Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/31TQRtnHdzYu8ui-n2vraEqiF0Y.roa
File: 31TQRtnHdzYu8ui-n2vraEqiF0Y.roa (raw, json)
Hash identifier: Q9AEF7xo871ZpiZvOdfKjlhjXEk/Tl5Sa0viNAYb9ms=
Subject key identifier: DF:54:D0:46:D9:C7:77:36:2E:F2:E8:BE:9F:6B:EB:68:4A:A2:17:46
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01929E441E96797150FB4A7369C2B6DCA5C0
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/31TQRtnHdzYu8ui-n2vraEqiF0Y.roa
Signing time: Fri 18 Oct 2024 06:15:17 +0000
ROA not before: Fri 18 Oct 2024 06:15:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 185.203.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 06:44:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:44:1e:96:79:71:50:fb:4a:73:69:c2:b6:dc:a5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Oct 18 06:15:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df54d046d9c777362ef2e8be9f6beb684aa21746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:5c:34:fa:e0:18:4c:ed:e2:3f:e5:2f:0a:61:
bb:99:80:7a:27:33:1c:cc:03:c4:39:15:c9:85:ae:
81:ff:1f:ff:cb:51:ad:58:88:dc:26:47:b6:af:c2:
f0:9f:4e:7a:b5:78:f0:25:8f:4f:e0:98:dc:6a:66:
c2:31:32:5b:7c:96:90:83:d4:93:28:4b:0e:19:c8:
9f:f0:c7:f8:8d:46:2f:9d:2e:bf:7e:18:92:ae:fb:
80:2b:e2:0d:d5:11:cf:02:af:d0:1c:d6:d9:8d:cc:
71:34:7d:cb:9c:bc:61:a8:20:73:ba:70:64:fd:ae:
b6:c5:b9:f9:0b:51:42:69:9c:46:c7:c2:b4:c5:55:
c9:65:ae:6a:ba:76:ed:3d:ca:c9:3c:5d:ac:f1:d7:
c9:e4:9b:f8:34:73:9c:c2:d7:67:0b:16:d0:ea:bc:
27:f4:a3:f3:b9:b5:e9:b5:c3:f5:df:1a:75:8e:bb:
bd:23:00:a6:7d:91:43:0a:b4:f4:98:d0:76:f2:c3:
a6:3a:f1:aa:fb:1d:fe:d7:39:1a:d6:e8:93:01:ac:
4c:c2:70:48:70:97:d1:06:39:1e:2b:d3:4d:ed:b0:
50:5a:3b:7c:92:6c:b6:fb:bf:d3:e7:9e:c7:3f:66:
2c:65:86:d9:cd:a7:79:ec:25:64:b7:9b:81:40:46:
96:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:54:D0:46:D9:C7:77:36:2E:F2:E8:BE:9F:6B:EB:68:4A:A2:17:46
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/31TQRtnHdzYu8ui-n2vraEqiF0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.149.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:e7:ba:6b:ba:8c:ed:9b:55:99:a1:2f:57:51:54:c1:1f:d1:
9f:27:8a:79:a9:a7:de:91:5a:3b:0a:f9:5c:75:5e:21:98:aa:
dd:7a:cd:fd:39:a5:ab:0e:7a:93:a0:3e:87:7a:3f:26:79:48:
39:9f:cb:10:e3:48:28:53:33:33:c5:a7:cf:23:bf:fa:cb:da:
8d:7f:59:97:25:d1:69:a6:ea:c6:b5:db:b7:f9:bd:98:9d:71:
c5:ab:ad:28:cb:86:3e:3b:b2:c3:89:48:45:4c:a1:9c:80:73:
c4:bc:77:77:3b:cf:13:b2:49:b2:96:dc:16:fb:7d:20:a4:7a:
ff:61:95:4b:d0:98:40:35:cf:6e:f8:e6:fe:b2:3e:26:fb:53:
90:fe:d7:04:76:5d:7b:71:f6:a7:8a:45:04:81:75:d9:da:e7:
1d:ba:61:35:57:4f:03:64:24:ec:5c:bf:4d:7f:5c:d2:f0:2d:
b6:38:6a:68:ba:4a:30:bf:59:42:ac:e1:29:73:1b:1c:57:13:
df:69:72:a0:8f:52:45:6f:03:87:5b:53:95:90:e4:b8:f6:1c:
e0:bd:46:3b:1b:67:f2:d9:57:09:69:f1:d0:5a:4b:41:46:4e:
3e:2c:e8:6e:eb:5c:43:55:ff:13:e4:07:9c:04:62:5b:d5:14:
2e:2c:ff:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 08:55:12 2024 by rpki-client on console-ams.rpki-client.org