Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/s-gQOMjgVTDBlQo8WoYzoEbViGc.roa
File: s-gQOMjgVTDBlQo8WoYzoEbViGc.roa (raw, json)
Hash identifier: 9ByvPdqhsvv/wv1mMXsiUvS3pWjR1N10jFlxkqvXVgY=
Subject key identifier: B3:E8:10:38:C8:E0:55:30:C1:95:0A:3C:5A:86:33:A0:46:D5:88:67
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018F3DA81616BC7318B2346C26E7DA612B72
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/s-gQOMjgVTDBlQo8WoYzoEbViGc.roa
Signing time: Fri 03 May 2024 08:52:56 +0000
ROA not before: Fri 03 May 2024 08:52:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44620
IP address blocks: 185.24.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 06:16:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:3d:a8:16:16:bc:73:18:b2:34:6c:26:e7:da:61:2b:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: May 3 08:52:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b3e81038c8e05530c1950a3c5a8633a046d58867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fc:16:7d:fb:3a:8e:72:db:54:25:df:fd:9b:
aa:1e:28:f2:f4:b2:3f:4a:79:7c:16:63:38:93:c5:
a7:5e:3d:4d:45:f1:77:e7:76:c8:91:77:b6:db:ea:
68:23:4f:9d:76:cb:71:ec:2b:1b:15:cd:ad:b0:dd:
e7:56:4b:bb:fe:ae:59:6e:04:82:2a:c2:af:31:bb:
60:dc:11:06:6a:31:df:90:2e:bd:23:47:77:0c:ee:
74:a0:49:88:f5:54:19:dc:d9:a0:10:7f:50:a9:95:
2d:2a:69:9b:03:3e:80:dc:02:fc:54:cc:2f:bc:c9:
51:60:44:0e:05:bd:b1:c8:b9:82:8c:23:80:8b:26:
62:f3:ef:26:bf:ba:2b:5a:9c:fe:0b:e2:3a:07:1c:
64:31:f5:6d:8a:f7:00:be:cc:90:a8:8c:6d:cb:04:
b7:ca:b5:7b:2c:74:a9:e7:ea:4f:3a:53:cf:c2:17:
93:a8:a9:3d:d0:30:ce:9d:27:dc:78:07:cd:a3:dc:
48:fa:e2:fc:14:80:fe:ef:a9:4f:e7:d3:2b:e9:ad:
81:25:b1:1d:81:e5:f1:91:41:e7:8b:a5:4e:90:f5:
c6:9a:ef:62:67:39:ad:07:9e:0f:f6:4a:17:57:f0:
51:49:8b:b9:98:33:16:54:1b:0b:17:9b:b8:b7:ad:
de:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:E8:10:38:C8:E0:55:30:C1:95:0A:3C:5A:86:33:A0:46:D5:88:67
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/s-gQOMjgVTDBlQo8WoYzoEbViGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.148.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:7e:d4:79:e0:37:0f:34:cf:ec:7d:88:d6:64:dc:fa:e9:39:
c5:17:3d:7b:56:d7:ee:4b:92:98:8a:3e:fe:11:12:42:c2:62:
4d:be:b2:9d:95:9d:d9:a8:e8:c1:b1:dc:1b:80:bc:a3:31:00:
d8:81:32:70:6d:d1:f9:4d:6e:6c:36:f2:da:6b:26:b7:a8:98:
6f:9b:a8:9a:14:aa:62:64:77:02:66:ca:a9:f4:8f:24:2d:2e:
b0:10:c5:df:e4:88:9f:a3:c0:1d:7b:d6:c8:00:d7:98:ad:ef:
4c:a0:2f:83:52:6d:65:8f:43:bc:75:c0:6b:94:c4:18:82:0c:
67:c0:70:ad:a5:92:f1:d2:c3:8f:02:f5:23:2c:2a:b2:f7:e1:
af:fd:d3:28:76:05:8d:66:c6:2a:92:a2:c9:b7:bb:be:a8:d8:
06:6e:52:04:21:d2:ec:87:f9:7c:ac:3f:83:e3:9e:7c:d1:de:
23:75:ef:a0:3a:b6:79:e3:da:aa:02:38:22:c6:9b:66:02:bc:
35:d9:3d:4b:f0:c2:b6:74:ce:b8:06:eb:f6:60:b5:7d:80:c5:
fa:83:4e:6a:7d:3b:16:a1:7f:99:b7:ac:63:23:14:c6:f3:98:
96:66:95:53:42:57:a3:01:a6:be:d5:22:8c:c2:07:e8:d0:5e:
05:2d:7c:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:24 2024 by rpki-client on console-fra.rpki-client.org