Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/09ec83-85e2-4e9c-a79c-4c959f6077a0/1/P8QDZVj6z1YuAllxMVQ1C-yQR-Y.roa
File: P8QDZVj6z1YuAllxMVQ1C-yQR-Y.roa (raw, json)
Hash identifier: ezDP/vMq1WC9AO0DkTkRwP2ta+ai4RXEE3++CAxnAwA=
Subject key identifier: 3F:C4:03:65:58:FA:CF:56:2E:02:59:71:31:54:35:0B:EC:90:47:E6
Certificate issuer: /CN=3ba05cb29671d30a57a3e8444f41fe034cf75231
Certificate serial: 018F5C5AF845024218671C618FF99183CD97
Authority key identifier: 3B:A0:5C:B2:96:71:D3:0A:57:A3:E8:44:4F:41:FE:03:4C:F7:52:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O6BcspZx0wpXo-hET0H-A0z3UjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/09ec83-85e2-4e9c-a79c-4c959f6077a0/1/P8QDZVj6z1YuAllxMVQ1C-yQR-Y.roa
Signing time: Thu 09 May 2024 07:56:56 +0000
ROA not before: Thu 09 May 2024 07:56:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51088
IP address blocks: 185.168.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 09 May 2024 11:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:5c:5a:f8:45:02:42:18:67:1c:61:8f:f9:91:83:cd:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ba05cb29671d30a57a3e8444f41fe034cf75231
Validity
Not Before: May 9 07:56:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fc4036558facf562e0259713154350bec9047e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:54:eb:46:61:ab:f4:7c:ac:e7:0b:1e:d1:3e:
fa:ab:72:8a:36:ee:73:1e:7a:89:47:7f:f5:03:92:
4c:17:29:4d:a2:75:07:26:6d:30:b9:bc:5f:49:e9:
9b:5e:0a:8a:a1:c4:4c:d8:b3:86:76:13:0e:ef:52:
09:46:d7:32:92:07:e9:a7:ab:b8:ea:c6:3c:2d:69:
03:60:cb:ae:48:26:e5:75:88:ba:6b:89:62:73:93:
1d:cf:d8:49:92:44:8a:6b:a2:8a:13:57:d5:40:4b:
10:44:15:91:df:2c:37:b6:77:91:8a:f5:60:6a:e7:
5d:12:b2:ef:c4:c8:07:92:96:e1:f4:c1:e4:4c:82:
62:2f:4b:68:44:40:a7:f4:c0:c2:73:99:f2:ac:74:
f0:91:40:aa:d5:0e:4c:28:f2:0f:2c:b2:ff:5e:ad:
aa:6f:aa:4c:67:5e:26:2e:67:c6:53:55:88:d0:f7:
d4:e3:77:f7:6b:c8:e0:ab:0a:58:ba:8e:ca:97:dd:
0b:f2:4f:f0:b9:6d:19:52:95:7c:2a:49:8b:4b:bc:
73:97:f1:15:8c:b6:58:53:b6:85:62:60:d6:29:27:
d3:db:88:5f:76:5f:30:47:1a:40:e1:3c:ee:a1:96:
8a:7b:a1:ae:54:a9:b5:0a:1e:e4:4b:82:dc:a7:cc:
b8:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C4:03:65:58:FA:CF:56:2E:02:59:71:31:54:35:0B:EC:90:47:E6
X509v3 Authority Key Identifier:
keyid:3B:A0:5C:B2:96:71:D3:0A:57:A3:E8:44:4F:41:FE:03:4C:F7:52:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O6BcspZx0wpXo-hET0H-A0z3UjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/09ec83-85e2-4e9c-a79c-4c959f6077a0/1/P8QDZVj6z1YuAllxMVQ1C-yQR-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/09ec83-85e2-4e9c-a79c-4c959f6077a0/1/O6BcspZx0wpXo-hET0H-A0z3UjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.142.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:17:f9:32:9e:04:00:aa:2e:f2:94:3b:8d:86:1e:54:e1:92:
59:23:2e:72:41:f8:58:8d:a4:60:f8:48:7d:dc:f5:f6:1f:59:
c4:24:6b:3e:44:64:1f:57:58:a1:13:09:a6:4a:8c:7e:43:70:
08:29:86:aa:ef:38:37:f7:a3:1d:80:02:7b:a8:93:31:72:88:
0f:26:b0:83:e4:ae:af:4e:e1:71:79:a9:54:fa:5d:ec:2e:35:
f8:a5:9a:65:70:1c:3c:d1:83:c2:83:bb:35:fa:48:b9:6f:1e:
fa:02:f0:90:8c:1d:75:fa:0d:79:1f:ba:cc:f9:47:9b:17:ae:
66:e4:a3:ec:57:c2:9d:2f:52:e6:97:b9:f8:40:9d:14:d8:36:
97:3d:2f:a7:13:8c:4a:40:dc:b5:b2:3e:85:6f:36:cf:4e:2c:
8f:1d:0f:e0:95:ff:17:57:11:e3:c7:cf:e0:ef:b0:4a:71:49:
ad:eb:3f:2e:52:92:dc:9c:5e:8e:22:0f:c5:ae:88:98:37:ff:
a7:71:cc:f3:2f:ad:1f:9f:85:fc:97:2a:85:fd:2d:53:18:02:
16:75:57:78:90:e2:b0:87:99:ce:26:ee:ec:9a:88:43:37:c7:
ae:a6:91:96:f0:83:13:63:1d:cd:b4:4a:24:96:1a:65:de:21:
36:60:43:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:59 2024 by rpki-client on console-fra.rpki-client.org