Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2scaPHe2Yk9pReKlLJM-Qs5NxeM.roa
File: 2scaPHe2Yk9pReKlLJM-Qs5NxeM.roa (raw, json)
Hash identifier: ZJMSEgAfhwJgYkAwi5yDwmrX/b08MnapkN5N7tCREQs=
Subject key identifier: DA:C7:1A:3C:77:B6:62:4F:69:45:E2:A5:2C:93:3E:42:CE:4D:C5:E3
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192B9F8B45D1AEA5FE5DBB67B6AB2EDA6F5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2scaPHe2Yk9pReKlLJM-Qs5NxeM.roa
Signing time: Wed 23 Oct 2024 15:22:16 +0000
ROA not before: Wed 23 Oct 2024 15:22:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 185.254.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 20:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b9:f8:b4:5d:1a:ea:5f:e5:db:b6:7b:6a:b2:ed:a6:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 23 15:22:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dac71a3c77b6624f6945e2a52c933e42ce4dc5e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:fb:ce:34:ec:4e:b5:a5:fc:4d:aa:26:cc:4a:
64:31:e9:a0:c4:fa:8c:f6:f2:1d:dd:fe:1c:1e:b9:
1b:0b:eb:1f:63:df:b4:6a:48:2c:14:54:8b:72:4f:
23:7b:53:79:ea:94:bf:2e:24:95:98:13:7a:0e:b1:
59:8d:12:eb:75:a0:52:02:b6:ff:48:5e:e1:74:83:
98:83:b8:1e:ec:08:1e:89:e1:47:eb:bc:bb:ef:01:
93:e4:d9:32:f7:31:f2:46:82:71:be:48:7c:dd:fa:
c5:c0:f9:f0:ae:b7:b2:97:49:bc:8b:29:dc:f8:15:
a7:8a:83:e8:8b:be:d8:ba:1a:fc:3d:49:81:19:67:
92:35:22:8f:97:d5:84:b5:da:0b:f5:55:f3:8a:db:
b5:90:51:a4:74:fa:a9:2a:bf:5d:a7:19:13:30:cd:
ad:16:eb:1f:20:29:34:9b:31:18:0a:2d:2c:3b:5c:
d8:f4:54:d2:65:95:cc:12:64:4e:44:9b:c9:51:b9:
0c:92:2b:62:8d:94:ad:88:2a:da:99:76:59:72:c6:
8a:dd:56:d7:d7:14:c7:73:00:ea:28:35:5b:3a:59:
1a:e3:69:35:8d:e2:30:a6:20:d8:75:51:18:4c:c4:
11:19:d7:d0:ce:45:44:d4:11:b3:9a:ec:40:b9:9a:
32:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C7:1A:3C:77:B6:62:4F:69:45:E2:A5:2C:93:3E:42:CE:4D:C5:E3
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/2scaPHe2Yk9pReKlLJM-Qs5NxeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.66.0/24
Signature Algorithm: sha256WithRSAEncryption
11:de:10:30:07:0a:dc:b8:64:c8:ac:91:7c:a2:25:0e:24:b0:
09:51:05:00:ff:83:29:86:20:96:eb:66:96:37:8d:97:3d:fb:
fe:2f:86:92:3c:7b:06:3c:80:2a:2c:b1:6f:d1:35:2d:dc:dc:
b7:5f:dd:a3:fe:3b:02:99:15:1f:00:a0:5f:a7:a1:fa:d1:4f:
4d:54:a0:e4:49:cf:a2:97:78:76:f4:6d:8c:98:1a:d7:48:6c:
a7:76:96:40:48:65:2e:70:1d:66:7a:99:df:52:d7:9f:81:25:
cc:9d:71:06:9b:f3:0d:eb:8e:cf:11:c1:fd:5f:fd:63:da:e6:
07:2a:f3:e6:cb:f0:39:69:b5:5e:60:84:43:ac:fa:d2:72:90:
e6:98:c2:f6:78:77:e4:4f:05:94:46:9d:ef:46:4a:1c:fc:00:
58:e4:84:aa:56:f0:c4:1d:72:ac:ba:24:d6:cc:e6:e7:68:79:
65:d4:56:58:22:30:c1:b5:e2:93:97:d9:fd:5f:b4:04:a0:01:
49:57:94:0a:85:7b:44:92:89:49:c6:ea:86:c0:bb:ef:91:3b:
82:1b:ca:a5:54:db:a1:d8:ca:b8:5f:0b:7b:81:43:d2:c0:16:
4e:1d:64:90:21:6f:87:e3:9b:6a:9e:53:2c:cc:7d:d7:8c:e7:
63:ce:76:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 24 23:48:13 2024 by rpki-client on console-ams.rpki-client.org