Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/D0uDrNbdx5UV-9TU_7E3gg6jZP4.roa
File: D0uDrNbdx5UV-9TU_7E3gg6jZP4.roa (raw, json)
Hash identifier: d30AVo6sMAx4WDkCu0MJn2HR/iIt20wFz++WuQyhQaM=
Subject key identifier: 0F:4B:83:AC:D6:DD:C7:95:15:FB:D4:D4:FF:B1:37:82:0E:A3:64:FE
Certificate issuer: /CN=3718b734349bf327d9453b96501e44b192e55142
Certificate serial: 018CCA294D8288DC45E83BAD986F5C5F5037
Authority key identifier: 37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/D0uDrNbdx5UV-9TU_7E3gg6jZP4.roa
Signing time: Tue 02 Jan 2024 12:32:33 +0000
ROA not before: Tue 02 Jan 2024 12:32:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 185.155.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 09 Jan 2024 10:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:4d:82:88:dc:45:e8:3b:ad:98:6f:5c:5f:50:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3718b734349bf327d9453b96501e44b192e55142
Validity
Not Before: Jan 2 12:32:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0f4b83acd6ddc79515fbd4d4ffb137820ea364fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:1d:6c:e7:87:d2:56:62:fb:f8:ac:b8:54:2c:
10:57:d8:7a:bb:3f:6a:29:f6:d0:8b:ec:44:6d:02:
63:7e:ec:6f:67:ba:2f:e3:25:2f:17:da:11:9b:17:
3d:2c:32:e6:0d:a1:40:de:fd:50:9e:a5:25:d2:a9:
b5:90:91:70:cb:54:7b:2f:19:31:7b:7c:a8:a7:cf:
b3:86:fd:80:ba:7b:26:74:97:7a:0e:61:a2:3b:91:
05:7d:9b:be:de:52:02:24:bf:ca:05:c5:bb:1e:f2:
92:5d:64:de:0d:61:62:23:a9:73:3c:c6:ea:7e:51:
d7:12:4c:88:24:cf:f6:51:b2:13:6f:c4:6c:a2:c9:
b1:ee:3a:ac:20:60:c8:61:d8:88:e1:94:b6:4b:e5:
22:b2:85:4c:af:ef:0b:0b:3e:ac:7c:d2:64:46:d8:
14:f2:6a:5a:a1:dc:07:8c:37:a4:11:7b:b1:e3:ca:
25:88:cc:af:dc:73:9e:43:04:23:fa:e1:0e:4e:97:
7f:a9:7a:ed:e2:92:60:c0:83:65:ec:c6:00:3f:cc:
7f:c2:a0:f4:ee:71:2e:7d:ac:2d:a3:10:37:25:c6:
b3:66:31:cc:d6:7b:26:7d:4b:91:21:5f:7c:c1:56:
1e:aa:f1:d7:23:d5:80:4f:03:2f:99:ab:71:b4:a6:
40:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:4B:83:AC:D6:DD:C7:95:15:FB:D4:D4:FF:B1:37:82:0E:A3:64:FE
X509v3 Authority Key Identifier:
keyid:37:18:B7:34:34:9B:F3:27:D9:45:3B:96:50:1E:44:B1:92:E5:51:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/D0uDrNbdx5UV-9TU_7E3gg6jZP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7bf8a8-e49c-406e-8eb7-c823cc8f3837/1/Nxi3NDSb8yfZRTuWUB5EsZLlUUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.52.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:d3:76:b0:55:fb:7d:36:99:d9:09:f7:6d:1b:85:1a:a0:95:
05:0e:24:d5:ea:38:07:76:d4:9a:ba:60:74:59:3d:2d:2a:8b:
9c:1b:21:b4:40:56:51:9f:5e:e3:15:b4:46:f2:bf:11:9d:80:
5b:6a:42:87:32:48:94:3f:81:6d:76:58:cd:00:69:77:7f:54:
0a:17:0a:17:5a:84:88:92:3a:c3:71:03:b7:18:ba:2d:c1:99:
55:90:3f:46:ae:a4:4f:2f:c6:e7:82:f7:a0:45:6a:1e:25:5c:
b4:90:c5:c3:09:c7:f4:09:a0:8c:a9:ce:03:84:19:9e:7a:a1:
14:36:24:6f:de:61:37:43:d5:34:3c:06:d1:8e:d4:68:c8:8c:
8c:62:73:d6:5b:4a:43:97:d0:4a:2a:92:ed:ae:1f:f3:ea:4b:
3f:1b:3a:b8:01:3b:8d:a9:20:18:47:98:2f:10:c1:ad:07:b0:
37:67:c6:6c:8b:00:60:e4:86:80:17:8c:13:9a:98:b0:d6:d0:
d2:17:b2:18:b8:18:d3:1d:85:1f:f8:18:1c:80:56:3c:d3:1b:
c6:aa:38:08:ab:84:85:74:08:86:c2:5d:6a:f2:d1:0b:04:e1:
03:45:29:d0:66:38:d9:83:c7:06:71:28:48:df:97:ab:3b:e0:
81:b8:9e:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 9 15:36:44 2024 by rpki-client on console-fra.rpki-client.org