Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/0e8eb9-f656-4ccf-a814-f89ab9f1286c/1/7JJVeV3jPk23d5632p-YH1osN3s.roa
File: 7JJVeV3jPk23d5632p-YH1osN3s.roa (raw, json)
Hash identifier: iSrucRx8oKoq1wGjdU/IHe0onvuWpG5SnPU/xzEHHS4=
Subject key identifier: EC:92:55:79:5D:E3:3E:4D:B7:77:9E:B7:DA:9F:98:1F:5A:2C:37:7B
Certificate issuer: /CN=df91845e65e4f0394f1e6c3ff9e7732f6aa46fdc
Certificate serial: 018857F885542BB7205FFF2B7F54A4FFBF6B
Authority key identifier: DF:91:84:5E:65:E4:F0:39:4F:1E:6C:3F:F9:E7:73:2F:6A:A4:6F:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/35GEXmXk8DlPHmw_-edzL2qkb9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/0e8eb9-f656-4ccf-a814-f89ab9f1286c/1/7JJVeV3jPk23d5632p-YH1osN3s.roa
Signing time: Fri 26 May 2023 12:11:24 +0000
ROA not before: Fri 26 May 2023 12:11:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203936
IP address blocks: 185.124.141.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 May 2023 17:42:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:57:f8:85:54:2b:b7:20:5f:ff:2b:7f:54:a4:ff:bf:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df91845e65e4f0394f1e6c3ff9e7732f6aa46fdc
Validity
Not Before: May 26 12:11:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec9255795de33e4db7779eb7da9f981f5a2c377b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:b0:42:34:d9:38:d8:5f:f5:7b:27:98:33:3e:
27:f6:e2:dd:61:6b:9b:99:09:86:88:ca:b2:5d:59:
fa:f1:67:df:6e:fb:e8:fe:91:58:97:df:2d:7d:b5:
eb:a1:13:6e:52:2d:9a:fd:d5:d7:d9:db:f3:06:40:
c5:ab:1a:05:4f:f4:c5:41:29:1a:20:62:92:41:12:
b8:74:5a:c8:35:68:5a:6a:83:28:7a:39:1d:e8:60:
23:30:0d:65:f5:85:f0:30:3e:a8:f5:a8:0a:51:b6:
7a:1b:b5:71:16:89:82:cf:6f:0d:8f:0c:69:b1:7c:
c7:9f:11:37:25:24:f9:0f:90:36:e6:05:fe:27:a1:
9c:04:3c:d5:93:3c:17:e7:fe:44:b4:e4:10:07:27:
1e:87:2c:bd:9a:8b:95:77:ee:67:80:c5:97:d4:80:
96:48:0f:0c:01:40:e4:b0:6d:6b:d2:a4:f2:41:bc:
05:09:3a:6c:09:1b:7e:32:f4:32:02:f4:b1:9b:42:
a3:f7:40:ab:90:32:42:7c:97:e3:78:73:95:55:69:
3d:89:9a:34:91:e9:a7:a4:1a:b1:31:92:8b:cd:ed:
7f:94:db:5a:9f:64:47:8e:e3:28:f6:f5:e1:76:00:
ca:a8:99:03:64:67:d3:15:d1:2c:7c:93:3a:a9:bb:
b8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:92:55:79:5D:E3:3E:4D:B7:77:9E:B7:DA:9F:98:1F:5A:2C:37:7B
X509v3 Authority Key Identifier:
keyid:DF:91:84:5E:65:E4:F0:39:4F:1E:6C:3F:F9:E7:73:2F:6A:A4:6F:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/35GEXmXk8DlPHmw_-edzL2qkb9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0e8eb9-f656-4ccf-a814-f89ab9f1286c/1/7JJVeV3jPk23d5632p-YH1osN3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/0e8eb9-f656-4ccf-a814-f89ab9f1286c/1/35GEXmXk8DlPHmw_-edzL2qkb9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:f9:16:22:90:64:86:ee:85:b9:62:82:f3:1d:6f:eb:56:b9:
8c:05:2b:4c:58:79:b0:ac:2c:df:4f:44:dc:f0:eb:3e:1e:51:
5d:69:2d:06:c2:64:4d:fb:69:16:c1:2a:27:95:01:21:6d:c1:
88:c5:a8:7d:54:6c:14:c2:e4:e5:45:98:db:f4:62:5b:ff:a0:
87:14:ab:a1:5d:b7:7c:b9:d2:87:4b:fd:e0:69:f3:ab:dd:ff:
4f:8d:af:09:86:c3:7b:98:d5:db:1e:73:70:4a:32:94:a4:f2:
65:1f:60:f2:23:2e:66:04:bc:e7:0b:67:62:27:a5:b3:98:d0:
5d:e3:9e:9e:03:7c:9b:48:6e:e3:45:1b:a4:61:05:ed:0c:f9:
b5:c1:ae:a7:6d:37:45:86:06:b4:e2:0f:7f:ad:19:10:36:b4:
d2:ea:7b:fa:3a:e3:69:36:9f:fa:14:e0:b9:00:b0:66:19:6f:
27:6d:b8:ba:e8:c6:51:ba:49:04:5c:a9:be:d8:b5:79:bb:85:
5b:ac:45:d9:d2:e6:3d:f9:1b:c9:bb:a3:c2:f4:20:17:3d:c0:
71:e8:11:1e:d5:a7:c2:5d:fa:e0:f0:32:22:01:d6:72:1e:f8:
90:c3:34:1b:8d:9e:c7:f3:5d:34:e6:56:88:1c:64:97:fb:15:
ed:25:eb:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:43 2024 by rpki-client on console-ams.rpki-client.org