Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Yuq2tf1KrEqHcWL8DMNe2VmF6Zg.roa
File: Yuq2tf1KrEqHcWL8DMNe2VmF6Zg.roa (raw, json)
Hash identifier: 4GnAePEqBMY417Pv/AYhfy1c0UvK7lS9abC4YXdz8zg=
Subject key identifier: 62:EA:B6:B5:FD:4A:AC:4A:87:71:62:FC:0C:C3:5E:D9:59:85:E9:98
Certificate issuer: /CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Certificate serial: 018E850B7851BCBD57C0F2CE0EBEAA30B7F3
Authority key identifier: 0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Yuq2tf1KrEqHcWL8DMNe2VmF6Zg.roa
Signing time: Thu 28 Mar 2024 12:31:45 +0000
ROA not before: Thu 28 Mar 2024 12:31:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56484
IP address blocks: 185.124.148.0/24 maxlen: 24
185.124.149.0/24 maxlen: 24
185.124.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 21:35:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:85:0b:78:51:bc:bd:57:c0:f2:ce:0e:be:aa:30:b7:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f2f8b2b94721e928f6188b5cf15053144dedf8c
Validity
Not Before: Mar 28 12:31:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=62eab6b5fd4aac4a877162fc0cc35ed95985e998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c9:6e:7c:b2:6c:9f:77:96:28:ed:c6:c9:d9:
a4:66:9b:24:05:17:ca:0d:d4:75:84:a2:d8:1d:20:
96:e0:85:48:e7:04:5f:6b:2c:e3:4d:0a:c1:23:fa:
59:ce:7e:c7:50:1c:00:d4:db:6d:4a:89:be:40:91:
97:97:8e:46:6a:4c:4b:f0:ed:ec:9a:79:84:ee:0c:
3d:4b:d9:dc:09:90:82:a1:23:72:2c:d0:20:c6:eb:
04:b8:a9:44:75:61:86:9f:88:e7:23:6b:83:18:7b:
80:ca:e6:4d:13:d5:ad:a6:4c:39:16:c0:ae:09:77:
5d:75:0a:ab:c1:83:cd:26:17:47:37:78:c2:b5:84:
4f:a3:94:91:24:08:18:71:01:97:dd:95:14:a6:18:
b7:15:5a:58:be:c3:b2:a7:3c:fe:17:f9:68:3f:2e:
78:51:d6:44:42:77:1f:ad:7d:c9:b4:90:50:8f:c7:
f2:b2:b6:b9:f9:c7:b6:56:0f:63:98:59:00:e2:65:
27:55:6e:6d:8d:db:f3:a4:d3:7b:62:92:51:34:8b:
9a:17:d3:92:21:32:31:66:0e:ec:30:5e:9c:25:47:
00:ea:b5:12:aa:55:fa:a0:a1:e0:60:ad:c4:05:30:
84:2c:0b:48:86:22:ea:6e:93:e3:b8:32:0b:11:a6:
5a:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:EA:B6:B5:FD:4A:AC:4A:87:71:62:FC:0C:C3:5E:D9:59:85:E9:98
X509v3 Authority Key Identifier:
keyid:0F:2F:8B:2B:94:72:1E:92:8F:61:88:B5:CF:15:05:31:44:DE:DF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dy-LK5RyHpKPYYi1zxUFMUTe34w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Yuq2tf1KrEqHcWL8DMNe2VmF6Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/4e5902-e283-4916-a33c-7226a8845e01/1/Dy-LK5RyHpKPYYi1zxUFMUTe34w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.148.0-185.124.150.255
Signature Algorithm: sha256WithRSAEncryption
b3:72:29:5d:27:c2:60:f6:3b:f4:eb:a2:d1:b6:a1:80:b2:3e:
65:4a:f7:db:6c:c7:a4:63:57:41:33:d8:c2:00:40:22:f9:fd:
16:4c:f8:7e:fb:8c:c5:86:cc:2f:fa:f0:43:fd:6f:8b:6a:4c:
3d:76:cd:35:e6:61:ee:66:97:ae:63:5e:c2:5c:bb:c6:e6:52:
96:3f:f0:25:51:16:c9:20:58:ea:d6:29:f4:25:f1:ff:10:27:
f1:c8:ff:b9:4b:ab:c2:7c:e0:9e:ff:7a:d3:29:fd:5f:62:0b:
3f:6d:f8:10:8d:9f:48:f8:c8:da:56:d6:ea:d6:8c:44:63:8d:
b0:dc:84:d2:75:14:7e:04:d8:76:82:0d:2f:ae:97:7f:88:cb:
ce:2a:68:26:7a:ee:ca:55:f0:e5:3d:a4:7f:b8:4c:40:86:64:
1a:de:b0:ca:cb:8f:84:27:1e:88:8f:b3:0e:5d:47:63:2a:ea:
3d:4c:81:31:48:17:44:9c:d9:7d:b3:a2:55:25:d4:c0:b8:6c:
99:86:fa:c0:3e:a0:53:28:49:1d:b6:64:b7:21:f9:18:5a:48:
e9:65:0d:0f:83:7f:94:11:af:c2:38:5d:9e:1f:5e:82:28:c5:
b7:4c:e3:20:d8:2e:91:9e:80:b6:b7:7b:09:06:e7:ed:96:96:
94:19:fa:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 23:03:43 2024 by rpki-client on console-fra.rpki-client.org