json)
Hash identifier: 76yGUH3bR+BlK9XAchDkrNlLPaw6oeYf4xLE9RvH4yw=
Subject key identifier: A5:9C:2C:52:17:92:47:B9:74:A9:75:53:0D:E9:7C:44:FD:C0:D5:57
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018626BBD5DDE90084042BEF4796C7C803D4
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/pZwsUheSR7l0qXVTDel8RP3A1Vc.roa
Signing time: Mon 06 Feb 2023 12:38:09 +0000
ROA not before: Mon 06 Feb 2023 12:38:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212322
IP address blocks: 185.148.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:26:bb:d5:dd:e9:00:84:04:2b:ef:47:96:c7:c8:03:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Feb 6 12:38:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a59c2c52179247b974a975530de97c44fdc0d557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:7d:b1:1f:ab:62:ba:11:a3:fc:f3:e1:73:9a:
99:85:89:e4:dc:a3:c9:f5:08:d0:b5:c6:00:e2:2d:
3c:20:7d:88:9e:0f:08:a3:59:c1:da:39:70:6a:34:
40:17:49:cc:28:c5:e3:44:dc:62:c5:a7:63:04:45:
65:0e:d3:e3:9c:36:89:21:41:75:c0:84:5d:ff:e7:
f8:d4:a4:18:68:d0:83:4d:19:bc:37:e8:d8:13:f0:
d5:77:4d:99:f7:aa:a3:cd:21:a1:53:a1:94:73:ff:
aa:66:99:88:bc:b6:61:6b:83:98:ae:a2:a6:fc:c3:
8e:a4:54:a7:b2:d6:7e:bc:29:ed:c1:55:e5:d0:9f:
60:d7:28:71:7e:4c:3e:af:89:51:10:3e:0a:76:38:
81:e4:08:08:16:c6:20:13:9c:43:1a:0e:9a:0e:bc:
11:35:be:76:5c:14:a6:c4:71:7c:1d:f3:39:b4:9b:
f1:19:01:46:cd:08:1f:0d:bd:c4:b4:3a:0d:3d:7d:
52:f9:70:5b:3f:4a:5e:c9:68:5f:b1:62:6a:5b:b6:
e8:67:31:e9:67:e8:58:c4:55:4c:38:b7:90:40:94:
f1:b2:d9:96:b3:43:0b:75:ec:33:86:9e:44:07:55:
80:57:39:a7:4e:14:9b:76:4b:2f:33:97:c1:9e:cd:
be:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:9C:2C:52:17:92:47:B9:74:A9:75:53:0D:E9:7C:44:FD:C0:D5:57
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/pZwsUheSR7l0qXVTDel8RP3A1Vc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.240.0/24
Signature Algorithm: sha256WithRSAEncryption
65:11:83:cb:49:67:40:f3:a5:b0:6e:61:4d:96:4b:c7:a1:a2:
bc:ef:3c:ff:34:d2:87:cf:c8:4c:53:07:d8:8d:b4:f9:5b:21:
d4:eb:eb:25:ca:e8:3f:da:51:3e:a5:e1:a5:58:84:a7:24:6c:
e3:a6:21:1a:8d:eb:28:e5:8a:d9:db:6d:56:94:7d:fb:ef:d7:
22:a6:ac:cf:51:3d:8e:2d:56:96:16:2d:15:81:64:5b:8a:24:
00:79:80:d2:f8:26:40:49:77:a9:18:bc:20:a9:47:92:ec:59:
a1:61:35:47:85:6f:c7:5f:c8:89:96:23:36:84:ba:ea:6f:84:
a6:09:cb:2f:00:d2:7e:cf:22:4f:b7:b4:2f:16:c1:46:42:05:
f8:f0:79:e3:c7:d6:60:97:65:d4:ef:22:68:32:35:93:86:45:
c4:af:26:24:73:57:94:98:1f:ed:e4:2d:89:14:6d:c7:f1:4b:
e7:6c:7c:db:a0:d8:33:e6:dd:6d:7e:da:ba:35:66:01:8b:96:
80:fc:a2:bf:df:69:de:e0:55:9f:4b:20:92:38:33:fc:cc:4d:
af:13:4f:64:63:10:36:ef:10:32:79:55:d6:96:15:e6:a5:3c:
58:09:71:c0:2d:ec:97:42:95:6c:3c:0a:84:cd:b3:9a:5c:bf:
87:5a:5b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:45 2024 by rpki-client on console-ams.rpki-client.org