Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/M7gQPUDRu7668NiX04inpL_zvwM.roa
File: M7gQPUDRu7668NiX04inpL_zvwM.roa (raw, json)
Hash identifier: HnS/3pEulIvnCfSDdBVWoYv8it+LIbK36IxYZpKaKeo=
Subject key identifier: 33:B8:10:3D:40:D1:BB:BE:BA:F0:D8:97:D3:88:A7:A4:BF:F3:BF:03
Certificate issuer: /CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Certificate serial: 0185704299374891ED1760000DF5F4D8035E
Authority key identifier: 84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/M7gQPUDRu7668NiX04inpL_zvwM.roa
Signing time: Mon 02 Jan 2023 02:14:50 +0000
ROA not before: Mon 02 Jan 2023 02:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59674
IP address blocks: 185.179.24.0/24 maxlen: 24
185.179.26.0/24 maxlen: 24
185.179.27.0/24 maxlen: 24
185.179.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:99:37:48:91:ed:17:60:00:0d:f5:f4:d8:03:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Validity
Not Before: Jan 2 02:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33b8103d40d1bbbebaf0d897d388a7a4bff3bf03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:bf:1c:82:88:35:00:09:c6:97:66:27:9c:
45:f3:07:78:d3:a1:4a:48:ba:ef:54:5d:ec:c4:32:
db:e3:38:05:fc:ff:c2:9f:e5:c2:39:bb:15:15:f1:
4e:50:bb:de:49:03:a1:42:44:ce:05:4c:06:95:28:
10:a7:a5:d4:9a:1e:f4:c4:f9:c5:dd:63:4d:8a:2f:
61:5f:2f:ed:b1:db:18:62:56:1c:80:87:ef:d0:82:
81:3c:89:4f:69:1c:27:e1:b0:14:4f:99:7e:b7:08:
df:61:18:d8:2b:b8:ee:f3:93:a4:cb:d0:c8:24:32:
d4:f4:d3:fb:cf:ca:fb:7c:e7:ae:f1:f3:85:95:2f:
3f:cb:34:c7:98:22:f8:fc:a6:88:5f:39:ff:f7:d4:
df:2d:fb:82:fa:4a:58:d5:61:56:85:94:33:ce:d4:
4c:3e:02:68:84:11:8b:c5:c8:3d:b4:78:31:ca:55:
04:8d:d0:82:ac:e7:f4:54:b1:88:a9:c4:c6:32:18:
fa:cc:f8:5b:e9:55:24:09:d0:91:40:7a:7e:c1:a1:
fb:dc:e6:60:43:ff:c9:70:65:fd:bc:21:52:65:98:
f8:0b:93:a9:34:9c:64:62:25:c8:75:ba:3d:db:98:
d4:82:0c:e3:30:13:61:a1:b2:c2:62:f8:84:c5:8c:
5b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B8:10:3D:40:D1:BB:BE:BA:F0:D8:97:D3:88:A7:A4:BF:F3:BF:03
X509v3 Authority Key Identifier:
keyid:84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/M7gQPUDRu7668NiX04inpL_zvwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/hLuutws_HQZxY1itmi7P730hJvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.24.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:84:78:f1:f8:01:5a:04:af:49:50:24:0a:8b:fb:f8:eb:15:
95:7b:b2:4a:50:7e:97:3f:7d:06:90:35:66:e9:ee:66:e8:56:
0d:67:df:96:48:e0:72:71:59:f1:6e:32:a7:26:dc:83:e9:55:
a8:30:97:37:20:d4:76:ba:1f:e2:c7:24:12:4c:78:1b:d2:f1:
69:66:6e:2a:bd:15:42:f3:16:c5:6f:0d:ea:1c:4e:65:77:14:
b7:fe:20:99:5c:f3:27:02:54:bb:61:81:00:8f:92:4a:3c:57:
38:03:fa:4c:ff:de:4b:0d:d1:89:15:e9:55:02:bc:71:d7:ca:
c1:7d:c2:09:3f:fb:cf:1e:b6:04:bd:b2:17:0a:d3:17:54:4e:
db:cd:61:6e:24:28:0a:3d:52:2d:c1:9c:b8:b6:a2:95:bd:46:
14:04:87:4f:41:af:1f:15:c4:e7:80:d4:ac:19:c7:7b:e5:b1:
60:70:d5:3e:6d:01:55:94:75:02:68:69:0e:9f:bc:d1:66:a9:
bd:fc:d4:60:54:39:9f:91:4f:3c:62:c6:db:f1:00:a2:1f:8a:
28:29:8d:6b:36:1d:e8:d6:47:21:5c:82:69:0d:54:1a:29:36:
5d:09:4d:5d:3e:06:49:3e:5a:57:c0:72:4b:d1:33:fa:da:2c:
79:e3:8b:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:21 2024 by rpki-client on console-fra.rpki-client.org