Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5Q0hrkGjQj9RK35mwLj8ahBz7MQ.roa
File: 5Q0hrkGjQj9RK35mwLj8ahBz7MQ.roa (raw, json)
Hash identifier: tNm7o6kxJ64ECIecF5kqcfL3lh2VjwmuiTWfu5HK1xw=
Subject key identifier: E5:0D:21:AE:41:A3:42:3F:51:2B:7E:66:C0:B8:FC:6A:10:73:EC:C4
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018645943D05A14D531DE18930B284F306C4
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5Q0hrkGjQj9RK35mwLj8ahBz7MQ.roa
Signing time: Sun 12 Feb 2023 12:23:08 +0000
ROA not before: Sun 12 Feb 2023 12:23:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39134
IP address blocks: 185.177.239.0/24 maxlen: 24
185.111.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 08:41:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:45:94:3d:05:a1:4d:53:1d:e1:89:30:b2:84:f3:06:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 12 12:23:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e50d21ae41a3423f512b7e66c0b8fc6a1073ecc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:db:d4:a1:88:4e:90:74:40:9c:41:32:e8:18:
b9:24:72:c9:c8:40:af:2b:c4:b3:dd:5d:04:23:a4:
88:34:7b:2c:60:74:39:f4:4b:81:f2:7c:05:68:ea:
99:93:74:8e:02:4c:47:37:b5:f2:d5:b9:a8:17:00:
ec:2e:fc:ab:ff:ec:d5:8e:94:47:2c:cf:ca:e2:84:
94:ca:09:2b:0f:34:20:60:2f:34:63:97:30:14:12:
45:99:82:9d:83:78:1f:21:20:e8:07:42:b2:fa:bf:
4a:61:b0:e1:34:f1:c7:46:3d:11:c9:6d:82:be:cb:
34:bc:20:57:b8:b3:76:61:e9:f3:0c:e9:6b:7c:c0:
84:df:6f:8e:da:ac:ae:a9:7f:08:66:70:68:4b:e5:
02:28:c4:0e:ff:41:ea:80:1f:7b:07:13:1b:46:74:
f1:8d:b4:c8:c3:f1:d9:bf:b6:9b:43:aa:ac:4b:b8:
76:ec:04:89:25:25:21:72:1c:26:0b:a6:bc:b3:c8:
9c:91:e9:4d:18:c9:82:49:f9:c1:c6:85:d6:0c:0c:
27:68:59:5a:67:3f:d0:df:9d:91:c4:7e:49:04:4a:
2d:1a:6c:85:99:8f:ae:80:5c:dd:7a:93:a1:ba:7d:
08:25:58:33:bf:54:ff:2e:43:0d:9d:19:6c:2d:ca:
d8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:0D:21:AE:41:A3:42:3F:51:2B:7E:66:C0:B8:FC:6A:10:73:EC:C4
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/5Q0hrkGjQj9RK35mwLj8ahBz7MQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.24.0/24
185.177.239.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:8d:3f:46:e2:f5:a5:ab:36:ba:c0:1d:dd:45:3d:66:85:3a:
60:11:3f:87:7c:b8:15:03:93:c6:86:3b:d9:42:2c:18:eb:e0:
cd:65:88:d7:3f:b0:61:1f:6c:31:95:4b:9f:0e:7a:a1:9d:12:
6b:7e:62:d8:27:4f:a4:7a:b0:ce:21:75:6a:74:33:a0:24:57:
cd:c0:d8:65:b7:a6:f4:c1:80:f5:f7:57:89:47:bc:96:f9:72:
3c:ab:a1:60:24:ea:09:8c:8a:ba:a7:10:25:60:00:06:51:45:
96:dc:41:34:ad:b9:29:22:2b:d2:a8:49:f4:b9:e7:bb:b1:01:
7c:f3:23:80:86:6a:41:11:36:b6:74:fa:c9:2c:4c:20:20:c9:
67:81:7b:6f:28:68:d6:54:7f:22:3b:ab:64:49:cb:9b:3e:1f:
1c:eb:e2:a4:9d:8d:be:2a:c8:06:97:24:61:79:e3:91:8c:47:
d0:70:fd:32:b0:25:fb:57:bf:db:41:4d:3c:28:09:56:13:b0:
f7:83:20:13:2a:13:bf:59:6c:1e:da:6e:e7:62:33:29:91:2f:
80:68:89:07:f7:61:a3:e2:e2:73:14:2a:02:10:b0:0a:4a:a3:
50:80:4d:58:a9:4e:ad:9c:21:e0:9b:dd:d3:81:dd:06:7c:47:
4d:98:fb:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org