Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/4iIMv7XdnwoVqaah0uJIYVNhla0.roa
File: 4iIMv7XdnwoVqaah0uJIYVNhla0.roa (raw, json)
Hash identifier: jd4LAooO1tvKnancf/kW1p3hEjljxS4nHiAXpqKXkCI=
Subject key identifier: E2:22:0C:BF:B5:DD:9F:0A:15:A9:A6:A1:D2:E2:48:61:53:61:95:AD
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018D5F36BE4E6C27447CA86E63C062418F3E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/4iIMv7XdnwoVqaah0uJIYVNhla0.roa
Signing time: Wed 31 Jan 2024 11:10:39 +0000
ROA not before: Wed 31 Jan 2024 11:10:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57717
IP address blocks: 185.242.226.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 12:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:36:be:4e:6c:27:44:7c:a8:6e:63:c0:62:41:8f:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 31 11:10:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2220cbfb5dd9f0a15a9a6a1d2e24861536195ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:82:b5:ae:1d:4a:be:46:a2:da:54:da:eb:bd:
0b:76:5e:08:64:6d:9e:b9:ed:00:47:91:93:4e:66:
f2:a7:a8:ee:96:3b:71:0c:c7:99:88:5e:19:d2:79:
d7:ef:10:b1:44:12:27:c9:f1:0a:82:5e:56:12:3c:
45:70:94:99:95:8b:e8:84:51:20:29:c2:f3:48:c2:
5e:dd:43:8e:b5:a6:5c:e9:35:9e:18:69:5d:ef:86:
f5:11:34:c5:55:cf:30:22:56:e3:0c:6a:bf:cf:dc:
18:8e:b8:0a:b5:2e:ac:f7:b2:90:37:1e:62:6d:ca:
fd:a2:df:b9:e8:85:d6:a8:89:39:88:22:c3:65:6a:
cf:40:be:74:ba:b7:c7:03:25:9a:7e:25:5c:7d:f2:
2e:08:af:eb:c2:dc:f9:7b:77:f5:f6:fa:7d:01:c1:
f9:f0:ca:be:e4:2d:eb:ed:01:7e:6c:34:fc:81:63:
7e:81:bd:ae:e3:fc:9b:64:4f:48:2e:6b:c9:df:71:
4f:19:81:c2:31:14:38:b3:e1:b6:79:4f:36:21:33:
22:c8:d9:c7:f0:c9:c9:c4:91:84:6f:71:a1:57:be:
89:fe:33:3a:90:79:da:88:b0:29:9b:77:87:91:f8:
88:af:71:fc:ae:4d:db:32:84:6f:17:29:d7:5f:bc:
a0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:22:0C:BF:B5:DD:9F:0A:15:A9:A6:A1:D2:E2:48:61:53:61:95:AD
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/4iIMv7XdnwoVqaah0uJIYVNhla0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.226.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:4a:7f:4b:db:b7:ab:f2:bc:8d:6c:99:08:69:bc:40:83:0b:
32:d7:77:c9:b4:5e:c7:f5:a3:4d:75:65:9d:f5:af:8e:99:2c:
c4:51:68:4e:ab:5f:5e:f1:5a:ed:29:02:6c:e3:d0:dc:23:75:
de:4b:bb:bb:fd:7f:1e:83:4d:df:57:b3:0d:9f:6a:d7:45:e1:
fd:99:c5:b0:f0:d0:bc:db:fe:f1:b1:8d:2e:04:9f:d0:ff:08:
90:df:59:3f:40:07:57:e7:6a:8b:42:79:eb:41:0d:e3:12:0e:
dd:df:fc:be:80:39:ea:4c:32:b7:c3:e9:ae:8e:37:c1:16:e4:
72:01:bf:69:fe:d2:2a:fd:6a:55:43:10:45:89:e5:99:4e:ac:
8d:ec:d5:9d:93:29:f1:0b:94:33:66:9d:93:f3:0f:78:7b:14:
8f:29:80:68:6a:48:44:0d:85:2d:05:f4:57:72:d1:fb:33:9a:
96:66:38:89:de:50:34:fe:32:a2:f6:87:68:80:b8:f0:66:5b:
fa:f8:2c:97:8f:0d:5a:11:45:55:33:9c:59:bc:26:b1:30:25:
53:5f:e3:36:11:43:a6:46:3a:01:9a:a7:a3:04:b2:2d:00:de:
d4:0a:ed:8e:67:9b:19:de:73:40:ca:16:b7:9b:d7:f6:08:6d:
b5:06:ca:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 31 17:49:58 2024 by rpki-client on console-ams.rpki-client.org