Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/snPlU7b6ycwlbjCs5rJRe1KPEs4.roa
File: snPlU7b6ycwlbjCs5rJRe1KPEs4.roa (raw, json)
Hash identifier: Mp7NWPJez3Zw644Nw+cSyOOEs1grw46mm0qDiC9FotE=
Subject key identifier: B2:73:E5:53:B6:FA:C9:CC:25:6E:30:AC:E6:B2:51:7B:52:8F:12:CE
Certificate issuer: /CN=3a5ec28e841f29f380a7ce2cb5cd5673700821fd
Certificate serial: 01856F14B0E0158D3E429FCA59547153BAF7
Authority key identifier: 3A:5E:C2:8E:84:1F:29:F3:80:A7:CE:2C:B5:CD:56:73:70:08:21:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/snPlU7b6ycwlbjCs5rJRe1KPEs4.roa
Signing time: Sun 01 Jan 2023 20:45:04 +0000
ROA not before: Sun 01 Jan 2023 20:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 185.238.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Jun 2023 17:24:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:b0:e0:15:8d:3e:42:9f:ca:59:54:71:53:ba:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a5ec28e841f29f380a7ce2cb5cd5673700821fd
Validity
Not Before: Jan 1 20:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b273e553b6fac9cc256e30ace6b2517b528f12ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:03:d7:6b:95:b2:d2:ba:39:51:99:a0:35:
aa:a5:01:03:51:b0:57:e4:69:4b:19:6c:b3:53:5a:
f1:b1:10:cf:a8:b8:43:08:b9:79:dd:a9:f1:96:eb:
4e:ae:df:01:73:8f:a5:5c:75:4b:80:9d:e3:e6:ca:
55:ad:46:4c:8d:34:7f:d9:18:ed:30:c0:54:d2:a4:
74:21:ea:4f:91:2a:b8:43:64:f8:3a:8e:a6:db:ac:
5c:0b:93:4f:71:9e:23:79:4c:08:b9:f9:f3:4d:6d:
01:72:57:e8:fe:c7:46:17:c8:ab:90:16:34:dc:9d:
73:6d:b1:2c:13:ee:15:2a:1b:0f:49:3f:30:9c:22:
9f:22:24:0b:eb:b4:79:88:08:23:d9:ec:ac:f2:79:
d7:38:3f:d9:14:35:25:06:62:31:6f:e1:11:aa:3b:
97:47:68:e4:88:e3:b1:36:1f:8d:eb:89:97:45:5a:
79:24:61:50:2e:71:4e:cc:b5:b7:8a:d2:52:6d:37:
b1:f9:e2:4d:a8:dc:02:dc:ea:20:cf:a0:34:ea:0b:
d8:61:3e:9d:16:b3:72:a3:c2:ad:47:90:37:4e:d6:
66:0b:53:5a:ff:2f:86:e3:8d:9f:d5:93:87:d2:3b:
34:6d:12:45:29:98:54:71:17:42:8d:d1:7c:fb:a2:
0b:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:73:E5:53:B6:FA:C9:CC:25:6E:30:AC:E6:B2:51:7B:52:8F:12:CE
X509v3 Authority Key Identifier:
keyid:3A:5E:C2:8E:84:1F:29:F3:80:A7:CE:2C:B5:CD:56:73:70:08:21:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ol7CjoQfKfOAp84stc1Wc3AIIf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/snPlU7b6ycwlbjCs5rJRe1KPEs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c12020-a1a1-400e-91f3-835599260ff6/1/Ol7CjoQfKfOAp84stc1Wc3AIIf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.176.0/24
Signature Algorithm: sha256WithRSAEncryption
54:1b:8b:6a:2c:89:6a:ee:9a:98:33:98:a8:51:cc:d2:f8:2b:
9b:af:d7:41:6a:da:7b:d5:1b:e5:8e:13:b7:0e:a4:10:8d:05:
be:fc:c6:ee:d4:b5:59:b8:1b:08:36:a2:f4:28:56:e1:6e:e6:
9c:26:12:71:4e:e9:8b:01:fa:f8:ff:f6:38:c7:82:b6:76:d0:
a5:52:90:ae:11:e8:aa:2b:14:b9:7e:f2:b1:47:19:5b:c1:e7:
b2:65:0b:7f:08:37:b0:e4:e3:3f:37:66:23:59:53:de:1b:37:
bb:32:8d:bb:ca:55:88:df:18:db:62:b0:b6:e9:a7:e0:5f:6e:
c3:c8:f1:fe:0b:24:63:90:cf:15:35:5c:4e:8f:eb:4c:24:9b:
7d:f1:95:2c:cb:df:93:32:ec:fd:20:4e:25:4b:59:5a:9d:06:
34:c2:47:b3:bf:e8:06:5b:9f:7d:f7:2c:d9:26:4c:c3:2f:06:
b1:8b:50:cc:b5:83:58:69:a8:09:a7:e4:59:87:79:fa:bb:2a:
e3:ef:39:e6:52:15:4e:29:cd:39:7b:57:c2:74:46:1b:52:bd:
7c:5c:ab:74:68:50:fd:32:e3:21:d2:da:60:29:48:dc:6b:ca:
e4:88:71:86:96:3c:11:a7:aa:fd:4f:a3:74:c7:e9:d0:18:93:
44:73:bc:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:48 2024 by rpki-client on console-fra.rpki-client.org