Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/U9aMs-8MDgdRTZwmApMU4HYNiQg.roa
File: U9aMs-8MDgdRTZwmApMU4HYNiQg.roa (raw, json)
Hash identifier: gOH8+OV7WMRwPaeJivizRBEkC/pC7lxjMDbcbVka+gQ=
Subject key identifier: 53:D6:8C:B3:EF:0C:0E:07:51:4D:9C:26:02:93:14:E0:76:0D:89:08
Certificate issuer: /CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Certificate serial: 01856E1D38193D7FE8A2711CC4219383BD08
Authority key identifier: 7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/U9aMs-8MDgdRTZwmApMU4HYNiQg.roa
Signing time: Sun 01 Jan 2023 16:14:46 +0000
ROA not before: Sun 01 Jan 2023 16:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6724
IP address blocks: 185.132.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:38:19:3d:7f:e8:a2:71:1c:c4:21:93:83:bd:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c6dc7395815af045048f4ce3910d04008ff3a7c
Validity
Not Before: Jan 1 16:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53d68cb3ef0c0e07514d9c26029314e0760d8908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5d:cb:e9:3c:0d:55:b7:2a:5f:37:a7:6c:e8:
c9:a2:25:df:24:be:97:38:69:c5:b3:43:17:18:4f:
b0:af:af:d6:a6:32:38:bd:a3:5e:27:ad:1c:6d:83:
1b:0a:52:23:34:ee:89:5b:a7:16:c1:e2:f3:e9:62:
77:9a:44:d6:cb:eb:67:95:04:fe:5a:4f:1a:76:96:
08:37:f9:80:41:ef:fb:b2:9f:ea:b8:51:c0:07:a1:
b0:f3:6b:53:02:8f:0f:d0:28:ff:40:ef:ed:6b:4a:
22:31:fa:92:c9:d1:c3:bb:2a:66:38:39:16:52:88:
0e:92:e7:4e:87:c6:28:13:59:f5:86:ce:70:bb:e6:
a6:5d:2c:02:2e:3c:6f:97:f4:5b:fe:af:af:08:f1:
4d:67:2d:e1:88:03:52:69:0d:35:46:6d:e4:74:05:
96:31:e4:78:0e:13:e8:5b:3f:d2:4c:df:09:a9:53:
a0:38:2d:fb:f1:c1:01:e5:d4:5a:72:05:62:8d:67:
c1:a2:bd:ed:6e:4e:89:cd:4c:7d:d1:89:9f:fd:23:
eb:2c:10:43:8c:bf:be:9b:5e:b1:40:37:49:0e:4e:
e2:84:5d:0d:4f:77:14:58:32:86:c5:65:ca:fe:b7:
51:27:55:64:83:87:47:10:88:ef:36:9e:bc:83:77:
d6:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D6:8C:B3:EF:0C:0E:07:51:4D:9C:26:02:93:14:E0:76:0D:89:08
X509v3 Authority Key Identifier:
keyid:7C:6D:C7:39:58:15:AF:04:50:48:F4:CE:39:10:D0:40:08:FF:3A:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fG3HOVgVrwRQSPTOORDQQAj_Onw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/U9aMs-8MDgdRTZwmApMU4HYNiQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/54687f-efa5-4620-8619-3155ba8cb74f/1/fG3HOVgVrwRQSPTOORDQQAj_Onw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.46.0/24
Signature Algorithm: sha256WithRSAEncryption
26:d7:01:5c:b8:67:68:3d:44:d4:35:19:84:d3:ce:d8:c6:73:
ff:0b:55:a1:df:3a:ba:8f:fc:ac:51:79:2b:52:16:87:82:f3:
9f:c4:f0:14:d4:6e:bf:a1:8f:3e:6d:cb:fe:ba:f1:4a:10:d5:
cd:39:42:03:34:01:2f:3b:dd:ca:b3:0a:73:60:9e:ea:93:be:
44:7d:de:10:e0:3f:f0:cf:22:0c:e7:e5:db:f2:f2:4d:56:5a:
b0:fb:52:c7:ff:14:1c:ad:0c:d6:c5:5a:50:91:54:c4:16:4b:
7b:27:76:16:06:21:56:ec:09:8b:e6:79:e7:d0:8f:5d:70:5a:
de:a0:94:b6:0c:ec:7c:29:3a:9d:cb:9b:93:b0:13:c9:9e:d6:
ee:95:a9:ca:18:90:3b:29:85:37:0b:d5:a5:1f:db:4d:e3:a4:
f2:a1:17:ca:91:98:8c:c1:e6:49:6b:d1:05:90:96:27:eb:11:
60:20:6f:ef:c2:87:1a:13:30:38:46:58:c6:f6:36:1a:00:b8:
79:73:2b:7b:aa:1e:47:c5:a2:48:6c:0e:1b:b4:89:d3:cb:ce:
ae:9e:f6:bb:a4:22:fc:3f:05:0a:ed:5c:a5:42:e8:b1:a6:03:
b4:d1:01:fa:ab:0f:1e:94:c1:da:4c:92:c3:d0:cd:cf:b5:4b:
57:32:ea:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:48 2024 by rpki-client on console-fra.rpki-client.org