Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/9X0ad4KA_-iJkxL4jQ2kieYevEI.roa
File: 9X0ad4KA_-iJkxL4jQ2kieYevEI.roa (raw, json)
Hash identifier: iI7Zu/57Fc54SHtuCF2tlWwHafspmZTXS1/I9SG19WU=
Subject key identifier: F5:7D:1A:77:82:80:FF:E8:89:93:12:F8:8D:0D:A4:89:E6:1E:BC:42
Certificate issuer: /CN=98db3dcf25d2c22c5b997d157a7cefac4d45f762
Certificate serial: 0186BD79D57C0E7D3C441D1E2E96FECD5239
Authority key identifier: 98:DB:3D:CF:25:D2:C2:2C:5B:99:7D:15:7A:7C:EF:AC:4D:45:F7:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mNs9zyXSwixbmX0VenzvrE1F92I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/9X0ad4KA_-iJkxL4jQ2kieYevEI.roa
Signing time: Tue 07 Mar 2023 19:08:43 +0000
ROA not before: Tue 07 Mar 2023 19:08:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209007
IP address blocks: 185.188.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Mar 2023 18:14:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:bd:79:d5:7c:0e:7d:3c:44:1d:1e:2e:96:fe:cd:52:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98db3dcf25d2c22c5b997d157a7cefac4d45f762
Validity
Not Before: Mar 7 19:08:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f57d1a778280ffe8899312f88d0da489e61ebc42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:81:a6:da:2c:64:81:32:19:24:0b:01:90:73:
83:ec:ac:38:ec:3d:4d:97:23:3b:8f:64:a5:0c:02:
e9:5d:c8:43:c2:fa:00:c3:ac:f9:d3:44:6a:54:74:
5e:28:c5:1f:ce:3d:0c:97:24:7e:43:3c:50:da:c8:
8e:0d:b9:89:22:4e:e0:b8:5a:4b:d4:32:ae:87:82:
3c:eb:77:eb:89:ff:0a:06:82:ba:53:04:aa:fa:f9:
97:0d:27:1b:b1:7d:fa:6a:4a:ab:30:80:7d:0b:98:
30:b4:a1:d8:ed:7a:34:18:25:93:51:65:ec:94:c0:
73:77:d4:8b:21:a7:cc:43:22:fa:55:12:fc:ea:07:
e1:6a:14:3e:43:76:cf:08:b4:ea:cc:27:c4:e1:31:
e3:ae:d5:7b:2a:9d:85:40:02:f4:e7:ed:c1:04:65:
f0:20:3e:bb:62:55:f2:11:b5:46:49:4f:57:3b:1c:
7f:c0:ce:2c:ea:41:21:39:dd:4a:48:8d:4d:a2:6d:
c5:92:6f:8c:cb:3d:8e:d8:d4:ef:ab:66:ee:a6:c6:
c0:3d:51:bb:50:f1:df:5f:11:00:5e:88:ee:2d:65:
66:4d:a8:59:08:c1:ea:2e:a2:09:8b:46:0f:e8:8c:
d5:66:32:b6:ef:14:8d:66:02:18:e3:ae:91:08:d7:
49:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:7D:1A:77:82:80:FF:E8:89:93:12:F8:8D:0D:A4:89:E6:1E:BC:42
X509v3 Authority Key Identifier:
keyid:98:DB:3D:CF:25:D2:C2:2C:5B:99:7D:15:7A:7C:EF:AC:4D:45:F7:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mNs9zyXSwixbmX0VenzvrE1F92I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/9X0ad4KA_-iJkxL4jQ2kieYevEI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/f3eb66-d7d7-411a-ad0b-e538e29fb1c0/1/mNs9zyXSwixbmX0VenzvrE1F92I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.29.0/24
Signature Algorithm: sha256WithRSAEncryption
30:ec:8d:e8:73:e7:f6:ab:1d:b5:c2:91:f7:5e:ce:99:6d:c0:
e7:c7:d4:53:80:e6:8e:3b:a5:d9:aa:b1:42:08:24:64:88:f0:
65:e3:70:2b:43:be:5c:5c:06:bb:57:30:14:da:e5:cf:ad:dd:
a2:ca:2c:e6:0c:d0:e0:b4:96:95:f2:a3:f7:8f:ca:22:49:b0:
28:39:51:bc:80:cf:2a:dd:ee:14:f1:5d:4e:25:ef:70:3e:8c:
c7:df:26:06:6e:01:8f:d7:f5:54:13:a7:9d:2f:99:8f:1d:3c:
93:0f:6e:06:a9:63:af:3f:ac:a4:14:4e:e7:81:3d:3e:0e:ee:
7a:53:c7:76:89:94:16:f5:32:83:0a:46:16:c0:2c:0a:8e:2d:
23:f1:8b:5b:2f:17:e4:77:e5:a0:5e:30:9f:cf:d9:64:20:03:
87:94:ce:d5:3c:0e:5f:ed:29:3b:2a:5a:6d:60:d0:8c:45:7b:
57:5f:d9:1c:2e:06:5c:6c:07:26:6a:04:32:d3:34:aa:20:95:
82:74:bc:84:1b:ea:aa:af:f8:9b:44:f7:a7:96:90:3c:74:d0:
53:53:38:5e:f8:d2:7a:9f:a1:ed:93:c9:c6:66:ff:2c:5d:9b:
d4:59:ee:da:3c:0e:7b:a9:86:82:a5:53:33:10:c4:42:cb:45:
a0:3b:3e:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:53 2024 by rpki-client on console-ams.rpki-client.org