Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/h9IDmML2pJNDOXhp5eQZsOPMOhI.roa
File: h9IDmML2pJNDOXhp5eQZsOPMOhI.roa (raw, json)
Hash identifier: qY2RRrUenM1fW9kb7gn/GYkLVGT83xJWQrjMhrCC6eU=
Subject key identifier: 87:D2:03:98:C2:F6:A4:93:43:39:78:69:E5:E4:19:B0:E3:CC:3A:12
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192ED90C81BB7D1DB362D877AA443682A81
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/h9IDmML2pJNDOXhp5eQZsOPMOhI.roa
Signing time: Sat 02 Nov 2024 15:49:01 +0000
ROA not before: Sat 02 Nov 2024 15:49:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 185.34.101.0/24 maxlen: 24
217.19.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 24 Nov 2024 11:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:ed:90:c8:1b:b7:d1:db:36:2d:87:7a:a4:43:68:2a:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Nov 2 15:49:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=87d20398c2f6a49343397869e5e419b0e3cc3a12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:4a:46:34:2f:5d:34:bd:db:c3:77:2c:f9:24:
64:0a:43:58:28:4c:f7:f8:14:f6:df:08:a1:b1:10:
eb:44:e8:e1:80:ef:f1:24:97:8c:0d:df:1c:7d:fc:
77:ed:1e:1f:71:24:fc:6b:a4:11:2f:3f:61:6d:60:
a7:b2:90:47:79:5e:8f:be:4f:0d:a2:04:9d:e9:2c:
0e:e1:07:6e:99:f2:95:3f:f9:16:c4:12:d8:04:ad:
ab:d7:c2:7b:a3:b2:5b:54:98:5a:77:ed:bc:57:74:
b1:46:af:0c:37:a5:2c:2f:b5:de:68:f2:e8:a8:7a:
aa:fc:df:ef:66:d3:0c:04:01:32:f1:ba:6b:f7:02:
73:4e:3a:3c:1f:76:3b:11:58:0b:7c:01:f1:50:dc:
67:f9:ca:70:05:dd:43:ad:de:78:8a:b0:c9:32:b7:
e3:a1:e2:4f:eb:05:9b:d4:65:4b:6d:dd:ba:8e:5f:
dc:f0:05:43:83:02:48:e8:e3:64:b8:33:76:ab:5f:
20:5d:26:df:80:dc:f1:3e:e6:1d:50:f8:09:07:1c:
44:35:ab:ac:4d:ae:5a:4b:1a:e1:d6:f0:c5:c8:f7:
20:80:ad:5e:1b:7d:9c:e3:c9:d0:6c:59:16:60:f4:
12:82:9c:d2:62:aa:88:7c:70:00:74:1a:ad:78:8c:
55:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D2:03:98:C2:F6:A4:93:43:39:78:69:E5:E4:19:B0:E3:CC:3A:12
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/h9IDmML2pJNDOXhp5eQZsOPMOhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.101.0/24
217.19.4.0/24
Signature Algorithm: sha256WithRSAEncryption
76:d3:9d:78:94:b1:73:c3:a0:8e:d9:5c:2d:70:2f:9e:ad:ae:
fa:b9:c5:db:4f:94:b8:cc:17:1e:7b:d9:82:4a:63:8a:43:70:
fd:61:0a:d1:fc:34:34:80:eb:f6:fc:9b:6a:b1:87:2e:1e:84:
0c:d5:fb:16:f4:3f:e6:ad:06:e1:3e:9a:93:18:f3:53:b9:61:
e8:51:00:4b:9a:e8:ad:15:c1:2b:e0:f0:19:83:9d:ef:e3:77:
23:f3:20:61:a3:1d:72:76:69:6d:6a:be:59:23:64:11:95:46:
79:96:f5:63:7f:08:7a:e2:fb:51:24:d8:54:ac:f3:45:62:cb:
35:43:ba:42:86:35:aa:e6:4c:74:be:b6:d1:a2:a4:97:2c:a2:
87:a2:97:6c:42:19:58:79:77:9c:32:89:8c:8a:19:45:3f:43:
a8:49:97:4d:a1:b1:0f:58:6b:ac:50:d7:8b:e0:df:f3:f5:00:
c4:bf:4a:7c:ae:1c:5a:78:d7:57:33:52:fd:0e:35:05:91:19:
43:1d:ca:d0:12:ad:75:fc:55:ff:c7:87:17:9a:c5:c7:bc:d7:
b6:89:91:3c:86:b7:24:e0:c9:de:58:4d:29:76:86:b6:49:db:
13:6b:07:58:47:d1:26:a5:fc:cd:4f:b6:ef:31:49:b5:34:ce:
6f:a1:87:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 24 14:06:42 2024 by rpki-client on console-ams.rpki-client.org