Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Ag8hS1S3XfKN6disC-wNZBd1oCA.roa
File: Ag8hS1S3XfKN6disC-wNZBd1oCA.roa (raw, json)
Hash identifier: 8yFUZTdXn/mPqvfjdEKm8kNm8j6lEW+SSSaEf6X8H2k=
Subject key identifier: 02:0F:21:4B:54:B7:5D:F2:8D:E9:D8:AC:0B:EC:0D:64:17:75:A0:20
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 018EC46E154FDAAF54E6B4804C814A4DB104
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Ag8hS1S3XfKN6disC-wNZBd1oCA.roa
Signing time: Tue 09 Apr 2024 19:55:32 +0000
ROA not before: Tue 09 Apr 2024 19:55:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9123
IP address blocks: 185.201.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Apr 2024 12:52:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c4:6e:15:4f:da:af:54:e6:b4:80:4c:81:4a:4d:b1:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Apr 9 19:55:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=020f214b54b75df28de9d8ac0bec0d641775a020
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:1d:4a:a5:c4:10:d8:20:01:29:85:93:b3:af:
36:ba:03:e8:6f:ac:50:fe:54:e1:f3:2c:4c:a6:7e:
5d:9e:bd:7c:d2:e3:e0:4f:9b:b4:de:e6:d4:d1:95:
47:76:95:3d:4c:69:6a:30:3d:7d:05:09:be:d7:52:
74:98:7b:f8:fd:2a:29:7b:81:25:45:0e:07:be:a9:
c5:f5:df:65:da:24:2e:32:b6:27:6e:13:d6:e0:cb:
22:19:18:e9:98:43:78:5c:4b:9e:6b:47:ec:95:0e:
7c:1c:80:c2:ba:1a:d0:f2:15:9b:df:df:8b:7e:93:
b2:34:a2:77:f1:a7:7d:9d:fa:82:7a:b2:a7:74:98:
e2:b6:8a:4b:35:5a:ba:1a:b9:18:c6:a4:08:b3:65:
84:1e:e1:8f:f6:00:e4:db:79:35:e1:39:8c:a9:60:
01:6a:4a:e3:de:c4:00:68:5d:31:c4:f0:53:da:49:
64:7e:29:ea:45:e7:44:69:c0:f0:84:75:ec:b2:9f:
8a:02:36:69:28:1f:e4:c9:bc:7e:0e:b9:33:32:6e:
b9:94:07:8f:13:c9:a1:24:49:8d:54:fc:81:c8:5b:
eb:dc:38:da:d0:3a:56:0a:9b:ba:cc:fa:61:9a:fa:
8d:50:56:f0:97:b5:12:85:38:a2:4b:4d:fb:74:d9:
67:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0F:21:4B:54:B7:5D:F2:8D:E9:D8:AC:0B:EC:0D:64:17:75:A0:20
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/Ag8hS1S3XfKN6disC-wNZBd1oCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.28.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:97:55:91:0f:63:6c:58:2c:d1:b5:7b:c3:a3:7e:74:a3:d2:
6a:d2:8a:1a:54:73:c9:97:ae:76:39:62:20:8b:64:be:9e:ad:
ba:91:48:c1:1f:16:43:e7:50:33:3e:d7:45:78:2f:ad:ce:42:
b6:90:be:39:fa:c0:41:1e:e8:96:01:c4:85:84:d3:37:b5:77:
b3:0f:06:50:76:94:9b:fb:1b:d2:6b:a3:db:48:46:ab:7c:7f:
85:63:77:5d:ef:40:b4:fa:a0:3f:c6:36:f1:71:17:7d:9b:b1:
d0:68:5d:d4:96:b9:8f:38:eb:8d:ed:11:b0:95:3d:15:3c:db:
a0:51:f0:69:76:c2:1a:5b:b2:b0:1f:3a:60:da:cc:f3:ce:f9:
91:07:1f:6a:ec:ef:e4:07:89:74:84:3c:0f:15:47:7d:54:f0:
89:b2:a9:9a:29:3b:42:7e:19:64:c7:45:7e:22:4a:c9:16:9e:
eb:98:7b:bb:c8:66:0e:87:97:21:6a:d4:87:bc:42:93:9e:a7:
09:af:b1:75:42:7d:91:88:70:1d:e7:be:15:49:ca:ab:80:e4:
c3:b0:39:1d:9d:98:bf:e5:59:72:31:ff:6b:73:53:67:f6:8d:
1a:46:52:58:11:1a:35:6f:2c:45:e1:01:2c:6e:85:75:b9:a6:
2a:de:4d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:08 2024 by rpki-client on console-fra.rpki-client.org