Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/ImIWY3rcuQy4ZjmrVzbm_NcqYJE.roa
File: ImIWY3rcuQy4ZjmrVzbm_NcqYJE.roa (raw, json)
Hash identifier: YfSiOvt8d4GGXsQQPuW2H9L6YElga8ue8jHzrZksOXs=
Subject key identifier: 22:62:16:63:7A:DC:B9:0C:B8:66:39:AB:57:36:E6:FC:D7:2A:60:91
Certificate issuer: /CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Certificate serial: 018571BA1EA93C882435A55FD6D3358E1DA2
Authority key identifier: 41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/ImIWY3rcuQy4ZjmrVzbm_NcqYJE.roa
Signing time: Mon 02 Jan 2023 09:05:01 +0000
ROA not before: Mon 02 Jan 2023 09:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64434
IP address blocks: 185.165.30.0/24 maxlen: 24
185.165.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:1e:a9:3c:88:24:35:a5:5f:d6:d3:35:8e:1d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41251342e05d58b3b7fc93a15cba1eb71e542385
Validity
Not Before: Jan 2 09:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=226216637adcb90cb86639ab5736e6fcd72a6091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:be:18:33:6e:84:58:8d:cc:52:7c:69:b0:e5:
bf:07:30:39:e0:19:f5:af:51:64:90:c0:b3:b2:d3:
a3:2e:57:c2:ff:10:95:34:87:d8:67:4b:1a:b6:f6:
aa:6d:66:48:4c:b3:1a:04:aa:29:51:a5:e3:ec:55:
08:06:33:0d:0b:4a:16:e1:78:f7:9e:1b:df:ab:bc:
8b:e8:48:54:e7:59:65:71:61:4b:1c:a0:cb:ff:f8:
ee:37:bd:71:f7:a4:1b:88:d0:96:38:03:12:0e:61:
8c:52:de:a0:cb:5d:49:31:e3:b1:84:b1:f4:ef:4b:
f2:25:65:e8:67:65:f7:d9:f0:4b:84:79:3b:b2:14:
be:49:df:5a:f1:a1:ed:a5:05:6c:27:02:a5:71:9f:
99:47:58:06:fe:f4:c2:69:34:5b:fd:ff:e2:1e:ea:
52:bf:3f:85:68:09:69:58:4a:44:f1:5f:c4:30:71:
c3:fe:97:ce:35:f2:20:35:ac:c3:7b:d7:62:f4:e9:
61:ed:6f:fd:b3:d0:52:6c:89:e8:46:44:ad:c3:73:
4d:f2:21:53:f1:28:33:0e:fe:90:1e:34:31:4e:99:
de:18:4f:b6:4d:f4:29:f4:12:b6:e2:3f:c5:24:fa:
29:0a:0c:9f:b9:0a:bd:12:2c:ac:a9:0b:3f:ea:f3:
b6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:62:16:63:7A:DC:B9:0C:B8:66:39:AB:57:36:E6:FC:D7:2A:60:91
X509v3 Authority Key Identifier:
keyid:41:25:13:42:E0:5D:58:B3:B7:FC:93:A1:5C:BA:1E:B7:1E:54:23:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QSUTQuBdWLO3_JOhXLoetx5UI4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/ImIWY3rcuQy4ZjmrVzbm_NcqYJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/ad603f-8fea-4849-9edb-c3668b503a1c/1/QSUTQuBdWLO3_JOhXLoetx5UI4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.28.0/24
185.165.30.0/24
Signature Algorithm: sha256WithRSAEncryption
83:ca:bf:38:6b:12:3f:b5:17:73:d6:58:d3:d9:21:fc:dd:d6:
69:23:63:4f:17:77:a5:32:24:4e:19:30:f2:c0:ce:39:22:90:
d6:10:24:9e:fb:da:0d:0c:54:5b:d9:09:99:5a:9e:9c:25:c9:
42:2a:b0:c8:11:36:5e:e7:76:ab:4d:89:90:89:90:4c:75:e1:
b3:ed:21:43:16:45:db:e7:ae:82:df:4c:69:c2:8e:87:e3:59:
4a:07:65:fc:ef:aa:e2:24:9b:19:df:2d:82:bb:5d:94:cd:58:
07:e1:35:a4:30:58:a0:8a:0c:4b:fb:d6:b2:5a:e6:61:1f:2e:
06:d5:db:4d:19:f2:e4:34:b3:f5:40:84:cf:e3:f0:62:20:ff:
fe:e3:43:40:02:a6:d8:67:ee:30:e5:59:2f:80:ed:9a:6b:59:
ea:df:17:6d:0f:80:85:a9:b6:17:fd:15:3b:05:99:9e:11:bc:
9c:f3:f0:9b:e9:da:2f:1a:38:87:95:05:85:f7:0b:a4:1f:3d:
11:38:46:f2:9a:86:32:ab:52:c4:80:76:e4:81:ed:8a:b0:9a:
11:b8:1c:09:2e:b7:d0:e3:7e:f2:a4:1e:0e:c9:d2:93:e8:d8:
8b:ef:80:32:66:14:b1:b4:79:9b:bd:b7:47:17:e5:ba:1c:74:
f1:7e:b5:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:59 2024 by rpki-client on console-fra.rpki-client.org