Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/IDO3WmgvTLNjjBI1cs-bCsbrCb4.roa
File: IDO3WmgvTLNjjBI1cs-bCsbrCb4.roa (raw, json)
Hash identifier: x24xXbRNFZ/eRMMwvVBG8L3K4/uY+be129TQzomque0=
Subject key identifier: 20:33:B7:5A:68:2F:4C:B3:63:8C:12:35:72:CF:9B:0A:C6:EB:09:BE
Certificate issuer: /CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Certificate serial: 01856D8AFF147A96E8883E7B0CD0A2C45E96
Authority key identifier: 7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/IDO3WmgvTLNjjBI1cs-bCsbrCb4.roa
Signing time: Sun 01 Jan 2023 13:35:03 +0000
ROA not before: Sun 01 Jan 2023 13:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51025
IP address blocks: 185.115.3.0/24 maxlen: 24
185.115.0.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:ff:14:7a:96:e8:88:3e:7b:0c:d0:a2:c4:5e:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e65dab23940cb394f9aaa664fea4d6f8f42e318
Validity
Not Before: Jan 1 13:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2033b75a682f4cb3638c123572cf9b0ac6eb09be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:7d:df:6d:ff:b1:48:d6:6a:6b:5a:d6:50:e0:
96:28:06:72:2b:39:37:a3:f6:48:8c:e8:4b:1b:72:
9d:31:5c:06:15:8d:f4:35:48:c9:e8:2c:27:c2:ba:
98:9d:6d:2a:24:d6:8c:17:22:52:b9:94:11:22:54:
4b:1b:50:38:b0:40:5e:c4:03:7e:85:f7:f3:33:ce:
b6:07:c6:69:6e:f0:01:84:77:a1:6b:4f:67:c1:1f:
37:e2:03:a6:76:06:88:22:af:c3:3d:42:2c:ab:5e:
db:40:67:45:ff:66:b0:1d:2e:5b:33:59:8c:24:32:
97:87:95:e5:54:6d:93:0f:24:85:2d:8e:e8:77:80:
ac:b0:f1:7e:59:04:d0:73:99:b3:2f:87:39:5a:2b:
b3:ff:30:b7:64:59:46:42:76:3c:a0:a7:cf:2a:fd:
78:4d:f4:7f:8b:d4:c0:23:61:c2:a6:c6:71:71:bc:
82:b5:c5:e0:92:5f:3e:01:bb:f8:94:b3:3e:a0:e8:
3e:6d:39:a8:f8:cb:23:02:b3:00:b1:b9:3f:d6:92:
2a:92:af:3b:20:f9:47:02:e9:6a:dc:55:b0:d3:bf:
e7:c2:a7:41:5b:6f:4f:b9:be:56:70:aa:de:80:57:
c0:17:34:26:b9:ee:d4:81:2d:9b:ce:19:e6:69:7e:
a8:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:33:B7:5A:68:2F:4C:B3:63:8C:12:35:72:CF:9B:0A:C6:EB:09:BE
X509v3 Authority Key Identifier:
keyid:7E:65:DA:B2:39:40:CB:39:4F:9A:AA:66:4F:EA:4D:6F:8F:42:E3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fmXasjlAyzlPmqpmT-pNb49C4xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/IDO3WmgvTLNjjBI1cs-bCsbrCb4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/58ebb1-dbec-47f9-bb96-849cfcabb657/1/fmXasjlAyzlPmqpmT-pNb49C4xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.0.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:fe:8a:d2:76:ff:69:3e:31:23:7f:78:68:68:a6:4a:07:40:
01:dd:38:27:98:ea:3c:c1:d2:f7:da:2a:f8:f1:8a:38:95:12:
17:49:f4:b1:2b:f4:6c:13:2f:bc:7e:7e:0d:c8:d8:1c:5e:ab:
f6:9e:c3:2c:80:81:08:88:f6:d7:87:d5:16:f9:dc:9f:2d:04:
1c:a9:78:e3:d1:c1:e1:5d:82:5b:fe:63:43:1f:9f:3d:58:b4:
f4:d7:37:1f:c0:21:96:fd:1a:74:52:16:c9:aa:39:c6:a4:53:
d0:6f:3e:fc:fe:44:14:6b:8c:be:cd:c4:01:a9:21:68:7f:17:
9c:34:00:82:11:91:64:64:4f:f4:99:66:da:3d:7a:42:34:91:
2d:b4:3d:23:ac:21:73:2f:db:f2:8b:52:04:e6:c1:6d:1a:83:
60:07:7d:dd:ce:11:53:07:7b:bf:91:dd:72:af:08:7a:17:ff:
d9:e3:bb:fd:e8:15:63:f4:d4:47:0b:7b:9b:7a:82:8f:20:be:
27:43:12:9c:c0:62:7b:d5:8d:28:63:85:6e:7a:c6:a7:c3:d8:
e8:ab:66:f2:e9:ea:36:89:1c:2a:19:3a:f4:80:c8:6e:ac:f9:
d4:20:4e:bd:98:06:f5:d0:58:27:f0:51:62:5c:38:9a:e8:71:
25:ff:22:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:48 2024 by rpki-client on console-fra.rpki-client.org