Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/Ex3oseUiIvREb4jZlwNM7xwTZB8.roa
File: Ex3oseUiIvREb4jZlwNM7xwTZB8.roa (raw, json)
Hash identifier: cWLKqUDl1x4cEw5g4BdqIkc0FHqfDr365/IjAErNZS4=
Subject key identifier: 13:1D:E8:B1:E5:22:22:F4:44:6F:88:D9:97:03:4C:EF:1C:13:64:1F
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 019127EFADA758C7B16E94977B4F5CDD9ACF
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/Ex3oseUiIvREb4jZlwNM7xwTZB8.roa
Signing time: Tue 06 Aug 2024 13:45:04 +0000
ROA not before: Tue 06 Aug 2024 13:45:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3257
IP address blocks: 185.121.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Nov 2024 20:42:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:27:ef:ad:a7:58:c7:b1:6e:94:97:7b:4f:5c:dd:9a:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Aug 6 13:45:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=131de8b1e52222f4446f88d997034cef1c13641f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:15:69:96:36:06:8c:9c:01:10:68:48:49:1e:
32:fd:0d:b9:1f:82:b3:15:63:78:3b:d0:8f:b6:bb:
51:fb:83:d6:bf:34:d0:18:10:03:6d:52:7c:a5:67:
d0:74:61:c2:52:6f:88:4a:97:c0:3e:65:02:a2:5a:
23:3f:42:dd:70:f0:77:47:39:0e:46:79:50:65:e1:
a6:6f:54:62:52:f3:21:bf:6d:aa:f0:6e:88:97:fb:
64:ab:94:7f:07:bd:0f:ec:d5:38:c6:b7:12:b3:01:
c8:e4:3e:d1:35:78:41:d5:a0:03:15:b8:51:36:d2:
8e:62:ac:5f:a3:be:7c:4f:22:e7:52:5d:fb:dd:4d:
a1:ba:ad:75:b3:ff:3f:fe:46:e4:62:01:94:3b:27:
06:ae:65:06:f3:98:16:c6:ee:bc:a4:86:f2:04:4c:
6e:31:4a:48:09:f1:37:5d:e4:0f:b9:61:6b:26:41:
a8:e5:ac:75:82:54:42:4b:92:a0:06:5e:a0:9b:da:
4a:97:c6:44:3c:e4:ed:ab:12:69:3f:07:b1:e2:2c:
c1:67:e0:8d:81:52:80:bb:89:45:fc:64:28:58:7b:
db:a5:f6:e8:4d:61:c6:7c:cf:7e:8b:7a:d0:f9:82:
4c:8a:c5:ee:90:19:af:65:d4:fa:e9:26:dc:51:9e:
72:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:1D:E8:B1:E5:22:22:F4:44:6F:88:D9:97:03:4C:EF:1C:13:64:1F
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/Ex3oseUiIvREb4jZlwNM7xwTZB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.108.0/24
Signature Algorithm: sha256WithRSAEncryption
82:b0:b2:27:b8:ed:89:b7:ee:c8:f5:5c:3e:eb:50:8b:c1:99:
66:00:90:a7:29:73:2a:c2:2d:d2:c2:65:c8:4e:4c:f9:2f:e3:
9a:a2:4e:ff:e0:c7:a4:f8:5f:60:60:30:b4:6e:fb:a4:4c:0a:
e8:97:df:7d:99:6d:a8:d1:42:00:aa:fa:33:c2:2f:9d:6d:34:
b3:86:8c:68:2b:04:fc:99:d0:5e:ff:4e:8f:2b:73:6a:9f:25:
0c:ce:57:a4:9a:5e:00:66:d8:d6:f8:e0:37:c6:d5:48:12:16:
a8:3a:7b:6b:a9:d1:14:50:f7:32:29:c4:d1:a2:15:de:0e:c5:
4c:60:4a:ee:d1:cf:62:14:08:b9:81:e7:43:e7:d2:7f:f0:01:
ce:ec:d5:8d:06:c5:65:4f:f1:d0:f9:6b:91:7b:c9:00:b5:e7:
0d:e4:ac:1b:3d:d8:e8:1d:36:17:39:52:fc:28:68:23:a0:7a:
3f:03:14:4e:54:90:51:a1:43:d2:9f:fb:8f:0c:18:12:f2:d2:
90:78:2a:2e:32:b9:9d:4d:4a:2c:78:d4:35:fa:28:ca:c9:de:
ca:ba:82:e2:fe:1a:ef:b0:8f:b6:68:24:18:9a:19:50:a1:95:
e2:de:e4:f1:9e:23:2e:a8:18:e0:22:76:81:39:c9:54:fb:bf:
7e:5c:e4:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 17 23:31:29 2024 by rpki-client on console-ams.rpki-client.org