Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/8b28ab-39f4-455e-8e2f-3ff10d603eca/1/N9uRHq41ZanAE-glOBgpQNSQD8A.roa
File: N9uRHq41ZanAE-glOBgpQNSQD8A.roa (raw, json)
Hash identifier: d5QLFAVpjjB534AbuXUloKXfZx1If/A+Al+qW6JTZwI=
Subject key identifier: 37:DB:91:1E:AE:35:65:A9:C0:13:E8:25:38:18:29:40:D4:90:0F:C0
Certificate issuer: /CN=6b5d1c7f2bff274848875fb7a9e31f0382bb76a1
Certificate serial: 018964C053A0B94BEA7CFDF578983C3E87FE
Authority key identifier: 6B:5D:1C:7F:2B:FF:27:48:48:87:5F:B7:A9:E3:1F:03:82:BB:76:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a10cfyv_J0hIh1-3qeMfA4K7dqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/8b28ab-39f4-455e-8e2f-3ff10d603eca/1/N9uRHq41ZanAE-glOBgpQNSQD8A.roa
Signing time: Mon 17 Jul 2023 16:47:53 +0000
ROA not before: Mon 17 Jul 2023 16:47:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.109.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:53:a0:b9:4b:ea:7c:fd:f5:78:98:3c:3e:87:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5d1c7f2bff274848875fb7a9e31f0382bb76a1
Validity
Not Before: Jul 17 16:47:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37db911eae3565a9c013e82538182940d4900fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e9:db:22:40:94:b6:44:35:6d:5b:9d:3c:af:
73:0d:02:09:84:51:4f:c2:2d:10:a1:65:22:e0:a7:
18:48:86:57:bd:66:bf:75:53:3d:64:c5:c3:f2:16:
b3:c4:3f:5c:01:7d:20:48:69:bc:c4:b5:d1:4d:29:
c2:56:d8:6d:2d:ea:29:8e:df:56:78:f2:d8:6c:90:
e6:28:eb:85:56:ee:bc:e7:e4:6d:5a:37:0c:a5:34:
3f:4f:ba:f6:eb:65:2b:9f:d1:90:01:7a:97:f5:e2:
f7:1c:dd:99:a2:40:1b:70:69:30:43:25:7f:66:a3:
70:f0:a7:9a:ab:32:ee:7b:6a:be:00:8d:2a:09:36:
e1:7f:b5:37:ac:d5:65:c9:34:17:47:38:a9:cd:84:
c9:a2:f2:23:a2:ad:bf:a3:31:c8:93:d4:b5:81:1d:
c2:60:29:f9:31:45:c0:ae:d9:71:3d:93:1f:eb:bd:
41:b6:85:d8:18:30:24:4f:61:9a:54:36:91:1b:39:
8c:68:52:99:7a:5a:50:bc:0f:07:83:9e:b3:6b:39:
84:21:b3:54:7c:8a:0f:8e:05:c4:a9:b1:e4:b0:b3:
13:ba:01:21:ca:76:1c:e7:9a:a1:48:28:08:1e:2b:
a6:f8:53:ee:14:3d:85:bc:3c:1c:5a:a3:b8:e2:00:
d6:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:DB:91:1E:AE:35:65:A9:C0:13:E8:25:38:18:29:40:D4:90:0F:C0
X509v3 Authority Key Identifier:
keyid:6B:5D:1C:7F:2B:FF:27:48:48:87:5F:B7:A9:E3:1F:03:82:BB:76:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a10cfyv_J0hIh1-3qeMfA4K7dqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/8b28ab-39f4-455e-8e2f-3ff10d603eca/1/N9uRHq41ZanAE-glOBgpQNSQD8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/8b28ab-39f4-455e-8e2f-3ff10d603eca/1/a10cfyv_J0hIh1-3qeMfA4K7dqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.238.0/24
Signature Algorithm: sha256WithRSAEncryption
43:e4:ed:24:6d:1c:76:1c:e0:43:97:27:c4:6c:87:06:47:9e:
45:a2:72:e1:13:c2:7a:1b:9c:87:0e:08:b9:e1:a8:63:88:e4:
78:23:15:6a:28:52:f3:80:11:89:af:86:e5:1c:cf:31:85:07:
82:b4:cc:18:51:83:f4:19:51:fa:66:8a:ea:41:9e:ae:41:ec:
bc:1e:19:f3:2b:f1:7b:7d:65:63:14:b6:a8:18:93:ef:1e:1e:
0f:e9:c1:73:c8:41:45:36:4b:9b:af:46:69:31:f6:fc:a3:d9:
a9:4b:c5:16:c5:f9:56:91:79:3b:59:65:7f:b3:6c:b0:e0:dc:
47:bf:25:41:7b:86:b9:2c:5d:e5:84:ea:84:df:d5:2a:04:fb:
00:7f:62:2f:da:81:18:ee:fb:39:58:3d:3e:04:37:44:3c:a4:
7a:09:8f:55:a9:ee:90:77:ca:56:e7:d7:24:95:ef:e1:c4:62:
58:46:de:f1:75:16:a6:5a:f6:e1:38:36:c0:a3:22:34:d6:d0:
3f:d3:86:b5:db:1e:05:14:a0:8b:ae:ba:30:09:51:8e:81:a6:
5a:49:db:05:45:3b:ca:62:d6:bb:c4:e9:81:2c:a4:f1:c7:74:
91:45:78:c9:71:8d:f6:52:78:34:53:e6:81:11:f3:71:a0:92:
b7:c6:9e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:41 2024 by rpki-client on console-fra.rpki-client.org