Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tR64M0qV-j5ymcn8c5pqTxCqfSM.roa
File: tR64M0qV-j5ymcn8c5pqTxCqfSM.roa (raw, json)
Hash identifier: 9DpwqJ1POF2Mdwm8VXX6k2ZT+aiUS4AF7xxJzsKaY+w=
Subject key identifier: B5:1E:B8:33:4A:95:FA:3E:72:99:C9:FC:73:9A:6A:4F:10:AA:7D:23
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018CC4256E52260A4FE6AE33CB117D21D09A
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tR64M0qV-j5ymcn8c5pqTxCqfSM.roa
Signing time: Mon 01 Jan 2024 08:30:36 +0000
ROA not before: Mon 01 Jan 2024 08:30:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210659
IP address blocks: 185.186.65.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 15:34:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:6e:52:26:0a:4f:e6:ae:33:cb:11:7d:21:d0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 08:30:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b51eb8334a95fa3e7299c9fc739a6a4f10aa7d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:11:89:d8:68:89:07:75:a4:a3:4e:c0:8d:85:
9d:fc:de:63:ac:87:a2:3a:c6:a7:23:35:19:89:7b:
25:52:62:c4:b9:cc:16:bc:e0:4c:ed:24:97:e8:ec:
a4:23:c7:4b:ad:37:72:9b:a9:87:53:55:84:f7:cb:
dc:01:79:3d:e7:5c:e2:b5:1c:1f:3a:fa:64:36:a7:
a3:3f:a8:24:d7:86:f5:77:62:e7:8f:1b:9b:7f:d2:
a2:f2:c8:95:aa:1a:1a:14:bb:fb:f4:b0:7c:ff:16:
ea:d7:cd:eb:5e:4b:5e:8a:66:1e:ce:39:2a:9a:1d:
c2:76:e9:18:93:e5:46:8a:8c:f7:ce:17:84:22:80:
a2:62:22:5a:55:c0:7a:e9:d8:9b:94:39:c7:70:ea:
27:93:55:38:66:5e:95:78:89:36:de:32:4f:b8:48:
42:5d:7a:6d:e1:10:22:9b:a6:20:01:8b:df:7f:c1:
9c:14:8b:ed:db:2c:83:8c:e8:e9:00:3c:4b:7e:e9:
d9:25:51:d9:a0:6c:d8:38:91:9d:15:4e:e4:b0:45:
b1:52:8d:a0:5a:d5:c1:7f:30:f5:df:26:f8:a8:18:
4b:1a:1e:88:84:0e:1d:39:24:78:59:42:9b:22:30:
d8:0b:3a:2b:1d:94:a9:91:03:fe:a4:21:a9:23:6b:
0c:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:1E:B8:33:4A:95:FA:3E:72:99:C9:FC:73:9A:6A:4F:10:AA:7D:23
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/tR64M0qV-j5ymcn8c5pqTxCqfSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.65.0/24
Signature Algorithm: sha256WithRSAEncryption
94:25:27:59:2f:3a:01:15:80:cf:b2:27:24:36:b1:92:d8:f1:
88:0a:83:0a:b8:3d:5a:83:ea:2d:e6:85:2f:af:13:ec:6b:4e:
1d:67:cf:4d:f4:26:2e:02:8b:39:44:39:34:cb:6c:fb:28:3e:
bf:b1:80:73:5a:98:c1:76:d5:14:60:0d:a6:b5:c1:46:d2:f9:
29:98:79:11:8d:13:9d:fc:67:6a:49:c5:ac:14:1c:35:99:26:
8e:f3:b7:dc:3c:68:1b:55:32:ab:bd:77:45:fa:9a:8f:c3:c2:
bf:c4:7a:10:5a:b8:27:67:45:5e:95:23:53:24:5a:d8:4f:c9:
0d:80:7a:8d:cc:be:bf:73:ef:9d:89:1e:39:a3:59:4d:61:52:
83:90:2c:28:4a:18:06:78:51:60:e1:55:a2:80:76:33:e6:d1:
f0:e1:7f:b9:22:2f:aa:1f:ab:64:41:c2:76:5d:91:b0:4c:88:
c0:03:32:a2:38:fd:35:f9:d1:da:20:81:19:af:6f:b7:33:17:
09:d5:de:d9:e7:5a:91:bd:c8:c8:88:85:b9:0a:2a:58:ef:86:
7e:55:00:fc:87:7a:31:ac:63:11:55:40:9a:93:c8:9e:8c:42:
76:e7:6f:d4:51:78:b4:08:5d:ae:54:22:49:ba:11:c5:18:97:
c8:aa:9d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 19:43:29 2024 by rpki-client on console-fra.rpki-client.org