Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/k75NdKfsr3XP7cp26RvoahZDkdo.roa
File: k75NdKfsr3XP7cp26RvoahZDkdo.roa (raw, json)
Hash identifier: 0k+n9w3nZ/3ApLhf7bf6daNoSCOT6xYeaRxHPsdZFkA=
Subject key identifier: 93:BE:4D:74:A7:EC:AF:75:CF:ED:CA:76:E9:1B:E8:6A:16:43:91:DA
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 01857139AA4278E06181688AD19C00A3AA00
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/k75NdKfsr3XP7cp26RvoahZDkdo.roa
Signing time: Mon 02 Jan 2023 06:44:42 +0000
ROA not before: Mon 02 Jan 2023 06:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60218
IP address blocks: 185.32.64.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:aa:42:78:e0:61:81:68:8a:d1:9c:00:a3:aa:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 2 06:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93be4d74a7ecaf75cfedca76e91be86a164391da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:99:b6:39:24:0c:31:e3:c9:0d:a0:43:33:d9:
ac:e2:ec:36:be:18:e8:69:aa:e5:de:cb:2e:ad:23:
0d:c4:8e:61:b3:1d:fe:b4:6d:96:a6:6d:f5:c8:f6:
8b:1c:32:aa:9c:4b:62:af:92:eb:8d:a7:42:cc:30:
4a:46:bd:c0:9a:be:75:67:b7:24:12:91:1b:cd:7f:
64:c9:af:ce:82:87:76:7b:20:05:c5:45:5d:d4:8b:
4b:7d:cf:b8:1e:82:97:1c:98:48:df:84:4f:03:a2:
f4:ab:75:e8:87:cb:d7:5a:d2:ec:b1:3a:87:72:91:
77:88:fe:6d:e2:bf:7d:2e:3c:66:b2:5a:bb:65:f2:
ab:81:d1:0d:81:71:a9:fe:94:b5:f9:0f:ec:da:6b:
86:fa:8d:cb:56:ff:2c:8c:94:cf:24:9f:5c:ee:de:
ea:58:11:2b:0e:59:88:0f:70:46:d2:ef:61:24:c5:
52:24:09:8e:dc:f5:b3:a1:68:c5:c0:6d:e0:40:6a:
75:0b:60:b4:55:69:f6:0f:cd:db:e9:12:70:07:96:
f3:5a:b3:b3:de:7d:f5:2f:99:e9:31:3d:46:cd:dd:
0f:a6:fb:b5:8b:b2:4b:cf:d8:9a:92:0a:5a:43:08:
3c:cf:ac:b4:0e:bd:a2:e9:d6:f0:78:ec:39:73:58:
1d:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:BE:4D:74:A7:EC:AF:75:CF:ED:CA:76:E9:1B:E8:6A:16:43:91:DA
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/k75NdKfsr3XP7cp26RvoahZDkdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.32.64.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:a8:67:df:71:b7:74:ee:25:80:21:f6:d7:37:30:a4:05:51:
f0:c2:e1:8d:f5:64:23:20:fa:e7:4d:bf:f7:db:01:52:4d:66:
49:c2:f6:22:bf:4c:0e:ba:0a:32:cf:6d:d0:39:37:64:78:40:
89:5b:0e:ae:d0:e9:fa:4c:a8:6d:cd:6d:42:13:63:29:64:b4:
ff:6e:b3:b0:b7:6c:63:39:af:22:e4:9f:08:39:58:de:45:da:
48:9d:ba:71:00:6a:4b:83:8f:a5:e2:f1:cd:64:14:0c:29:a2:
e4:11:23:9d:0e:41:26:cd:61:9e:b5:76:54:e5:17:c8:1d:d8:
f9:8a:db:69:2c:22:21:04:2f:b3:df:20:3a:37:40:0d:2a:34:
5f:5f:66:f7:18:b3:1a:36:bb:9b:62:e5:52:2d:1e:60:19:0e:
a8:ce:1e:1f:07:ca:96:25:28:4f:31:16:d4:dc:68:6d:4d:b1:
d0:b7:c3:4f:5d:d4:c0:15:84:b7:9c:03:00:32:ba:5b:be:27:
ee:08:45:f4:03:07:09:83:b0:78:9c:89:2a:6b:4a:96:16:23:
5b:79:c2:57:4e:30:38:7a:c2:88:be:0a:85:d9:9d:f3:fe:ca:
b6:6b:fb:1b:ba:4d:85:b9:d7:6a:94:67:f8:cf:c9:d9:d0:1a:
de:a5:6c:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:25 2024 by rpki-client on console-ams.rpki-client.org