Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/7g0Vvj89Kyy6Cvip2ALOdtQIrAM.roa
File: 7g0Vvj89Kyy6Cvip2ALOdtQIrAM.roa (raw, json)
Hash identifier: IPRHukjg2DmkY48ML1hPKJneqj6bN69ZwhscwcGmKRg=
Subject key identifier: EE:0D:15:BE:3F:3D:2B:2C:BA:0A:F8:A9:D8:02:CE:76:D4:08:AC:03
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018CC56E14DCBFFB0A2E55A68895B25B272E
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/7g0Vvj89Kyy6Cvip2ALOdtQIrAM.roa
Signing time: Mon 01 Jan 2024 14:29:35 +0000
ROA not before: Mon 01 Jan 2024 14:29:35 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202676
IP address blocks: 185.71.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 11:14:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:14:dc:bf:fb:0a:2e:55:a6:88:95:b2:5b:27:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Jan 1 14:29:35 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee0d15be3f3d2b2cba0af8a9d802ce76d408ac03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:aa:b6:90:5c:a4:d7:e3:94:b9:ff:39:97:b8:
89:a0:d0:38:33:c0:91:e5:bd:c0:92:c7:09:dc:03:
27:d5:27:8e:3a:29:a1:85:c2:3f:53:85:1e:64:96:
e5:6b:3d:1f:81:c8:ee:23:5c:3a:d2:57:38:ae:69:
6f:0d:7c:4b:17:76:e6:28:5f:4f:9f:3a:59:6d:0b:
f1:02:1a:3b:44:d4:2b:45:b2:8c:b4:d2:06:5f:f0:
11:86:3c:ba:32:b7:ba:6e:61:dd:43:8a:47:a2:5a:
9c:69:3a:39:26:33:f3:23:fa:7a:1b:ea:1c:76:1c:
88:30:21:55:c2:e6:7d:13:0e:da:94:4d:5f:2d:7d:
19:8a:66:13:fc:3f:cb:9b:74:2f:59:cd:57:ce:9e:
66:dd:f3:6d:4c:f4:d8:8c:00:0b:9d:be:10:b5:c5:
90:ef:16:3e:d2:b6:01:c5:02:85:0c:57:34:2a:ce:
0c:eb:11:ec:50:6a:4b:b3:72:1d:7f:f0:59:4c:b4:
7b:be:bc:58:36:df:56:a7:97:0f:2a:d6:d3:8d:31:
c3:0e:6e:af:67:05:91:7c:57:e4:90:b2:c5:0a:ad:
d1:0e:f8:96:bb:80:a3:d6:36:33:50:d4:f2:9e:16:
85:be:c8:94:66:ef:ec:e2:af:7a:76:82:a5:02:95:
b6:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:0D:15:BE:3F:3D:2B:2C:BA:0A:F8:A9:D8:02:CE:76:D4:08:AC:03
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/7g0Vvj89Kyy6Cvip2ALOdtQIrAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.29.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:4e:09:d0:53:bd:c9:e2:b5:22:69:d0:c6:b8:8e:c5:1c:b5:
29:b0:95:9e:38:d4:bf:72:c1:c4:78:fd:b9:70:05:f8:b3:77:
22:57:80:cd:31:ac:5b:bd:69:67:a5:d3:f2:23:7a:fa:9e:a9:
7f:b2:4a:94:cc:54:44:0d:b1:39:25:0a:0f:2b:cf:c8:cc:5e:
8e:a1:71:62:39:36:01:f6:a4:0f:84:5a:08:9b:48:bc:7a:0b:
98:97:ab:12:71:d6:63:0a:9e:35:52:6b:ff:ca:d2:ad:40:72:
dc:a1:5c:7a:85:5e:92:88:d4:a3:fb:e4:e9:66:3a:e2:43:8b:
ac:a3:e7:59:1f:40:ba:c5:3b:07:9d:df:29:0c:72:92:c2:81:
65:7b:cf:3f:a9:59:ef:07:09:0a:5d:80:04:60:fd:88:b7:6e:
49:a5:05:63:87:d4:02:1e:e4:97:5e:33:78:58:6f:97:9b:4a:
3f:06:93:e7:92:35:5b:08:fb:f5:97:7d:0a:cc:bf:52:58:27:
f4:cb:06:98:6c:a1:86:89:03:16:99:5e:4c:17:4c:82:b8:c9:
ba:86:7e:dc:53:ba:5d:11:e9:3b:f2:2a:75:78:b7:79:57:d0:
65:70:86:8f:d4:3c:44:55:7c:a4:7f:a9:9f:a9:19:de:28:fe:
c8:dc:dc:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 13:52:50 2024 by rpki-client on console-ams.rpki-client.org