Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/W395HzSggnN3F7hNrdaznkbKk28.roa
File: W395HzSggnN3F7hNrdaznkbKk28.roa (raw, json)
Hash identifier: L5SFnX0mw0r6+mwbHNUdPMDRV17rK5EajzQUzwUch+0=
Subject key identifier: 5B:7F:79:1F:34:A0:82:73:77:17:B8:4D:AD:D6:B3:9E:46:CA:93:6F
Certificate issuer: /CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Certificate serial: 018EC29B29DE2D542494238A16CC7C0E7EA8
Authority key identifier: F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/W395HzSggnN3F7hNrdaznkbKk28.roa
Signing time: Tue 09 Apr 2024 11:25:32 +0000
ROA not before: Tue 09 Apr 2024 11:25:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41327
IP address blocks: 185.197.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Apr 2024 13:51:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c2:9b:29:de:2d:54:24:94:23:8a:16:cc:7c:0e:7e:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4ef5dba100a92b2444f3e512d01a592c01951c2
Validity
Not Before: Apr 9 11:25:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b7f791f34a082737717b84dadd6b39e46ca936f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:d9:ac:72:71:fb:48:4f:69:f3:3c:e0:ac:b5:
48:64:76:14:29:bf:ca:f9:d6:7b:68:da:5b:91:2c:
14:b1:2a:e5:31:b3:11:71:03:e0:39:b9:1f:f2:d5:
0b:56:05:fc:9a:d9:07:90:ee:1e:70:5a:34:2d:7a:
36:47:d4:6d:ce:e7:48:4d:2d:53:96:3b:e3:87:aa:
93:88:b6:22:ba:12:5c:ad:f6:6d:0e:2f:9a:4d:0d:
f4:64:5e:65:28:15:6a:7c:8f:ce:f7:23:39:d8:42:
20:3a:16:cf:3a:76:a9:2a:31:6e:48:76:de:a2:2f:
c7:40:2b:7b:13:89:bd:a5:02:c5:8b:ff:0f:e6:8c:
8d:08:53:78:1b:d9:1c:93:43:81:8a:93:ef:4d:3d:
74:30:2b:f7:ce:c9:53:05:3a:ef:4f:c2:86:ec:d8:
f4:58:57:65:7e:4c:ca:b5:27:7a:81:be:4a:32:08:
19:79:c3:8b:cc:b6:cf:e9:88:09:eb:fd:fc:3b:20:
c6:ac:53:b0:3b:3f:23:08:f7:e9:89:e1:98:90:6c:
7b:9c:54:ed:fc:5e:e3:ec:04:83:f4:b0:15:3c:6e:
8d:6f:21:26:b9:18:65:69:47:5e:7d:fa:7c:8c:c5:
d5:56:4c:43:d2:21:51:1a:e0:87:86:05:54:3e:0d:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7F:79:1F:34:A0:82:73:77:17:B8:4D:AD:D6:B3:9E:46:CA:93:6F
X509v3 Authority Key Identifier:
keyid:F4:EF:5D:BA:10:0A:92:B2:44:4F:3E:51:2D:01:A5:92:C0:19:51:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9O9duhAKkrJETz5RLQGlksAZUcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/W395HzSggnN3F7hNrdaznkbKk28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/b35be1-6673-4811-a707-ad027e95c5c7/1/9O9duhAKkrJETz5RLQGlksAZUcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.197.10.0/24
Signature Algorithm: sha256WithRSAEncryption
00:cc:c4:00:5f:2c:96:94:a7:5b:ba:04:8b:2d:6b:e1:60:42:
2c:8a:f2:48:ff:60:c9:20:36:10:8e:de:60:ff:97:57:9c:10:
6d:31:31:2d:45:8d:d4:34:db:da:c6:d4:ee:2d:7b:b0:14:2b:
af:bc:be:23:04:01:48:58:17:9b:e4:d9:ee:b0:8e:a1:39:73:
95:c3:dc:b6:ae:4d:94:08:69:4f:d0:2f:b2:57:32:89:bd:0b:
ad:b0:0d:9d:e6:2f:05:3e:db:39:7e:2a:48:e4:35:4e:f1:54:
13:00:d9:34:8a:bf:52:7e:07:b0:aa:dd:d1:7c:56:d3:d5:0c:
20:b5:a4:11:84:a4:d4:8f:2f:59:a5:98:ea:06:4b:90:54:fa:
1f:6c:f4:d5:64:f8:56:f8:e5:55:8b:d5:44:a4:f5:7c:b1:7a:
a2:65:7b:90:f5:cb:4e:b5:87:12:84:d3:07:08:86:61:8c:ec:
a9:a0:41:43:ec:72:34:d6:c5:d8:11:1a:09:a3:88:ef:cd:4a:
08:69:8d:6b:c7:98:1a:68:af:e6:c5:60:29:2b:a2:e2:7a:09:
36:b7:a8:65:d8:e8:2e:10:26:3c:5d:8d:f6:e3:ee:45:0d:d9:
e4:e3:5f:9a:d7:02:cf:21:8b:8c:66:e2:0f:15:00:98:ce:60:
27:b5:09:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 9 18:16:48 2024 by rpki-client on console-ams.rpki-client.org