Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/AZ06PS9HBODcosv671r0KUwQELs.roa
File: AZ06PS9HBODcosv671r0KUwQELs.roa (raw, json)
Hash identifier: MOhN5d9wlMI+S9fnI6OdCU/Li8xv349z3F72ARJlzuc=
Subject key identifier: 01:9D:3A:3D:2F:47:04:E0:DC:A2:CB:FA:EF:5A:F4:29:4C:10:10:BB
Certificate issuer: /CN=b48f41afdc609568fb2338fdb20b2d0c422b723b
Certificate serial: 01911220CB7D47EE8D92545B5736527F40CD
Authority key identifier: B4:8F:41:AF:DC:60:95:68:FB:23:38:FD:B2:0B:2D:0C:42:2B:72:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/AZ06PS9HBODcosv671r0KUwQELs.roa
Signing time: Fri 02 Aug 2024 08:07:04 +0000
ROA not before: Fri 02 Aug 2024 08:07:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 185.90.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 09:19:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:12:20:cb:7d:47:ee:8d:92:54:5b:57:36:52:7f:40:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48f41afdc609568fb2338fdb20b2d0c422b723b
Validity
Not Before: Aug 2 08:07:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=019d3a3d2f4704e0dca2cbfaef5af4294c1010bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:2b:1b:d3:20:64:8c:85:5f:1b:55:a2:0e:52:
f7:1c:f4:27:15:65:20:be:17:aa:b0:2f:3e:a5:ee:
a3:74:d1:9b:43:e5:ce:02:d9:65:4e:38:1f:db:04:
66:c4:61:fa:22:7c:27:34:dc:86:77:db:f9:70:ef:
62:70:82:21:db:b6:3b:c2:61:49:7f:cc:9b:98:b1:
47:ad:05:89:aa:9b:01:3b:a0:3a:79:c8:9f:7e:b9:
fb:3e:29:cf:b3:89:97:5a:00:5f:47:b6:7d:34:c3:
18:b1:41:bd:8f:fa:2b:24:6d:96:a8:08:6e:c4:15:
1c:fe:27:3c:6e:11:b4:21:ff:03:59:39:47:40:6d:
26:6f:3a:4d:89:2d:ba:08:6e:19:2c:7e:4b:ba:7d:
74:86:cd:44:b3:a1:89:98:63:c4:95:da:33:16:38:
94:62:84:40:31:21:31:8f:cf:16:12:1e:d4:f1:eb:
c1:1f:2c:76:96:05:48:26:f7:e3:f0:c8:69:47:77:
7f:c3:1c:6a:4b:59:1d:25:d3:00:f9:2d:bd:68:59:
4c:d4:21:db:3c:ef:91:38:62:38:2d:d7:bb:2f:c2:
20:be:26:f0:fd:67:46:91:ea:ff:c4:af:6f:3c:9c:
c1:a9:6a:dc:69:5a:dd:92:4b:98:30:92:be:29:4d:
7e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:9D:3A:3D:2F:47:04:E0:DC:A2:CB:FA:EF:5A:F4:29:4C:10:10:BB
X509v3 Authority Key Identifier:
keyid:B4:8F:41:AF:DC:60:95:68:FB:23:38:FD:B2:0B:2D:0C:42:2B:72:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tI9Br9xglWj7Izj9sgstDEIrcjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/AZ06PS9HBODcosv671r0KUwQELs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/485769-5835-47f4-a9ff-8ec68e7886e2/1/tI9Br9xglWj7Izj9sgstDEIrcjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.154.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:f7:12:eb:bd:2b:c4:2a:f3:7a:be:76:d4:a8:21:38:c7:2d:
d3:ae:b2:b3:94:6b:bb:a3:93:b5:4f:81:ea:51:3b:55:e8:7f:
82:88:b1:50:52:69:7b:ea:33:a6:b8:ed:fb:8c:4b:aa:1b:6b:
3a:2b:e3:c6:12:df:2a:1e:66:43:b5:60:fe:53:93:7b:c6:77:
63:29:66:18:21:9f:ec:c7:5e:16:8c:1a:00:c4:f3:b5:9d:e8:
8c:62:46:59:31:11:ec:0c:05:f4:ee:d5:b5:51:a8:6d:4d:80:
a1:73:53:4c:75:03:27:1f:37:c5:ec:fd:04:b8:c3:04:7b:b5:
94:97:bf:87:57:e9:8d:26:a4:92:e3:f8:ed:52:c2:f4:5b:84:
01:d1:ca:1a:9e:a1:dd:59:ac:30:f2:7a:74:3e:7d:81:4a:1e:
fe:5b:5f:36:26:2d:27:da:c0:cf:18:72:53:73:f0:98:bf:08:
11:6d:47:89:e8:17:0b:17:e3:5d:47:51:cc:a3:f3:b0:45:83:
ca:b4:64:e7:c2:26:81:53:d8:88:fe:54:69:f5:f2:38:d4:f9:
c2:e9:53:60:96:ba:27:ee:b7:74:4c:3f:69:84:93:a5:bc:0d:
c4:4d:41:78:2d:a3:b0:bf:a7:11:48:b3:dd:e8:3a:85:05:54:
68:78:bb:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:50 2025 by rpki-client