Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/pTRpEDRTv08K4g0aYlnPHDWS2Lw.roa
File: pTRpEDRTv08K4g0aYlnPHDWS2Lw.roa (raw, json)
Hash identifier: 32cKSQhL0JjY/HTGRCUSYXfJE8r8QMnAwcFEbVDZFjE=
Subject key identifier: A5:34:69:10:34:53:BF:4F:0A:E2:0D:1A:62:59:CF:1C:35:92:D8:BC
Certificate issuer: /CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Certificate serial: 018EEE2DD9BB716CC54A9124E0D730C773ED
Authority key identifier: 61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/pTRpEDRTv08K4g0aYlnPHDWS2Lw.roa
Signing time: Wed 17 Apr 2024 22:29:25 +0000
ROA not before: Wed 17 Apr 2024 22:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215089
IP address blocks: 185.87.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Sep 2024 19:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:ee:2d:d9:bb:71:6c:c5:4a:91:24:e0:d7:30:c7:73:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6107e2e2e8171d319da1bc64b36c3c985e646c2a
Validity
Not Before: Apr 17 22:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a53469103453bf4f0ae20d1a6259cf1c3592d8bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b4:30:27:b3:90:f0:98:d9:80:4f:45:d6:7f:
b2:47:c9:4e:2d:53:ea:33:04:90:aa:ff:36:b8:53:
03:5f:25:1d:97:09:8b:e5:b8:ed:b9:ca:0d:87:b2:
78:a7:59:66:08:87:e7:12:ed:f4:49:24:ac:ea:cc:
d0:a6:d1:02:09:f8:9f:e7:cb:ac:85:28:66:b0:0f:
ad:76:ed:45:e3:79:12:3c:ac:61:34:5f:be:1c:62:
4c:e7:87:5d:01:d0:00:b3:12:07:f5:71:75:ea:e4:
73:67:b7:69:a1:d4:e4:49:f7:c5:97:87:98:b1:77:
b4:bb:54:08:63:cd:31:5d:23:f1:1f:44:5b:7b:30:
63:42:32:b0:59:d4:fd:87:06:b9:54:b4:7c:63:6c:
41:98:f6:bd:ac:b3:5a:6c:ac:9b:09:9e:81:d5:7d:
11:02:af:6d:16:c4:20:64:af:27:10:14:2a:4c:f0:
f8:83:7f:fc:67:2f:06:a4:32:9f:20:15:62:3d:f6:
0e:6c:aa:fc:ac:b9:f0:bc:52:cd:6e:9f:c7:79:9d:
3b:8c:83:d0:8d:21:1e:d3:c4:96:16:40:ad:b7:a5:
99:b6:55:f4:23:4f:e0:e1:5c:5d:3e:0f:4b:9a:7e:
3e:91:93:fa:ca:fd:fc:1a:c7:30:94:72:9e:09:1e:
20:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:34:69:10:34:53:BF:4F:0A:E2:0D:1A:62:59:CF:1C:35:92:D8:BC
X509v3 Authority Key Identifier:
keyid:61:07:E2:E2:E8:17:1D:31:9D:A1:BC:64:B3:6C:3C:98:5E:64:6C:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQfi4ugXHTGdobxks2w8mF5kbCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/pTRpEDRTv08K4g0aYlnPHDWS2Lw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/b07e58-f93a-4d5f-b92d-6016d5c05f30/1/YQfi4ugXHTGdobxks2w8mF5kbCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.255.0/24
Signature Algorithm: sha256WithRSAEncryption
11:57:32:e7:82:1f:39:ab:81:71:23:22:44:6d:90:aa:6e:a5:
94:4a:0e:a8:93:39:c0:27:0a:36:2f:fb:88:a5:1c:9e:a0:0d:
1e:95:6e:e7:14:f1:db:7e:81:25:08:63:f0:90:00:e6:df:4f:
2a:5d:06:20:fd:4b:a9:55:b2:62:2b:f2:80:00:76:b3:d1:c4:
56:9c:5f:2e:7f:6c:7e:91:cd:24:36:41:ba:86:2c:e9:80:b3:
8b:94:04:7a:5f:58:6a:84:37:49:28:80:5b:2b:cf:40:fe:15:
54:be:37:ea:63:4a:12:b0:88:18:e1:65:6b:0e:57:a7:0c:e5:
38:36:1f:ee:b2:93:1a:46:77:a6:45:da:3a:02:d1:f5:8e:2c:
4a:4c:94:8c:f0:91:a4:55:7e:4c:5d:20:18:59:93:2e:08:04:
5e:12:10:6d:cd:20:e4:c7:22:cf:74:89:87:21:18:bf:ac:c8:
bd:6c:c8:f7:3d:a2:13:c8:b5:03:7e:b7:57:1c:0a:16:2a:f9:
ce:b0:9a:1d:ee:04:07:e9:4e:22:7c:d0:68:49:b6:c2:d9:da:
e1:96:2c:a7:bc:23:15:f4:71:74:59:77:ef:1a:34:d8:c7:32:
50:39:5c:1a:be:d9:c0:eb:81:6f:73:74:68:73:7a:9e:2a:ab:
f3:5f:c1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 24 23:07:59 2024 by rpki-client on console-ams.rpki-client.org