Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/ZR8wF4nmK4fRjy7Om0Czs-DEd6I.roa
File: ZR8wF4nmK4fRjy7Om0Czs-DEd6I.roa (raw, json)
Hash identifier: r/JhcP/WWM186GiRgb2zi2XwJX40S/1jHeVCb1XQ1pA=
Subject key identifier: 65:1F:30:17:89:E6:2B:87:D1:8F:2E:CE:9B:40:B3:B3:E0:C4:77:A2
Certificate issuer: /CN=cd108c225f2478cd4230179890d07284be1636cd
Certificate serial: 0190DFF90B6BD25501311A71874750E6C205
Authority key identifier: CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/ZR8wF4nmK4fRjy7Om0Czs-DEd6I.roa
Signing time: Tue 23 Jul 2024 14:22:38 +0000
ROA not before: Tue 23 Jul 2024 14:22:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 141759
IP address blocks: 185.202.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 02:23:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:df:f9:0b:6b:d2:55:01:31:1a:71:87:47:50:e6:c2:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd108c225f2478cd4230179890d07284be1636cd
Validity
Not Before: Jul 23 14:22:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=651f301789e62b87d18f2ece9b40b3b3e0c477a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:70:19:a8:a3:a1:b0:2f:8e:6d:8e:01:ad:a9:
b3:62:9d:06:c6:5b:85:e7:44:98:ab:d2:85:e1:86:
37:2f:1a:f6:4c:8c:4b:78:a6:f0:e5:4e:3b:39:64:
e7:51:64:18:2b:dc:50:f1:04:e5:48:48:03:4c:2c:
d3:5c:bf:86:0a:97:f0:49:db:b9:1b:3b:2d:e0:f1:
ce:4c:75:db:98:ad:0d:11:ca:55:1e:e2:53:fc:ea:
60:4c:33:7b:e5:24:ba:55:54:79:42:e5:a9:d0:94:
e8:7d:46:6f:7c:7c:9c:38:0d:b7:1b:cf:74:18:f8:
cd:c4:8d:ad:b6:b9:86:be:32:66:32:07:ec:f4:24:
81:4f:f9:13:b7:cd:e0:d4:60:e7:4f:65:c2:7e:a4:
dc:13:bb:9b:dc:a0:6f:e0:bd:cb:59:45:2f:93:f9:
d0:ab:b2:46:8e:36:7b:23:cf:76:30:d4:7a:ba:a4:
ac:ec:6a:9d:96:06:62:de:90:c5:59:98:df:1e:98:
00:0e:22:52:ff:3f:0b:48:46:c5:68:7f:68:f0:26:
b3:e6:91:e9:d1:61:ed:ec:d4:77:23:8f:27:ab:54:
ed:13:72:72:fd:65:67:0b:02:ef:fb:97:f1:b1:5d:
9f:22:72:07:ee:88:60:a1:e7:c6:9e:c9:3b:cc:7e:
af:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:1F:30:17:89:E6:2B:87:D1:8F:2E:CE:9B:40:B3:B3:E0:C4:77:A2
X509v3 Authority Key Identifier:
keyid:CD:10:8C:22:5F:24:78:CD:42:30:17:98:90:D0:72:84:BE:16:36:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zRCMIl8keM1CMBeYkNByhL4WNs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/ZR8wF4nmK4fRjy7Om0Czs-DEd6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/348ce5-ca20-4848-8844-ae50273681a7/1/zRCMIl8keM1CMBeYkNByhL4WNs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.100.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:40:3f:b6:1d:62:5f:60:3e:29:eb:90:12:ee:93:25:d6:b1:
6f:8f:c0:c0:ba:4b:f0:c4:32:aa:d3:3c:39:bc:84:12:58:be:
b0:c8:da:61:00:03:c0:13:57:d1:75:90:83:68:65:2c:fd:54:
5a:24:02:52:ac:aa:1a:f2:7e:26:d8:5e:82:ef:52:cd:1b:54:
9c:8e:d5:bc:36:24:53:66:09:ba:9a:3e:de:e9:3a:14:b9:3d:
06:eb:28:ad:97:46:db:be:81:39:7d:0c:bc:ac:46:4f:ca:2b:
24:97:a4:50:26:f8:f1:06:7e:18:79:14:59:c6:8e:e1:47:d9:
b5:69:78:df:b8:95:67:9a:06:31:31:2f:48:e5:9a:61:d5:a0:
ca:bf:a0:06:b0:91:04:eb:1c:d5:0d:31:c9:67:0a:bd:4c:b0:
9a:cf:d8:bf:44:b8:be:8e:7b:37:d0:fb:e2:8e:21:89:4b:5a:
de:8f:bb:90:27:49:f6:0a:7f:55:fa:6f:46:fe:3c:62:b1:d0:
53:55:1d:62:f5:37:5b:53:fd:0c:1a:b4:a4:9f:23:ac:85:87:
ab:eb:9d:f8:a6:7b:af:45:61:c3:04:30:ef:a8:0a:2a:b7:2b:
dc:25:aa:b4:3b:13:01:ad:83:54:07:d4:03:26:0e:62:73:1e:
9e:dd:cd:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 04:28:30 2024 by rpki-client on console-fra.rpki-client.org