Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/1SfNH9yxYMjSnFTcXLPsTW-rXO4.roa
File: 1SfNH9yxYMjSnFTcXLPsTW-rXO4.roa (raw, json)
Hash identifier: 6HUkDQY6AlsiS5D6Zr5guZ31KARAS7epkbTb7Hh6TBs=
Subject key identifier: D5:27:CD:1F:DC:B1:60:C8:D2:9C:54:DC:5C:B3:EC:4D:6F:AB:5C:EE
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 01868D031879B8D49DBC0358F376D4A75F00
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/1SfNH9yxYMjSnFTcXLPsTW-rXO4.roa
Signing time: Sun 26 Feb 2023 09:17:15 +0000
ROA not before: Sun 26 Feb 2023 09:17:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 185.155.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 13:49:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:8d:03:18:79:b8:d4:9d:bc:03:58:f3:76:d4:a7:5f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Feb 26 09:17:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d527cd1fdcb160c8d29c54dc5cb3ec4d6fab5cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:60:69:dc:b2:af:6b:ae:a9:9e:8a:ad:e3:fa:
e1:e1:14:fe:10:c9:a7:a3:eb:aa:28:92:d9:63:c2:
2c:68:5a:81:9b:d0:28:ac:d4:b0:73:61:f4:fd:db:
c9:c2:59:b8:52:e5:df:88:bf:ef:a5:d2:5d:eb:f2:
28:ca:91:25:87:6e:e3:d4:e9:14:e0:ca:b6:d3:ea:
dc:3a:3a:f0:35:85:16:2b:06:52:01:59:88:62:3f:
ca:8b:3b:82:de:12:0c:c4:9d:f5:55:a2:fc:f4:55:
ab:3b:35:80:26:83:82:38:bb:5d:23:12:80:31:19:
45:99:fb:1c:d4:21:94:ae:e0:5f:7e:6a:b1:6f:2d:
73:6c:2e:b4:86:65:50:22:75:6c:5d:1c:be:be:d4:
32:6a:db:15:7b:00:a1:6c:84:f0:18:aa:82:e4:ae:
74:67:18:d8:64:8e:d6:81:9b:d8:c8:71:07:76:81:
e4:5c:f9:1d:07:0c:85:1b:76:48:4b:41:c3:56:41:
cc:9a:f2:93:82:61:e9:1e:03:53:9b:10:1d:6d:ba:
8d:ed:cf:28:b6:ec:b8:c2:14:5d:c6:f7:b9:ba:4d:
1c:f1:4f:7f:cb:c4:64:10:cc:b7:dc:4f:52:b0:30:
73:bd:f7:af:79:a5:72:1e:2c:dc:fe:5d:8b:db:2c:
9d:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:27:CD:1F:DC:B1:60:C8:D2:9C:54:DC:5C:B3:EC:4D:6F:AB:5C:EE
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/1SfNH9yxYMjSnFTcXLPsTW-rXO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.52.0/24
Signature Algorithm: sha256WithRSAEncryption
37:08:b0:ba:5e:c7:63:b3:3d:9e:b3:40:b9:4d:ed:04:cf:67:
d6:0b:2e:92:f0:4d:d1:0c:9c:f6:26:79:a2:82:54:27:a4:ef:
d2:4d:43:04:3b:0f:97:fc:6d:26:f5:9a:f6:d6:d3:a5:45:b0:
bf:63:cb:c6:d0:d0:2f:8b:48:cf:15:10:9d:82:28:56:35:e9:
4c:be:45:2b:d6:07:c9:1f:fe:a2:ef:8b:b0:86:1d:13:87:e8:
98:89:13:d1:b8:1f:da:80:82:a1:09:24:2e:40:20:d7:fe:f3:
d0:25:26:f0:de:ad:1a:45:71:06:a3:cb:6a:25:8c:e0:f1:dd:
4c:42:05:96:e6:3e:fa:a1:df:df:94:57:33:e3:9e:8c:b7:78:
75:24:2d:71:00:a1:ee:58:55:d8:f0:ef:61:6c:6c:de:9a:6a:
cb:68:c8:12:7a:93:8f:fd:d5:6f:e7:84:73:ac:e6:8c:a4:c9:
11:b5:09:78:b1:87:b1:df:eb:26:29:3a:a2:d6:d6:69:a4:6f:
39:39:11:ef:b5:b8:a4:cb:45:7b:94:1d:56:35:89:c6:82:c8:
8e:9e:98:e6:f3:19:06:4b:dd:b1:21:c2:82:77:05:5c:ce:eb:
14:c1:06:87:da:53:c6:54:9d:cf:d7:0e:b9:79:c9:27:34:2e:
e7:3b:50:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:17 2024 by rpki-client on console-fra.rpki-client.org