Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/_ktz0dGqXBvPXjnWlBi8Mk01Tq4.roa
File: _ktz0dGqXBvPXjnWlBi8Mk01Tq4.roa (raw, json)
Hash identifier: JFHv1fwhti61PmENV6IqWjRc1UCY81iWQx6SJVgtkYM=
Subject key identifier: FE:4B:73:D1:D1:AA:5C:1B:CF:5E:39:D6:94:18:BC:32:4D:35:4E:AE
Certificate issuer: /CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Certificate serial: 01856F14E883F1F54BF6DE0B4D0E1505CED0
Authority key identifier: 54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/_ktz0dGqXBvPXjnWlBi8Mk01Tq4.roa
Signing time: Sun 01 Jan 2023 20:45:19 +0000
ROA not before: Sun 01 Jan 2023 20:45:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 150303
IP address blocks: 185.104.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Jan 2023 16:19:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e8:83:f1:f5:4b:f6:de:0b:4d:0e:15:05:ce:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541fdc7a2f11a5766d3ad7bdf625ce5e119a8fdf
Validity
Not Before: Jan 1 20:45:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe4b73d1d1aa5c1bcf5e39d69418bc324d354eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d1:15:6a:bb:ea:d3:e6:96:9f:ee:4b:6c:fb:
9a:78:ec:50:52:b0:d3:5d:bd:14:2d:b7:29:b7:fa:
2e:4e:96:13:57:c7:46:36:0a:94:80:02:fa:ca:12:
35:a0:e1:ba:e3:10:0c:54:1a:ef:75:ee:59:14:99:
46:85:b2:99:c4:f6:69:b9:64:5a:e1:60:a7:00:5b:
ad:80:9a:73:fc:a8:7f:d6:18:b0:44:42:0e:89:54:
2f:47:bd:14:50:f8:9b:91:ad:78:9e:8e:4d:48:e6:
1a:84:f3:3b:97:4a:90:9b:7f:d9:2c:d9:2c:6f:13:
57:a3:29:ed:7e:93:61:55:fd:33:f0:ce:fb:bf:15:
8d:cb:b3:3e:69:0e:84:db:67:03:e8:0f:4f:e8:90:
d2:2e:99:6a:c3:c7:e9:ad:9e:d3:83:f7:ca:a3:bc:
36:36:ac:8e:3c:74:eb:e9:38:68:4c:1c:ca:9a:c8:
f4:32:0b:44:a6:7a:4c:7c:04:ef:94:ae:81:d8:53:
d9:f5:82:d4:62:04:f2:b0:04:26:3e:ea:d7:64:6c:
bd:09:08:5a:72:69:4f:32:aa:1f:f3:9b:e4:5a:50:
25:99:67:f6:ad:ff:ba:4e:03:b6:04:48:5e:f6:4d:
81:9b:11:9a:bc:34:5c:e7:84:9b:d0:fb:61:61:5f:
5a:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4B:73:D1:D1:AA:5C:1B:CF:5E:39:D6:94:18:BC:32:4D:35:4E:AE
X509v3 Authority Key Identifier:
keyid:54:1F:DC:7A:2F:11:A5:76:6D:3A:D7:BD:F6:25:CE:5E:11:9A:8F:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VB_cei8RpXZtOte99iXOXhGaj98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/_ktz0dGqXBvPXjnWlBi8Mk01Tq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8fad67-bb6b-4773-b81e-c900a89f20f1/1/VB_cei8RpXZtOte99iXOXhGaj98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.38.0/24
Signature Algorithm: sha256WithRSAEncryption
73:b5:bb:74:51:56:49:8a:d8:c5:4b:ad:b8:32:fa:04:b9:a4:
6f:e9:08:93:69:b0:1f:7a:02:60:3a:57:58:3b:ae:ca:fb:7d:
61:30:a6:ae:27:eb:be:3e:63:75:4c:30:78:ea:d2:e4:5c:c6:
06:4e:64:df:8f:b0:a6:f8:1b:3f:8a:a8:b3:07:78:14:59:77:
5b:b9:a1:93:c7:6f:92:d2:1c:7e:79:83:69:be:7d:63:b9:54:
f3:4b:e9:9a:e7:e2:38:d2:2f:da:e9:96:4c:6d:8f:ba:25:15:
c2:0b:3d:78:56:a7:1b:05:ff:8e:7b:f6:1f:36:d9:4b:26:24:
fd:b8:26:71:ea:76:29:92:18:ec:0d:51:e5:3b:47:64:f6:c2:
9d:86:98:2b:a7:f8:52:32:ee:1c:5e:13:ab:ca:10:14:ec:de:
04:5a:57:c7:5f:d5:fc:1f:86:19:d0:29:f0:ac:b5:f8:96:cc:
ce:b6:7e:9d:b2:1c:7d:99:08:9d:ff:0e:9e:0f:01:b3:57:05:
fc:3f:86:6d:23:1e:61:0f:ae:63:d1:4f:3a:71:96:98:63:16:
64:ce:0d:3c:0e:7f:92:56:2f:d6:7a:62:15:51:1f:1e:1c:a9:
17:72:16:47:8d:2d:3c:f2:5c:2c:30:85:67:da:f3:5b:48:57:
8a:ce:18:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:04 2024 by rpki-client on console-ams.rpki-client.org