Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/R20MgNFMf_a53pn43ba3Dkdh5dI.roa
File: R20MgNFMf_a53pn43ba3Dkdh5dI.roa (raw, json)
Hash identifier: jKs0+YR+Ul1InmlPtGVDHfDCL349TShyeEKr5Bi9v70=
Subject key identifier: 47:6D:0C:80:D1:4C:7F:F6:B9:DE:99:F8:DD:B6:B7:0E:47:61:E5:D2
Certificate issuer: /CN=7affbbb1e445dc2b8f11421420eb3c16f564ee61
Certificate serial: 019243E36568B1B8DEF5B2C0E8D74BB82461
Authority key identifier: 7A:FF:BB:B1:E4:45:DC:2B:8F:11:42:14:20:EB:3C:16:F5:64:EE:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ev-7seRF3CuPEUIUIOs8FvVk7mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/R20MgNFMf_a53pn43ba3Dkdh5dI.roa
Signing time: Mon 30 Sep 2024 17:03:48 +0000
ROA not before: Mon 30 Sep 2024 17:03:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3280
IP address blocks: 185.1.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Nov 2024 13:29:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:43:e3:65:68:b1:b8:de:f5:b2:c0:e8:d7:4b:b8:24:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7affbbb1e445dc2b8f11421420eb3c16f564ee61
Validity
Not Before: Sep 30 17:03:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=476d0c80d14c7ff6b9de99f8ddb6b70e4761e5d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0f:14:15:2d:00:35:cd:f3:04:fc:25:45:d3:
34:a0:71:2f:e4:4d:28:9e:e8:e5:06:d4:81:f1:b6:
3c:16:d0:74:bf:43:7e:83:b2:a9:85:02:69:0e:0b:
1b:cf:bd:22:24:16:0a:d6:8a:d1:37:ea:22:b3:dc:
74:4c:8e:ee:6d:ed:76:c3:01:09:77:86:27:dd:d8:
ec:d0:83:08:eb:47:76:40:5b:5d:0d:b0:e7:fe:8d:
55:9b:da:e4:c1:00:0c:80:8e:79:36:25:08:08:9f:
ad:eb:43:d6:8d:0c:21:63:54:9b:a6:bf:f0:b5:a1:
9a:71:d5:8f:65:6b:57:0c:ea:b0:46:98:ed:8a:1f:
7b:5e:4c:1b:76:1c:fd:0f:69:f4:33:f6:df:32:69:
88:21:a0:c6:e5:39:21:cf:86:98:de:74:1f:42:67:
6b:5e:0f:c7:2e:4c:1a:60:bb:ef:10:a6:1e:4a:8e:
30:53:15:8c:86:b9:4c:d0:cd:31:26:ea:f6:f5:ba:
ec:65:ad:54:a9:14:b7:14:de:21:d0:f0:50:51:79:
43:10:42:3c:9b:d7:d2:85:58:c4:58:dd:d7:f3:13:
23:51:1c:75:4f:de:4b:ca:2c:72:6f:0f:b7:5d:38:
0d:a6:72:8c:ac:6c:25:d4:b6:95:82:b5:99:0d:07:
a8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:6D:0C:80:D1:4C:7F:F6:B9:DE:99:F8:DD:B6:B7:0E:47:61:E5:D2
X509v3 Authority Key Identifier:
keyid:7A:FF:BB:B1:E4:45:DC:2B:8F:11:42:14:20:EB:3C:16:F5:64:EE:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ev-7seRF3CuPEUIUIOs8FvVk7mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/R20MgNFMf_a53pn43ba3Dkdh5dI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7588b6-c470-428d-b39e-62f4d27a99d1/1/ev-7seRF3CuPEUIUIOs8FvVk7mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.179.0/24
Signature Algorithm: sha256WithRSAEncryption
89:78:84:3a:21:9a:ed:69:59:d8:6a:2e:91:d2:e9:8a:de:d5:
2d:0e:5b:21:05:7f:1f:91:49:77:b8:37:ce:15:7e:80:00:87:
c3:6a:57:10:8e:e8:04:9c:bf:b4:62:00:0a:ad:03:dd:0f:f3:
d0:76:2a:fb:fb:25:8f:68:6a:0b:87:b3:60:bd:4e:8e:27:5f:
93:67:e3:c4:86:eb:0b:ca:05:d5:d6:31:2b:6d:2a:51:e3:a9:
81:e3:a2:08:e2:94:4a:f6:17:29:0b:32:ee:1e:94:67:13:7e:
60:fe:71:82:f7:64:f2:d9:a6:58:99:62:4e:c4:7b:31:ba:91:
68:84:aa:ee:0e:75:d0:01:09:d9:06:59:94:29:66:18:f6:fc:
d8:57:ae:8f:ac:32:44:55:70:e4:81:f8:f0:1d:ff:dc:f2:14:
3e:3f:4e:e7:a9:b6:e3:1d:01:87:55:a1:42:4e:6d:ba:cb:c3:
cd:39:7d:ab:2f:27:09:1f:1c:b5:dd:3d:11:af:9b:10:09:7c:
52:e0:71:da:c7:b0:31:80:25:8f:fc:b5:98:ce:77:0d:d7:e3:
96:8c:30:e4:55:8a:07:d9:8c:44:41:fd:71:14:ff:73:44:0a:
eb:57:3a:56:94:82:5d:89:45:03:d2:d4:d3:94:b2:30:b1:91:
a6:ce:83:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 20 15:03:35 2024 by rpki-client on console-fra.rpki-client.org