Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/raIf1PwWzx7-de2n1kThY6CESYc.roa
File: raIf1PwWzx7-de2n1kThY6CESYc.roa (raw, json)
Hash identifier: aVzBhLP8eukt03ETVBL+6f2sLQov+z5/JgaZAYJEY5o=
Subject key identifier: AD:A2:1F:D4:FC:16:CF:1E:FE:75:ED:A7:D6:44:E1:63:A0:84:49:87
Certificate issuer: /CN=3816e19b24a7e8cff189fabac28852cd8748a380
Certificate serial: 01856CA5E5D8B856F945FE9420F8411273A9
Authority key identifier: 38:16:E1:9B:24:A7:E8:CF:F1:89:FA:BA:C2:88:52:CD:87:48:A3:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBbhmySn6M_xifq6wohSzYdIo4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/raIf1PwWzx7-de2n1kThY6CESYc.roa
Signing time: Sun 01 Jan 2023 09:24:49 +0000
ROA not before: Sun 01 Jan 2023 09:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199826
IP address blocks: 185.33.47.0/24 maxlen: 24
185.33.45.0/24 maxlen: 24
185.33.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:a5:e5:d8:b8:56:f9:45:fe:94:20:f8:41:12:73:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3816e19b24a7e8cff189fabac28852cd8748a380
Validity
Not Before: Jan 1 09:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ada21fd4fc16cf1efe75eda7d644e163a0844987
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:58:55:d5:a4:ba:15:c9:4d:59:4a:3e:2b:8c:
e5:48:e4:34:83:95:70:af:cb:5e:28:b2:20:bd:d1:
5f:70:7c:c0:be:5a:a8:3c:1b:35:87:1e:7d:8a:74:
f9:3a:17:35:bd:fc:2c:ea:38:c3:29:14:f5:0e:83:
20:43:2b:fa:d6:59:d4:23:e7:4c:37:79:ea:b9:d1:
d0:6d:5e:20:34:c0:1f:f5:83:08:d2:cc:c2:24:af:
f6:1d:d7:14:f9:50:1b:8f:bc:b4:6b:29:94:69:7d:
0b:cd:51:3e:b1:4c:c9:97:ce:f4:fa:b0:47:ee:11:
b4:15:98:6c:43:e2:63:6a:bb:a3:46:27:50:11:73:
a4:00:cf:f3:87:32:4c:00:f8:db:bf:4a:4d:7b:b2:
a8:df:fd:e7:1d:74:99:b5:a8:4d:02:a5:78:ec:eb:
b7:a6:17:2e:17:ea:71:92:d2:a3:ab:7c:34:a1:02:
72:a6:80:96:5e:8c:3d:8c:dd:7b:99:53:5f:2e:9f:
77:86:02:d0:33:68:98:47:6c:d2:2f:4f:71:94:a0:
50:de:8e:e2:87:91:92:dc:a9:67:53:19:9a:1d:a8:
9d:1e:cb:14:be:de:6f:29:0b:f3:c1:08:75:53:de:
35:7c:fa:46:40:99:54:4f:1e:9c:fc:48:00:75:72:
51:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A2:1F:D4:FC:16:CF:1E:FE:75:ED:A7:D6:44:E1:63:A0:84:49:87
X509v3 Authority Key Identifier:
keyid:38:16:E1:9B:24:A7:E8:CF:F1:89:FA:BA:C2:88:52:CD:87:48:A3:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBbhmySn6M_xifq6wohSzYdIo4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/raIf1PwWzx7-de2n1kThY6CESYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d61275-e00a-4bfb-be8a-16b36d0801e9/1/OBbhmySn6M_xifq6wohSzYdIo4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.45.0-185.33.47.255
Signature Algorithm: sha256WithRSAEncryption
5a:32:0e:3b:07:a7:86:66:7d:4d:41:ec:70:36:08:07:aa:86:
ab:d9:d2:91:09:5f:3a:0d:95:fa:ec:77:b7:9f:8a:eb:41:53:
3b:43:f1:02:d4:bf:bf:79:a5:c0:e2:d9:3f:58:f6:83:2a:2d:
3b:1e:b7:0b:a7:24:cd:c4:67:60:25:ad:09:a4:7b:19:0c:6e:
48:99:bb:c7:e5:18:4b:ab:8f:27:a3:93:4d:67:b2:78:66:41:
2e:b5:48:dc:f8:89:ea:f3:21:fa:c8:86:0a:70:a7:b7:5d:0e:
57:02:7c:43:3f:02:ac:6c:1d:fa:99:ff:85:6a:93:40:71:bd:
dc:0c:89:e1:fe:ad:76:e1:df:05:2d:f4:0b:f1:a6:1a:cd:15:
ed:ba:27:6e:0a:97:b1:bb:6d:24:37:b0:a3:17:89:e7:21:96:
90:09:53:dc:fc:e5:7d:8b:91:eb:28:4c:ff:30:a9:8d:24:5a:
af:66:81:da:c0:02:ce:a3:36:c2:cb:ed:df:d4:b6:64:6f:73:
38:94:53:a6:ab:2b:c7:5e:99:d9:13:f0:b2:db:59:1b:70:fc:
7c:43:08:85:c0:cb:a8:24:b2:ad:a0:ec:15:87:54:cf:8e:31:
63:4e:e9:94:da:b1:cf:12:90:b9:fe:ec:b4:b6:9b:90:64:cd:
5c:33:dd:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:42 2024 by rpki-client on console-ams.rpki-client.org