Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/czRbKHgTqUz3dKF6W4Tf-nAYb7w.roa
File: czRbKHgTqUz3dKF6W4Tf-nAYb7w.roa (raw, json)
Hash identifier: KtDu2JIdgnp7liRtXl+mIB27rJK04RJkFl3MHJCcL34=
Subject key identifier: 73:34:5B:28:78:13:A9:4C:F7:74:A1:7A:5B:84:DF:FA:70:18:6F:BC
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018BD84EC257440B100415866453A103F7DB
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/czRbKHgTqUz3dKF6W4Tf-nAYb7w.roa
Signing time: Thu 16 Nov 2023 13:25:22 +0000
ROA not before: Thu 16 Nov 2023 13:25:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30823
IP address blocks: 185.244.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d8:4e:c2:57:44:0b:10:04:15:86:64:53:a1:03:f7:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Nov 16 13:25:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73345b287813a94cf774a17a5b84dffa70186fbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5d:f9:c4:e3:e6:e8:2a:d5:08:f6:90:a8:67:
35:ca:f4:43:1e:c1:ea:00:30:7c:50:cc:65:a4:a7:
07:1a:27:80:51:45:85:0f:23:13:72:f7:02:9c:f7:
d9:81:15:07:17:3c:b5:02:5d:23:ba:a3:db:18:ed:
de:5c:e4:92:b6:77:c6:dd:e8:ca:e8:e1:fd:55:0d:
cd:5c:29:3d:d5:de:87:e8:16:27:cd:e9:3a:e5:40:
d7:9b:c6:dd:a9:f0:40:fb:0c:d6:96:68:bd:ab:de:
6a:d7:5a:ce:d5:9c:65:96:f0:b4:14:1a:f3:c2:07:
92:49:8e:ec:15:32:91:37:dd:e0:73:b2:a9:16:16:
35:a1:02:63:f0:9f:43:b3:c5:c7:6c:77:02:dc:80:
8c:30:51:31:69:7a:0a:f2:01:30:8e:d6:7f:df:20:
36:a8:47:e3:ba:9f:a8:28:06:e6:3a:5e:4b:47:46:
e2:00:e2:29:2b:29:2f:55:dd:f7:64:16:5b:08:42:
56:b8:8d:9b:cf:8f:dc:0a:d6:2d:b7:a0:da:70:b1:
c3:5c:24:78:ff:d8:dd:dd:2b:ff:1f:5a:5d:1d:22:
7d:be:65:3e:62:b8:b5:49:f2:07:3c:1a:29:10:d1:
6a:33:80:59:c0:4e:73:90:58:ca:5e:88:02:87:fe:
70:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:34:5B:28:78:13:A9:4C:F7:74:A1:7A:5B:84:DF:FA:70:18:6F:BC
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/czRbKHgTqUz3dKF6W4Tf-nAYb7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.29.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:8b:4a:fb:d8:d2:e1:c7:b1:0f:4b:cf:13:a9:32:9a:b8:56:
3b:b9:c1:3d:88:69:7c:1c:54:c0:d9:2e:27:eb:a1:ee:02:6f:
1c:2e:9b:59:81:12:9e:ad:0d:3e:9e:af:e5:02:00:5b:a0:23:
9e:b2:48:83:ae:f0:98:08:75:58:9c:f5:65:91:de:0e:04:c2:
16:e1:a4:a2:80:68:e4:e1:e0:c8:d6:32:e7:00:75:5b:bf:9c:
38:a5:bb:2a:3d:f7:24:aa:e1:59:50:8a:15:a2:3a:2e:b5:97:
8f:be:52:25:68:53:50:91:17:87:b2:3f:fd:d2:f5:ef:3c:b6:
61:84:7a:5b:99:86:3c:71:1d:2d:23:a6:f1:3d:0a:8f:bb:2d:
ac:46:66:de:86:ea:30:27:c5:24:5f:7a:b0:ee:13:68:e2:e1:
02:9b:a2:ad:2e:19:df:15:3d:01:15:6e:f8:95:99:d6:05:f7:
d4:b2:af:85:3c:c7:72:6e:dd:3b:19:79:92:42:82:e0:3e:55:
ba:02:24:ca:e3:96:c0:3c:1b:c9:4a:9a:0b:ea:42:67:56:bf:
f1:43:25:f9:d4:a7:8e:12:db:9f:a0:0b:0c:26:80:1d:01:e7:
5d:c0:30:ef:cf:a8:9e:44:40:29:0c:f8:b3:bc:29:d1:81:b5:
df:93:b1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:39 2024 by rpki-client on console-fra.rpki-client.org