Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/rgojyJ7wAaAyh1f9Lm1pwkrZPGc.roa
File: rgojyJ7wAaAyh1f9Lm1pwkrZPGc.roa (raw, json)
Hash identifier: ogT6V4D/G98TaMoJf9o6WFxsGl7MJ5JOkxpAiYLqgTY=
Subject key identifier: AE:0A:23:C8:9E:F0:01:A0:32:87:57:FD:2E:6D:69:C2:4A:D9:3C:67
Certificate issuer: /CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6
Certificate serial: 01913DC19DE499038FC4F42BC8644ADAF3ED
Authority key identifier: 6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/rgojyJ7wAaAyh1f9Lm1pwkrZPGc.roa
Signing time: Sat 10 Aug 2024 19:26:24 +0000
ROA not before: Sat 10 Aug 2024 19:26:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49371
IP address blocks: 185.124.13.0/24 maxlen: 24
2a03:9000::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 11 Aug 2024 16:45:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:3d:c1:9d:e4:99:03:8f:c4:f4:2b:c8:64:4a:da:f3:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f1ba6e14d83a8b14b05026e710c86c46b73c3a6
Validity
Not Before: Aug 10 19:26:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae0a23c89ef001a0328757fd2e6d69c24ad93c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:39:63:aa:6c:42:1a:85:9f:26:5d:a0:aa:5a:
80:c2:d8:de:96:de:15:b5:eb:2a:60:4d:2b:4f:3b:
ea:19:3a:3d:40:af:0c:87:62:7f:e9:cf:97:8e:04:
5e:81:74:a9:c7:f0:99:9a:28:63:9e:ef:d3:9c:1b:
33:4c:56:83:f7:f0:c6:a7:c0:33:5a:49:9d:c5:7f:
08:b3:e0:81:e4:fe:6f:c8:48:52:12:e3:45:96:89:
40:02:ea:c1:37:ac:8f:b3:20:70:20:55:70:9f:88:
ac:fb:7f:5a:8a:89:7e:4e:b7:46:d3:8c:8c:06:36:
f9:a2:f0:e8:55:95:f4:ac:6f:81:b7:3f:78:10:67:
86:e0:3c:e5:ed:55:ed:f9:f9:21:d1:24:e3:79:68:
ca:92:90:f8:29:9c:e6:9c:7d:bd:6a:5c:93:18:e5:
d2:77:b4:c2:77:9e:96:0c:b7:9c:11:f6:aa:39:64:
a9:a7:0d:2e:13:fb:c3:80:59:96:81:7f:15:f6:7d:
57:63:81:8a:b0:65:8c:a2:ab:78:13:b7:74:79:66:
3f:8b:54:4a:59:41:4f:a5:fe:34:c7:ef:cb:a7:1b:
79:09:fa:8a:c7:eb:6f:31:03:f4:5b:59:35:f9:cf:
ac:0e:ee:5d:28:46:3f:c9:0a:59:7a:16:18:de:56:
c6:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:0A:23:C8:9E:F0:01:A0:32:87:57:FD:2E:6D:69:C2:4A:D9:3C:67
X509v3 Authority Key Identifier:
keyid:6F:1B:A6:E1:4D:83:A8:B1:4B:05:02:6E:71:0C:86:C4:6B:73:C3:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxum4U2DqLFLBQJucQyGxGtzw6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/rgojyJ7wAaAyh1f9Lm1pwkrZPGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/ce81b6-bceb-47bc-adfb-dae9fb8bf0b1/1/bxum4U2DqLFLBQJucQyGxGtzw6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.13.0/24
IPv6:
2a03:9000::/32
Signature Algorithm: sha256WithRSAEncryption
7b:1e:51:22:ce:fe:9d:02:6b:c1:35:2c:39:08:62:ef:b0:2b:
8b:d0:c3:91:db:a4:79:91:44:d7:20:83:70:51:29:a4:69:d7:
37:7a:f5:dd:8f:5d:ff:55:27:7b:42:ea:b7:bb:72:63:05:36:
cf:5e:5b:e3:75:05:1f:ff:e5:cf:d2:0a:a8:26:59:d3:8f:b8:
f5:14:73:58:91:93:09:1e:25:17:5b:05:0f:ed:ca:42:f1:0e:
08:b1:e0:54:e1:49:f0:bb:47:ea:ae:0d:77:37:c0:c7:5e:71:
d8:80:28:fb:73:b7:68:d2:d5:95:c4:ef:9f:55:d7:77:1f:0d:
30:b1:83:7d:04:53:59:c0:48:9d:20:70:1f:79:f6:c9:9f:6f:
5a:57:ac:d9:d0:13:c8:8d:69:0d:8a:1d:c5:f2:31:99:f8:9c:
c9:34:2e:51:9f:ba:c6:02:f2:f0:73:89:3e:c6:57:4a:ef:fa:
87:f4:ae:98:d1:19:93:da:d1:d6:cd:a8:d5:be:47:87:66:23:
e5:a0:50:a4:04:d8:1a:9f:66:ee:93:d1:ab:86:48:32:68:ea:
8e:c8:3e:47:c4:bd:ec:d5:db:c9:75:25:5c:51:38:97:17:ea:
9f:03:fe:86:6a:54:8b:36:7a:54:43:48:11:83:98:4c:d4:c7:
15:62:cf:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 11 18:51:05 2024 by rpki-client on console-fra.rpki-client.org