Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/Q8OLG0DlNlL_uHwGICTr7AQUQ64.roa
File: Q8OLG0DlNlL_uHwGICTr7AQUQ64.roa (raw, json)
Hash identifier: aK7CmcIyE5vX06xouTuXBOfsgul7Z3RqsT9Ftq8RHIs=
Subject key identifier: 43:C3:8B:1B:40:E5:36:52:FF:B8:7C:06:20:24:EB:EC:04:14:43:AE
Certificate issuer: /CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Certificate serial: 018B60A434DC29E22BA74674DD5893BC8233
Authority key identifier: 37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/Q8OLG0DlNlL_uHwGICTr7AQUQ64.roa
Signing time: Tue 24 Oct 2023 07:44:15 +0000
ROA not before: Tue 24 Oct 2023 07:44:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197248
IP address blocks: 185.235.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Oct 2023 19:46:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:60:a4:34:dc:29:e2:2b:a7:46:74:dd:58:93:bc:82:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3763e45b816493ccdbdd4b07708a21fb73a1e599
Validity
Not Before: Oct 24 07:44:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43c38b1b40e53652ffb87c062024ebec041443ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:a0:4e:3b:7a:6c:15:9b:38:ee:be:93:15:
81:c4:63:93:05:f9:4b:76:13:0a:14:a7:30:67:d3:
49:c0:ae:9b:11:6f:56:df:b9:fa:d9:46:f4:82:12:
af:6b:c3:09:d2:0f:43:20:4f:f7:77:c7:d5:f6:c0:
e1:50:0e:67:fa:d4:79:a0:18:7b:f0:c5:70:38:0e:
4e:d0:09:33:e6:d2:6f:61:52:6b:7d:8f:65:bc:ba:
b1:28:92:66:14:28:74:f7:af:05:42:08:8d:88:41:
9c:13:3d:74:7d:2f:df:55:cf:6e:ee:12:c4:7d:d6:
b0:6a:80:2d:ec:14:aa:02:6a:63:90:13:dd:0b:da:
18:f4:f5:62:87:65:be:69:10:60:88:36:bf:b5:20:
20:84:30:c9:33:fc:a4:ce:02:db:39:b4:5e:40:4e:
9b:ce:a3:81:2c:7b:6c:5f:63:5f:f1:05:28:1e:fe:
86:c6:21:10:d0:b6:17:ec:b1:aa:24:7a:27:fd:ef:
72:22:51:03:de:d9:b2:18:10:56:c5:25:db:0f:3b:
f8:0f:3c:73:01:cc:07:8e:f3:44:10:90:15:9f:77:
1c:c9:ef:8a:a3:05:b4:5a:ce:68:9b:af:f3:77:32:
19:3a:40:09:a9:42:85:6e:e9:79:e0:7d:d7:bd:19:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:C3:8B:1B:40:E5:36:52:FF:B8:7C:06:20:24:EB:EC:04:14:43:AE
X509v3 Authority Key Identifier:
keyid:37:63:E4:5B:81:64:93:CC:DB:DD:4B:07:70:8A:21:FB:73:A1:E5:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/Q8OLG0DlNlL_uHwGICTr7AQUQ64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/adbb47-572a-49cc-a6d0-51ff20f9fef9/1/N2PkW4Fkk8zb3UsHcIoh-3Oh5Zk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.33.0/24
Signature Algorithm: sha256WithRSAEncryption
04:42:8f:3b:73:4b:18:b0:e2:2b:28:13:07:11:9d:b4:c0:02:
fc:04:3c:68:c4:07:70:fb:d5:19:1e:66:9c:ad:c7:d0:6b:d1:
88:38:dd:f1:41:a4:1d:59:6f:72:be:30:a5:54:21:85:aa:37:
f6:04:d4:cc:bf:11:17:22:35:c9:41:94:7a:ad:b4:6f:f4:91:
c3:81:b2:6a:0f:fd:6b:08:ca:f6:ad:f3:3b:78:82:97:85:94:
54:b2:0e:e9:0d:c0:cc:5a:87:1e:18:21:8a:25:da:6b:ec:0c:
08:a0:86:a1:e0:9d:66:b2:b2:ca:50:c1:b9:14:4b:f8:b9:c7:
a3:8a:79:cc:fa:92:7e:a9:94:87:96:d2:61:cf:d1:eb:7f:0f:
b8:2a:b1:79:94:61:44:93:1b:54:01:01:10:56:ae:bf:a9:f4:
74:85:25:93:07:ce:9f:f1:e1:e0:4b:ca:12:df:39:ae:cd:ff:
f1:0e:f2:ef:28:bd:55:a1:2d:1a:13:9d:ae:f0:f9:cc:b2:72:
86:fa:27:4e:ec:0d:44:7e:42:5a:22:f9:09:4f:91:7b:11:38:
82:71:ab:37:5e:57:82:93:db:15:a1:2b:40:dd:93:1b:bf:a1:
07:25:ba:d3:ac:59:e6:26:96:6a:f3:08:c3:0e:c0:9c:33:24:
a0:99:6c:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:38 2024 by rpki-client on console-ams.rpki-client.org