Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/MsDPv6HZUhBOand9q0oKyN-T2V0.roa
File: MsDPv6HZUhBOand9q0oKyN-T2V0.roa (raw, json)
Hash identifier: j8T5UsXo5d+voUP6DaHMJ7IYdc0BPy/xyzCzWKKTEyo=
Subject key identifier: 32:C0:CF:BF:A1:D9:52:10:4E:6A:77:7D:AB:4A:0A:C8:DF:93:D9:5D
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018570029E9C573B96B9A73F6595F1B9BDD0
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/MsDPv6HZUhBOand9q0oKyN-T2V0.roa
Signing time: Mon 02 Jan 2023 01:04:57 +0000
ROA not before: Mon 02 Jan 2023 01:04:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213002
IP address blocks: 185.241.10.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:9e:9c:57:3b:96:b9:a7:3f:65:95:f1:b9:bd:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 01:04:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32c0cfbfa1d952104e6a777dab4a0ac8df93d95d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ad:c2:64:08:bc:c0:03:92:50:0d:fc:bf:80:
3b:ac:6d:13:b9:e6:ad:56:0f:0e:73:e3:fd:2f:9e:
cf:0b:c6:05:dd:0b:d8:98:89:89:f3:b1:b3:43:a2:
d9:01:6e:a2:d4:a6:c4:80:af:76:77:3c:38:bc:e9:
3b:02:d1:50:8e:ad:47:0a:e5:ea:b8:53:24:81:75:
b6:cf:02:fc:7c:d2:b6:f7:44:98:c0:61:b1:3c:61:
54:55:ca:72:e2:35:6f:01:61:c6:9c:c6:5f:a7:ee:
b1:80:96:c4:b6:d4:03:83:3d:47:57:b9:ff:41:35:
0c:dd:28:df:4a:ab:8c:c5:a6:51:fc:43:14:9a:8e:
b9:c9:07:a1:9f:b5:8a:fd:50:e5:45:1f:2a:97:84:
ac:cd:0a:c6:c6:db:08:a8:a0:9f:b5:26:f9:53:e3:
3c:0f:9b:32:0a:6f:03:a7:04:1d:75:67:4c:0b:df:
46:e0:3f:48:70:eb:18:6c:ab:15:62:16:bc:3a:76:
da:f9:b0:0a:72:93:4b:ab:15:4e:a8:c9:cd:32:1f:
d8:a1:86:49:70:21:78:75:32:f8:0f:9f:3d:c1:af:
10:0e:7e:f5:b6:3d:ce:9e:e6:89:4b:0e:77:ed:e1:
d7:89:a0:28:3b:23:8c:7b:24:ba:9a:b1:20:9e:a6:
1d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C0:CF:BF:A1:D9:52:10:4E:6A:77:7D:AB:4A:0A:C8:DF:93:D9:5D
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/MsDPv6HZUhBOand9q0oKyN-T2V0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.10.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b7:d7:61:07:67:49:f1:ac:fa:86:3b:95:30:9d:ca:24:fa:
ac:c4:26:42:c2:5f:a2:45:d4:61:c0:7d:46:44:a1:1a:58:7c:
13:45:61:f1:67:bb:bf:5f:a1:d2:a9:1f:51:e8:74:cc:d2:44:
44:b6:a9:43:0e:0e:3e:9c:28:3e:89:ab:71:bb:64:2b:8d:75:
0a:ee:98:cf:db:94:6c:53:e3:a2:aa:63:db:8d:72:c4:53:d4:
5f:a4:db:9c:ef:d5:23:9b:af:77:28:42:c4:71:45:c7:79:92:
7e:78:3c:4e:20:89:b1:7e:6f:e2:0b:54:c7:4c:2d:5c:13:da:
ae:0a:48:12:22:7a:35:40:af:3e:a0:9d:70:c4:b3:33:c5:64:
c3:27:45:e2:93:b6:fd:6e:96:64:53:da:5d:08:52:c7:d7:99:
8d:f6:51:e2:0a:ae:17:16:fd:b1:7e:84:0e:3f:41:d4:8c:39:
71:09:19:a1:7e:61:fe:89:90:f4:b5:08:ab:40:8d:1d:e5:27:
05:67:23:1f:27:69:e0:7a:b7:5a:88:09:ac:e3:96:82:23:0f:
a6:4c:53:ac:f6:c4:52:f5:58:ef:f6:35:3f:03:4d:f1:e6:21:
83:94:66:1b:30:47:1d:6f:c7:23:7b:e7:2f:83:57:02:73:45:
74:52:02:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:44 2024 by rpki-client on console-fra.rpki-client.org