Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/MiJUEeKEHTU4pCZZ1sK9I29Uk9M.roa
File: MiJUEeKEHTU4pCZZ1sK9I29Uk9M.roa (raw, json)
Hash identifier: +ZuS3qopcgJ5SX4HhxLnfCPyqtUxL/reArmJYl8RbJQ=
Subject key identifier: 32:22:54:11:E2:84:1D:35:38:A4:26:59:D6:C2:BD:23:6F:54:93:D3
Certificate issuer: /CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Certificate serial: 0187B86641BCF2D7FD4E13070873820E8653
Authority key identifier: 84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/MiJUEeKEHTU4pCZZ1sK9I29Uk9M.roa
Signing time: Tue 25 Apr 2023 12:32:01 +0000
ROA not before: Tue 25 Apr 2023 12:32:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203576
IP address blocks: 185.179.24.0/24 maxlen: 24
185.179.25.0/24 maxlen: 24
185.179.27.0/24 maxlen: 24
185.179.26.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b8:66:41:bc:f2:d7:fd:4e:13:07:08:73:82:0e:86:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Validity
Not Before: Apr 25 12:32:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=32225411e2841d3538a42659d6c2bd236f5493d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ba:c2:3a:6e:cb:af:91:0d:d2:3b:1d:ab:1f:
33:22:da:ed:f0:6e:08:95:05:91:49:1f:db:e8:7f:
ca:98:0e:47:f3:96:cc:1a:db:43:1f:ff:67:08:50:
7b:c1:63:65:59:c9:b1:02:01:4c:a1:72:22:2f:7b:
09:3b:00:69:f0:e1:ea:be:1e:be:9b:91:6f:89:f9:
11:f0:a0:b1:6a:40:b5:ad:44:19:5e:d6:f0:b5:34:
73:04:16:dc:32:9c:c3:a0:2e:0b:54:25:19:7e:fe:
1a:bb:f3:b0:1b:4b:91:6a:d3:c4:a6:3e:fe:3e:e8:
c1:b3:a9:80:3f:26:81:ed:0f:7e:30:74:4a:49:2a:
d6:9c:c8:3b:85:27:d4:7f:45:09:7e:d7:10:1d:fc:
6a:93:8c:76:c5:29:d5:1f:0a:a6:52:1e:c6:28:fd:
4b:80:b0:1b:0b:8e:62:c7:89:fa:43:8d:04:21:fd:
58:21:0d:41:9a:f9:e2:f4:99:9b:96:f5:86:a4:23:
6f:c7:50:4c:35:83:87:54:c9:fa:11:61:25:67:f0:
6b:b3:f5:67:f7:a9:f6:7a:15:23:16:da:f0:c0:bb:
e0:72:00:d4:38:fa:98:90:6f:19:b1:cd:50:4d:e4:
71:43:49:77:cf:4c:ae:a1:3c:1d:a5:28:c8:c9:40:
54:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:22:54:11:E2:84:1D:35:38:A4:26:59:D6:C2:BD:23:6F:54:93:D3
X509v3 Authority Key Identifier:
keyid:84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/MiJUEeKEHTU4pCZZ1sK9I29Uk9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/hLuutws_HQZxY1itmi7P730hJvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.24.0/22
Signature Algorithm: sha256WithRSAEncryption
af:cc:00:55:0f:63:fe:6c:ba:01:92:1e:db:b8:a9:82:5f:ea:
17:87:b5:6b:8c:6c:d7:1a:44:a2:36:fd:e8:89:a1:1f:12:01:
d8:68:bc:4b:4b:7c:b9:37:7c:9b:85:81:ea:d9:c2:00:2f:38:
16:87:dd:6a:7a:b8:6a:ef:11:1e:36:c7:81:d9:c9:79:9d:a3:
59:07:c4:db:e7:47:74:27:af:bb:98:5c:f7:08:9e:90:55:d5:
5a:87:f3:32:5e:ab:95:76:c1:07:e3:05:dc:2a:5d:42:38:17:
59:52:e2:e5:2b:57:24:9f:53:76:f3:11:8c:d4:04:bb:aa:34:
9e:23:6e:7a:93:13:52:1f:14:02:3a:86:db:66:a8:26:9d:ee:
26:eb:54:15:d1:fe:f0:ec:e1:6b:07:25:ed:04:38:27:29:17:
ad:65:d4:4c:04:d2:b3:f9:c8:44:48:79:f7:46:4a:39:ef:12:
57:a8:90:b4:dd:47:7a:f7:f3:4d:09:b6:c0:8d:a5:d3:68:cf:
9f:9c:b3:15:8a:20:a9:fd:32:b1:de:52:8f:56:1d:61:67:ae:
fe:91:81:84:7c:26:ac:ee:20:8b:dd:5a:39:eb:f0:68:78:91:
fb:67:a5:eb:3e:ac:de:88:9e:7d:fc:ea:62:dd:db:77:07:9e:
9d:6c:3c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:32 2024 by rpki-client on console-ams.rpki-client.org