Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/C4kQliTym8sYNVi_AlHJclqHYJY.roa
File: C4kQliTym8sYNVi_AlHJclqHYJY.roa (raw, json)
Hash identifier: 7Aa3/FKd38J+gRZDcvotOwd8UOx1ebAd/4930kONBic=
Subject key identifier: 0B:89:10:96:24:F2:9B:CB:18:35:58:BF:02:51:C9:72:5A:87:60:96
Certificate issuer: /CN=2dc81d24c45ddaa345f9064de29fbca7b129a52c
Certificate serial: 018572BA65B5B54346702C4203AFBFDF20EE
Authority key identifier: 2D:C8:1D:24:C4:5D:DA:A3:45:F9:06:4D:E2:9F:BC:A7:B1:29:A5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LcgdJMRd2qNF-QZN4p-8p7EppSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/C4kQliTym8sYNVi_AlHJclqHYJY.roa
Signing time: Mon 02 Jan 2023 13:44:56 +0000
ROA not before: Mon 02 Jan 2023 13:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.14.237.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:65:b5:b5:43:46:70:2c:42:03:af:bf:df:20:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dc81d24c45ddaa345f9064de29fbca7b129a52c
Validity
Not Before: Jan 2 13:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b89109624f29bcb183558bf0251c9725a876096
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a3:ca:39:eb:e9:05:22:80:67:0c:6d:e2:a1:
6e:ae:e1:f8:48:0a:52:7f:b9:09:b7:0b:e7:08:f3:
17:08:98:73:6a:da:5d:26:8b:4a:b4:01:6c:59:7a:
0f:66:83:e6:f2:1f:01:a3:05:e6:a2:1f:25:71:63:
16:28:32:65:63:dc:76:9a:2e:78:c1:94:cc:e2:62:
ea:c1:8a:c2:7f:36:f4:9b:a3:9c:4c:50:67:60:1d:
84:8e:14:d8:55:3c:ba:a7:c1:9d:80:1a:16:e2:ea:
82:7a:11:08:a9:76:2f:a2:32:ef:f0:b2:70:f0:76:
b0:dc:69:d5:6b:33:67:55:04:53:d5:10:df:ef:33:
e5:40:17:74:0e:15:e9:ca:99:46:88:3e:2b:57:51:
58:4d:73:7a:6b:7b:ed:b2:87:0a:70:25:e3:01:ce:
71:86:a3:f4:2b:87:20:40:e3:81:38:69:aa:8c:f6:
3e:ff:8e:68:82:b5:63:17:02:a3:6e:e1:eb:0c:20:
c2:fa:0c:c2:fa:1a:52:d8:f5:6a:e5:88:5d:b6:6b:
1c:00:ca:de:f7:2c:c3:45:78:6e:d1:82:a0:e5:59:
21:0b:d7:2b:03:ec:f1:eb:27:a8:92:ce:37:1e:4c:
67:89:5e:70:ca:3a:43:c2:a5:b0:8e:7f:d1:99:b3:
a8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:89:10:96:24:F2:9B:CB:18:35:58:BF:02:51:C9:72:5A:87:60:96
X509v3 Authority Key Identifier:
keyid:2D:C8:1D:24:C4:5D:DA:A3:45:F9:06:4D:E2:9F:BC:A7:B1:29:A5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LcgdJMRd2qNF-QZN4p-8p7EppSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/C4kQliTym8sYNVi_AlHJclqHYJY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/LcgdJMRd2qNF-QZN4p-8p7EppSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.237.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0e:01:e2:c3:79:fa:9f:5f:e3:61:74:2f:08:e7:ac:27:a3:
1d:3d:58:0b:54:cb:1b:5c:e9:6d:05:19:d0:0c:73:dd:4b:f9:
da:c0:f5:25:40:be:ef:3f:04:fb:b7:bb:72:28:96:6c:dd:e0:
2f:41:bb:07:92:8f:19:78:fb:72:86:fe:46:e2:64:e6:6b:08:
91:77:31:c7:7b:3e:3e:d7:44:24:26:18:b2:af:fe:b9:68:81:
b6:c9:67:8d:a7:a2:81:95:48:b7:cf:76:7d:a3:d2:8b:27:dd:
4a:56:84:96:09:bd:c6:6c:34:b3:95:5c:9f:d6:1f:27:3b:4c:
98:ce:74:62:a2:bd:cd:0f:cd:dd:1b:dd:6a:83:c2:db:c0:9b:
71:8b:e0:86:ba:aa:cf:7e:30:6f:72:2b:71:e5:96:cd:c5:a7:
27:cc:9e:a9:a1:de:d7:18:4f:62:ec:e5:3c:91:06:98:8d:13:
62:a1:8f:fc:59:22:05:c3:8a:d8:51:66:2a:33:25:e3:dd:ec:
d6:f5:3b:34:f4:c8:06:40:0d:80:02:cc:42:aa:c5:cc:69:a9:
0b:ef:64:b4:ae:52:89:58:a6:c7:b6:67:e9:cd:41:e2:4e:8e:
b8:0a:c9:2f:cc:b8:ff:98:75:28:cc:50:a3:81:29:c6:70:fe:
a7:94:cf:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:03 2024 by rpki-client on console-fra.rpki-client.org