Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/E3m2b0Waesd54T3ItVp7g00kkHc.roa
File: E3m2b0Waesd54T3ItVp7g00kkHc.roa (raw, json)
Hash identifier: 1YbZ3/c3OlpvrGX7YHvoWAIAxlmgNfX/j0piHBuaGhM=
Subject key identifier: 13:79:B6:6F:45:9A:7A:C7:79:E1:3D:C8:B5:5A:7B:83:4D:24:90:77
Certificate issuer: /CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Certificate serial: 018571BA1E13E8BCCD7D8F1A3BFCD398C608
Authority key identifier: 41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/E3m2b0Waesd54T3ItVp7g00kkHc.roa
Signing time: Mon 02 Jan 2023 09:05:00 +0000
ROA not before: Mon 02 Jan 2023 09:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59441
IP address blocks: 185.165.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:1e:13:e8:bc:cd:7d:8f:1a:3b:fc:d3:98:c6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Validity
Not Before: Jan 2 09:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1379b66f459a7ac779e13dc8b55a7b834d249077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5f:13:af:17:b4:d3:bb:29:fc:71:a8:d3:cd:
3b:e4:a3:d5:08:e9:fa:84:a0:d1:0b:82:1b:1a:9d:
25:5c:40:53:b8:5a:7b:1f:a5:04:71:7f:4d:97:63:
66:fd:22:f8:46:38:cb:70:49:c1:dc:f1:49:2b:48:
50:e5:f1:bb:4a:a9:2b:f2:18:06:11:52:f1:df:01:
18:62:0d:e7:33:3b:da:4a:a5:2f:75:94:0c:9c:68:
40:9f:83:76:1c:d1:26:ad:93:93:3b:87:ae:30:39:
05:bf:f0:d4:48:57:9c:33:49:3b:8f:2b:e8:14:db:
60:23:54:37:10:d6:00:08:77:a0:67:7c:36:2f:ab:
12:25:c4:bc:b6:1b:c8:b7:ef:a1:2b:65:57:ef:5b:
c7:2e:a2:13:ad:44:7c:87:b2:6b:74:dd:e0:d7:dd:
0f:f2:b8:e4:3b:93:be:e1:63:5e:ab:d2:f4:47:f7:
c6:3f:cc:1d:af:3b:89:6b:f6:56:9c:1b:6c:4b:b7:
bb:ce:bf:ca:4b:23:30:39:3a:1d:a2:62:88:c9:b6:
1c:ee:5d:aa:c6:41:30:d5:e1:1b:c5:20:9b:28:f2:
4f:ba:52:71:88:9e:09:55:59:35:eb:6d:02:35:e9:
d8:64:8d:d4:ce:da:61:44:9a:75:30:ba:c9:60:cd:
23:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:79:B6:6F:45:9A:7A:C7:79:E1:3D:C8:B5:5A:7B:83:4D:24:90:77
X509v3 Authority Key Identifier:
keyid:41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/E3m2b0Waesd54T3ItVp7g00kkHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:6b:d8:29:fc:ae:8b:67:21:1a:36:ff:e4:81:8c:6b:5d:b2:
fb:fa:81:84:b2:98:4e:0e:7f:42:03:fa:1d:63:ec:e7:d9:83:
79:fe:7a:fd:23:5c:ee:6a:0e:03:a5:cb:e4:de:33:1f:ab:c5:
16:44:fb:8e:7d:fa:1a:f3:4e:67:4b:85:2c:c3:fa:c2:ae:2d:
ab:d3:2a:6b:f6:f8:10:a3:02:a5:92:68:04:fd:7f:ca:5f:27:
c3:36:6c:e8:ff:24:fc:b7:57:e9:27:b9:06:a9:3b:7c:84:d0:
bf:0e:8c:02:ae:ae:50:e8:8e:03:9b:3a:09:af:1a:63:07:4a:
a3:63:2b:3f:b3:55:db:64:4e:2d:50:81:0c:01:83:44:ec:27:
21:e0:c9:3d:2d:aa:eb:a1:19:09:02:0b:86:25:3a:ba:3e:5d:
74:c0:d1:62:c3:37:f6:48:09:1a:f8:18:36:9a:e1:72:a1:d5:
7b:6e:4c:39:c0:36:7e:86:92:7b:a5:4f:2f:1b:33:3c:fe:25:
eb:9c:02:39:20:00:d0:ca:26:05:32:3a:2c:3b:ae:80:0c:7b:
ea:28:42:62:31:db:38:f3:a2:b0:57:f4:cb:f4:aa:b0:4f:2a:
b6:4a:0a:84:b3:6a:08:19:c6:d6:1e:7d:42:33:18:93:1b:6d:
50:81:c0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:59 2024 by rpki-client on console-fra.rpki-client.org