Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/PzJoWnIvws6H9PULjRyr9U8EmF8.roa
File: PzJoWnIvws6H9PULjRyr9U8EmF8.roa (raw, json)
Hash identifier: LoJe1nAwfPIIaJualTwRUHPYdp2zjvMArATcYOcsOso=
Subject key identifier: 3F:32:68:5A:72:2F:C2:CE:87:F4:F5:0B:8D:1C:AB:F5:4F:04:98:5F
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 01917FE55960B972A6261682A4CF71AF0CCC
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/PzJoWnIvws6H9PULjRyr9U8EmF8.roa
Signing time: Fri 23 Aug 2024 15:40:22 +0000
ROA not before: Fri 23 Aug 2024 15:40:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 395374
IP address blocks: 185.18.123.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 23 Oct 2024 17:16:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:7f:e5:59:60:b9:72:a6:26:16:82:a4:cf:71:af:0c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Aug 23 15:40:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f32685a722fc2ce87f4f50b8d1cabf54f04985f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:1f:c5:85:44:45:d1:77:be:cd:fb:4d:c2:62:
22:31:cc:5d:c1:13:67:d8:78:bc:49:47:9f:98:a0:
6a:3b:41:92:f7:d2:74:08:90:28:50:3e:9a:c7:43:
45:0b:65:67:b0:fe:dd:47:0a:69:88:81:97:71:b6:
e8:3d:63:f6:06:3e:8a:45:8c:0d:2f:6d:bc:69:d3:
72:19:18:95:f8:e6:ac:6c:61:f8:48:9e:5b:a4:af:
ff:b8:89:d6:b7:43:8c:2f:2f:4c:eb:dc:23:38:93:
6c:56:97:54:89:3d:4a:36:54:cf:75:1d:9f:89:af:
4e:01:5a:6b:8d:68:6f:9b:67:82:ac:99:8f:9e:dd:
ee:1c:3d:71:4a:cc:48:33:92:68:2b:2b:b9:cc:a3:
b5:ee:6c:fa:97:07:0b:3b:71:2b:27:11:fb:a1:1b:
61:1f:79:1f:0b:67:dd:2e:05:0b:84:9f:99:d4:a9:
67:19:f7:00:33:29:d6:77:47:cb:b9:80:08:3c:69:
73:6c:d3:7c:c2:a2:fc:21:7a:91:9e:5f:28:fc:fa:
77:6f:45:71:e1:1a:d5:00:22:eb:20:23:88:7b:6f:
81:75:77:e7:a3:7b:94:c4:1b:09:a4:28:e1:f2:97:
40:88:b1:f9:bb:16:91:5e:3a:ce:9d:7a:93:cb:45:
4c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:32:68:5A:72:2F:C2:CE:87:F4:F5:0B:8D:1C:AB:F5:4F:04:98:5F
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/PzJoWnIvws6H9PULjRyr9U8EmF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.18.123.0/24
Signature Algorithm: sha256WithRSAEncryption
42:40:7d:c7:d7:8f:65:f2:32:ec:fa:79:fe:50:40:52:63:b6:
73:bf:a7:04:01:f6:89:26:3e:dc:52:34:82:8e:d9:8a:a1:22:
12:38:96:30:74:29:6e:b5:00:32:b5:8a:ff:3f:aa:63:07:bf:
10:7a:3d:e0:99:4a:59:c5:ea:99:ce:22:fa:0f:79:b4:0b:35:
9c:6e:8d:90:04:7f:1a:c3:e8:13:24:90:73:89:ce:ea:b2:15:
2c:fc:0a:35:62:5c:61:c9:f4:57:0a:45:48:ea:da:e3:5b:e2:
29:bd:34:b0:3f:29:72:bd:76:2e:3a:79:41:51:43:ee:85:3e:
08:ce:91:c8:5d:dc:4c:10:5a:30:be:2d:36:44:e4:f0:4f:79:
1a:90:0f:4e:51:12:5d:66:4d:e8:f9:54:63:89:45:d2:a9:62:
c7:bf:a7:50:ed:02:85:01:f7:25:d5:de:9f:43:6c:c1:d6:62:
32:06:65:77:f1:b2:c1:0f:1f:3b:3d:2c:ca:3d:3b:a6:26:3a:
4e:72:ee:d2:a2:32:a9:bb:ba:8a:16:e5:60:95:73:14:67:a6:
7c:e6:14:2f:32:6b:ce:c5:50:db:2b:f0:4f:e5:eb:5b:4d:7e:
06:2b:9c:c7:b0:a9:59:48:d5:a7:a7:ba:4b:ed:05:2b:a1:ed:
01:ba:47:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 23 22:04:18 2024 by rpki-client on console-ams.rpki-client.org