Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/4nCz03BfozCmXJ4e285wOwxT0Zc.roa
File: 4nCz03BfozCmXJ4e285wOwxT0Zc.roa (raw, json)
Hash identifier: 8KGYsssOaKZ7+vgIdfrrGHw8GlsdDfwTXPR4dzMxMiw=
Subject key identifier: E2:70:B3:D3:70:5F:A3:30:A6:5C:9E:1E:DB:CE:70:3B:0C:53:D1:97
Certificate issuer: /CN=a98cfb9b5f445fd2f6ccfa179c37c53449b2af06
Certificate serial: 018570398A2343026F2BFC9C064485AA9AD7
Authority key identifier: A9:8C:FB:9B:5F:44:5F:D2:F6:CC:FA:17:9C:37:C5:34:49:B2:AF:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/4nCz03BfozCmXJ4e285wOwxT0Zc.roa
Signing time: Mon 02 Jan 2023 02:04:57 +0000
ROA not before: Mon 02 Jan 2023 02:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210498
IP address blocks: 185.140.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:8a:23:43:02:6f:2b:fc:9c:06:44:85:aa:9a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a98cfb9b5f445fd2f6ccfa179c37c53449b2af06
Validity
Not Before: Jan 2 02:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e270b3d3705fa330a65c9e1edbce703b0c53d197
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:a5:02:2a:c4:64:5b:34:53:91:18:41:27:
15:42:c8:a1:dd:e2:a9:ef:91:d9:51:af:ec:90:76:
f8:4f:18:41:eb:c9:fc:00:22:f1:1d:ff:c5:64:3b:
7d:8b:13:69:f0:ee:47:06:bd:62:80:4e:11:65:05:
03:fd:d2:1d:a9:ea:08:80:b3:d1:ac:5f:7d:0b:39:
9a:61:66:0a:e0:3e:3a:61:a7:d6:80:4a:25:4f:31:
6b:a5:99:92:a8:96:e2:3e:bd:63:ee:5a:fc:98:7b:
35:65:53:af:14:69:88:83:8f:cd:8f:94:0e:d4:ae:
c1:3d:8b:a0:e9:1e:a2:f8:e7:59:fa:bc:2d:db:ef:
24:8e:7f:e1:97:a1:da:08:64:65:15:47:24:4c:1f:
0c:cc:42:c0:62:c5:9c:0f:9c:11:5f:5e:b6:76:2d:
4f:b1:01:94:7e:ef:04:93:77:af:de:04:47:c1:ff:
e5:38:c4:b1:60:30:c0:77:82:f4:02:74:59:55:15:
e8:c4:7d:ec:14:25:63:8f:b0:37:a1:40:d8:76:b1:
13:1a:be:be:af:13:10:b9:d2:83:45:12:70:02:84:
0a:02:24:6b:6d:7c:34:7b:18:fb:54:cb:c9:33:23:
8f:a8:3c:7b:52:b9:cc:6c:f6:75:b0:2e:e0:fb:c9:
18:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:70:B3:D3:70:5F:A3:30:A6:5C:9E:1E:DB:CE:70:3B:0C:53:D1:97
X509v3 Authority Key Identifier:
keyid:A9:8C:FB:9B:5F:44:5F:D2:F6:CC:FA:17:9C:37:C5:34:49:B2:AF:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qYz7m19EX9L2zPoXnDfFNEmyrwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/4nCz03BfozCmXJ4e285wOwxT0Zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/df8551-3f9f-44b2-b7e4-886593f7dce0/1/qYz7m19EX9L2zPoXnDfFNEmyrwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.239.0/24
Signature Algorithm: sha256WithRSAEncryption
19:1c:3e:fd:6e:bd:de:58:35:36:0f:a2:4a:16:0c:3e:b5:f4:
84:58:3f:51:29:df:3c:b2:d3:88:12:b1:20:2f:b2:1f:b6:17:
41:4c:e8:a7:87:e5:bb:85:a6:5c:ab:93:b2:86:fe:d8:9d:34:
14:54:cf:68:8b:26:ab:cf:dc:78:9c:3a:86:68:82:27:00:fe:
07:47:f9:1c:f1:5b:f9:03:46:23:3a:36:2c:b9:81:cc:39:67:
0b:8d:21:6c:29:1a:b3:4d:85:81:b4:65:6b:d8:3d:cd:f2:57:
03:47:8e:88:52:fa:d3:76:cc:40:c5:3e:07:b4:cc:0a:68:70:
9f:35:c1:ec:ac:4f:71:a0:7f:ca:bb:f1:42:27:75:04:1c:58:
b6:96:0b:b5:79:3f:d2:8b:65:18:8d:a2:50:57:06:eb:5e:ab:
15:be:14:36:0f:d8:21:5e:48:98:ca:af:1f:a5:ef:86:91:53:
d1:f7:94:f4:b2:7e:15:fa:85:29:51:be:f3:54:6d:e3:02:14:
c9:4d:c8:75:61:ed:7c:cd:cf:e7:11:9c:bd:d3:f9:3e:b6:d2:
80:b7:ed:7d:4f:e0:e9:a1:48:58:92:44:e1:06:c2:d3:d9:31:
56:6b:10:2d:b3:9f:3f:89:ea:aa:40:87:fd:69:48:2c:9e:1c:
23:9b:96:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:10 2024 by rpki-client on console-fra.rpki-client.org