Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/u41AhmmFU8zLBgxFJYL_n-QH8eo.roa
File: u41AhmmFU8zLBgxFJYL_n-QH8eo.roa (raw, json)
Hash identifier: xvWlTcUNuujA7jebluxDVkQBKhdrvNqDZfoxm5RoGKk=
Subject key identifier: BB:8D:40:86:69:85:53:CC:CB:06:0C:45:25:82:FF:9F:E4:07:F1:EA
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0191BDF913C2D5D8684EE6C01DC4ECF278FB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/u41AhmmFU8zLBgxFJYL_n-QH8eo.roa
Signing time: Wed 04 Sep 2024 16:58:22 +0000
ROA not before: Wed 04 Sep 2024 16:58:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 185.141.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 17:28:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bd:f9:13:c2:d5:d8:68:4e:e6:c0:1d:c4:ec:f2:78:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Sep 4 16:58:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb8d4086698553cccb060c452582ff9fe407f1ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:8c:77:90:6a:1b:5e:49:ad:42:f5:5d:98:09:
3d:66:52:57:b4:d6:14:44:ad:ff:66:1f:3c:e7:e4:
34:28:e6:45:ed:72:44:a0:da:ef:32:b9:db:32:62:
eb:0e:29:34:34:03:cf:89:18:60:73:3e:c8:9a:68:
3a:66:69:c0:40:48:c9:0c:5c:33:c3:78:7a:52:79:
59:1c:06:3c:91:21:48:e8:c6:a9:ae:c5:1e:85:f0:
26:85:e5:13:79:e8:11:67:9d:19:ef:ef:de:56:f5:
1b:20:8a:dd:af:a4:cf:af:f1:0b:1d:70:d0:fe:66:
df:15:03:5b:52:d3:b5:cc:a5:af:6a:58:80:3d:3c:
f4:25:4e:5c:31:1b:11:8e:55:16:e1:39:ba:f9:08:
30:0b:d4:d0:8f:fe:22:7f:5b:77:f3:0e:47:29:56:
ce:cf:21:de:0f:d2:45:06:b4:d6:0a:1f:0a:d3:de:
f4:44:ac:62:d0:9f:73:7b:e2:8b:77:f8:75:2a:1d:
b4:3a:11:19:1b:70:45:f6:ba:73:1a:5a:f2:c5:d3:
48:b6:5a:28:59:ca:05:14:b5:f4:98:c2:c6:61:b6:
9f:f8:44:0b:ad:d5:44:e3:01:71:ba:c7:a5:03:5c:
e9:d0:74:71:d7:c5:0c:18:00:e9:1b:a0:f3:cd:20:
8d:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:8D:40:86:69:85:53:CC:CB:06:0C:45:25:82:FF:9F:E4:07:F1:EA
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/u41AhmmFU8zLBgxFJYL_n-QH8eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.217.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:88:f3:5d:3d:85:c3:d4:c0:d3:dd:4a:03:c9:3d:98:38:ed:
e7:c0:12:e4:23:e6:4f:de:3e:09:bf:ce:aa:38:8d:55:53:c4:
f7:cf:d6:a5:82:26:32:01:7c:f3:d0:36:05:08:ff:82:74:68:
e9:15:0b:d5:86:eb:4e:8e:4c:06:ca:9b:24:2b:f8:01:ce:2c:
b2:63:11:17:16:51:3a:9a:3f:76:a9:5d:85:6e:c8:78:30:11:
7b:ea:38:2e:6c:a3:16:ec:2d:ca:0d:f7:16:4d:d8:50:21:c3:
ba:92:fa:9d:6d:1d:9f:b5:6d:ae:80:f8:69:34:73:5c:3a:a9:
97:27:17:9a:3e:0c:67:35:2b:9e:27:20:a0:f2:a0:f3:19:fc:
a9:fe:0d:e0:6d:5b:01:6f:d4:29:5c:bb:37:92:b3:b3:55:27:
3a:58:cb:fb:e8:0e:b1:9a:1f:95:8b:fd:ac:e7:07:9f:17:68:
f0:65:b0:52:01:b8:b6:d4:b8:fa:51:f7:f6:63:8d:96:b0:d3:
e6:d5:59:13:a4:da:bc:d8:79:e7:ba:f9:6c:f8:15:ad:cc:b5:
62:f3:49:ef:61:e8:55:b4:e6:d5:d5:e0:2b:52:30:a1:54:bc:
4d:21:53:a5:ae:1e:bf:fb:5d:4a:43:dd:46:a1:30:00:6b:98:
c9:f6:3f:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 19:15:49 2024 by rpki-client on console-ams.rpki-client.org