Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/STrwuM0dp5YRHUXy1kbc_NTdNd0.roa
File: STrwuM0dp5YRHUXy1kbc_NTdNd0.roa (raw, json)
Hash identifier: JWCLdJXlh3mM6kS71ewhLb84ziTdYmq/Vp3wOT3/PlE=
Subject key identifier: 49:3A:F0:B8:CD:1D:A7:96:11:1D:45:F2:D6:46:DC:FC:D4:DD:35:DD
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018659E1C2BEEC5AE76FC9B0B4640DFBAEAD
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/STrwuM0dp5YRHUXy1kbc_NTdNd0.roa
Signing time: Thu 16 Feb 2023 11:00:12 +0000
ROA not before: Thu 16 Feb 2023 11:00:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 185.104.151.0/24 maxlen: 24
185.110.130.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Feb 2023 18:29:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:e1:c2:be:ec:5a:e7:6f:c9:b0:b4:64:0d:fb:ae:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Feb 16 11:00:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=493af0b8cd1da796111d45f2d646dcfcd4dd35dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8a:4a:a1:35:e4:b5:67:e2:22:f1:a5:90:92:
9e:42:c1:fb:00:78:42:c9:f6:f0:1c:77:07:b9:94:
a9:b5:b3:4f:cd:b3:68:26:04:8e:d5:66:e5:e4:63:
98:2a:f9:cd:26:9a:0c:62:6a:33:6c:48:b1:ea:f2:
ab:18:80:6f:12:19:76:54:ab:b5:b0:a5:c7:e4:cf:
18:7f:7e:59:00:78:36:f1:6f:7a:92:3a:a5:b5:2f:
98:05:78:79:a3:6a:de:41:98:2b:7c:bc:a4:75:d1:
b9:60:e2:4f:3b:da:c6:45:f8:a3:99:96:20:ca:44:
8c:77:3e:b2:e5:82:19:a1:ff:f4:9c:75:cc:3a:12:
4f:24:a2:18:7e:48:af:ac:41:12:72:c2:31:27:ec:
0b:ee:29:ed:a3:37:7c:cb:ea:35:ac:a9:af:a2:d5:
02:41:fe:22:0f:00:9a:ab:df:5d:58:9f:fb:d3:36:
f3:96:06:73:0a:83:d4:a5:d4:9d:cd:ad:50:07:05:
c1:4b:c0:ee:fb:86:3d:4a:48:63:e3:d8:16:fe:54:
22:e8:0c:43:71:83:02:a4:65:8b:39:1a:e7:16:a9:
d3:5d:67:6a:b9:9d:72:9c:53:68:ec:97:6f:e3:c8:
b0:70:7a:b1:dd:fe:53:f5:42:6e:98:79:9b:69:dc:
97:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:3A:F0:B8:CD:1D:A7:96:11:1D:45:F2:D6:46:DC:FC:D4:DD:35:DD
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/STrwuM0dp5YRHUXy1kbc_NTdNd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.151.0/24
185.110.130.0/24
Signature Algorithm: sha256WithRSAEncryption
33:8f:4c:55:ff:5d:c3:11:a6:dc:51:c6:ce:49:0c:c9:3c:73:
32:06:5f:a6:52:6e:36:16:87:f4:ed:57:f3:a6:c6:1d:f5:3f:
19:a3:43:df:61:1b:2e:ad:1e:ba:68:06:79:27:e7:15:37:1d:
fc:25:7b:83:3d:1d:17:ef:4d:64:3a:01:50:99:73:c3:b6:03:
de:a6:53:e9:53:78:e1:50:a9:ae:89:3d:6f:a7:82:a3:fb:05:
b3:9f:91:77:82:29:1d:1b:37:83:7d:4b:37:16:21:3b:ad:13:
10:d6:a2:f9:10:1a:eb:90:22:33:e0:2f:29:22:13:16:9c:b0:
0e:93:13:2b:9c:13:c3:5a:52:3a:a4:70:6d:f7:1c:b8:21:6b:
1e:d2:df:0e:fd:77:ae:2b:d3:a6:d7:17:f0:f1:fe:f2:56:80:
7f:cc:d4:95:bd:a5:19:8e:f7:85:f0:8c:3d:cf:23:aa:9d:8b:
03:6f:20:11:2d:7c:11:03:68:92:86:9e:2c:03:7d:9c:77:bd:
39:b0:53:fa:75:e6:e3:ec:9b:9b:a9:7f:ab:fb:d5:94:86:ad:
a7:05:37:f6:91:1d:ac:50:e2:1e:80:85:cd:a8:da:31:5f:b2:
b2:ce:4c:79:22:db:a2:9a:33:5f:8c:f5:b5:ce:74:11:bb:31:
3a:e9:8f:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:59 2024 by rpki-client on console-fra.rpki-client.org