Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/dMNsGS9MNd42vtUH9mJcC4r-nbo.roa
File: dMNsGS9MNd42vtUH9mJcC4r-nbo.roa (raw, json)
Hash identifier: RM/dUQNUG2E1W0IDkkmS7T2k2hvfE+/ZNE9frpNZhM8=
Subject key identifier: 74:C3:6C:19:2F:4C:35:DE:36:BE:D5:07:F6:62:5C:0B:8A:FE:9D:BA
Certificate issuer: /CN=65cb4f6cd8489fddd173970a0ef44d4e1547a405
Certificate serial: 0190E376FF2A0E4B08690F3C9F5DB018CABD
Authority key identifier: 65:CB:4F:6C:D8:48:9F:DD:D1:73:97:0A:0E:F4:4D:4E:15:47:A4:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/dMNsGS9MNd42vtUH9mJcC4r-nbo.roa
Signing time: Wed 24 Jul 2024 06:39:04 +0000
ROA not before: Wed 24 Jul 2024 06:39:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 28730
IP address blocks: 185.176.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Jul 2024 12:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e3:76:ff:2a:0e:4b:08:69:0f:3c:9f:5d:b0:18:ca:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65cb4f6cd8489fddd173970a0ef44d4e1547a405
Validity
Not Before: Jul 24 06:39:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=74c36c192f4c35de36bed507f6625c0b8afe9dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:17:63:bd:c0:8d:b8:01:7f:fe:6a:65:b3:32:
85:f8:35:19:98:d9:cd:0e:74:bf:8b:13:6f:3f:b2:
58:fa:23:77:88:cc:73:b7:4f:56:67:85:dc:74:4c:
34:39:5e:21:80:31:fb:ee:ce:2a:fe:98:84:45:9e:
b0:d4:60:8a:0b:42:e9:c8:78:b9:bd:07:df:46:ce:
5c:e3:d4:8e:b0:91:b3:5e:a8:d8:a0:4e:0c:8c:2b:
cc:5c:fc:50:98:2f:c1:3a:19:6d:80:bb:1e:cd:c7:
27:f5:51:42:d9:9a:df:bc:45:34:d2:19:cb:64:28:
00:10:10:8a:54:b8:07:74:f3:e0:01:d4:65:f0:b8:
3d:10:18:bb:a9:de:79:b6:62:01:2f:05:a2:14:a1:
fd:32:6c:d9:a5:56:e7:ce:06:c0:38:1b:28:cd:94:
3b:8a:80:a3:8d:8f:43:30:76:17:b0:b5:83:18:f8:
78:26:d6:69:ff:25:b1:d7:d4:eb:1a:8d:9c:d9:b3:
f0:0a:e6:59:dc:93:fe:31:77:31:4a:88:c2:70:b4:
b2:67:f9:31:92:f3:70:b1:19:d1:2e:d5:93:c6:f8:
28:43:7d:ac:f5:f7:f7:5a:66:9c:6d:96:e3:a1:23:
94:38:79:bb:3d:45:bd:69:15:dc:f0:52:34:75:c9:
13:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:C3:6C:19:2F:4C:35:DE:36:BE:D5:07:F6:62:5C:0B:8A:FE:9D:BA
X509v3 Authority Key Identifier:
keyid:65:CB:4F:6C:D8:48:9F:DD:D1:73:97:0A:0E:F4:4D:4E:15:47:A4:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZctPbNhIn93Rc5cKDvRNThVHpAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/dMNsGS9MNd42vtUH9mJcC4r-nbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/736a4a-39e0-4119-b4cb-082d924c2f33/1/ZctPbNhIn93Rc5cKDvRNThVHpAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.47.0/24
Signature Algorithm: sha256WithRSAEncryption
78:94:9c:5b:cb:e4:30:85:16:46:de:c5:ac:8b:ac:a9:a6:e2:
fc:b0:9b:8f:3d:b4:a9:77:68:b8:83:ef:27:5a:6a:fa:65:44:
0e:a3:44:d3:cd:c3:f7:57:27:5b:4d:c8:b8:0b:6f:9b:db:16:
52:ef:e0:18:f1:39:63:f6:a9:41:68:ca:f8:b8:f4:a0:b2:f9:
15:93:68:76:08:dc:05:2c:dd:62:e1:ae:ae:1b:a4:52:78:96:
27:29:f6:64:e8:d4:f0:ed:4a:5a:be:b4:d0:5a:b0:5b:05:31:
83:ef:ba:59:f9:8d:6f:e0:62:ea:3e:5c:23:35:59:b5:c0:b5:
f8:6f:fc:48:9d:5d:d6:1f:8a:97:99:6f:a4:f5:16:dd:3d:e5:
3a:0e:ae:24:15:04:98:ef:e8:43:92:af:19:c1:e5:6f:6a:f5:
7a:69:af:d9:d5:72:d1:65:f8:73:bf:22:58:8f:1d:c6:58:a8:
a7:65:5e:dc:64:bf:99:27:54:63:d6:01:be:a4:90:6d:78:3b:
6c:d0:19:f7:28:5b:25:1d:71:d1:92:13:a4:26:e9:2c:92:2e:
7b:9c:1f:0e:ff:67:89:f2:bd:d6:4e:14:b4:c6:c9:b9:ec:de:
6a:e4:55:93:8e:e6:a0:e8:08:a4:1a:f6:01:c3:c8:94:be:0a:
c0:f7:78:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 24 13:50:23 2024 by rpki-client on console-fra.rpki-client.org