Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/C5D2wdKSehQVpFn-y69guteFWiA.roa
File: C5D2wdKSehQVpFn-y69guteFWiA.roa (raw, json)
Hash identifier: IcgL60uWJ82qkzL6OCAjHCF/yy7DRx7vWf0us0kC3Ko=
Subject key identifier: 0B:90:F6:C1:D2:92:7A:14:15:A4:59:FE:CB:AF:60:BA:D7:85:5A:20
Certificate issuer: /CN=2dc81d24c45ddaa345f9064de29fbca7b129a52c
Certificate serial: 0191B6A6122A5528DA61F003D9C9C64F2FED
Authority key identifier: 2D:C8:1D:24:C4:5D:DA:A3:45:F9:06:4D:E2:9F:BC:A7:B1:29:A5:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LcgdJMRd2qNF-QZN4p-8p7EppSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/C5D2wdKSehQVpFn-y69guteFWiA.roa
Signing time: Tue 03 Sep 2024 06:50:22 +0000
ROA not before: Tue 03 Sep 2024 06:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.14.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 17 Oct 2024 18:09:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b6:a6:12:2a:55:28:da:61:f0:03:d9:c9:c6:4f:2f:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dc81d24c45ddaa345f9064de29fbca7b129a52c
Validity
Not Before: Sep 3 06:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0b90f6c1d2927a1415a459fecbaf60bad7855a20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:63:2f:d6:65:37:84:08:f5:61:c0:83:e7:e2:
28:6c:d7:83:01:04:19:53:e0:f7:a3:72:8c:02:19:
3e:1b:af:c0:8e:fb:f3:33:e4:82:87:a8:29:d3:ec:
1c:82:5a:32:05:26:8f:b0:38:7a:78:a1:dc:d0:16:
9c:f2:49:06:8e:e9:71:47:03:90:f5:7f:55:bc:65:
00:7c:0d:b2:c4:18:a8:c1:94:7b:c3:ef:cc:91:8c:
0b:c8:ac:6e:f8:2b:50:aa:f8:4a:f7:2a:fe:17:d5:
96:be:26:7e:47:14:24:f8:e2:96:c4:b4:9f:90:8f:
08:64:4c:ae:83:9d:26:79:14:77:43:0d:bc:0f:59:
cf:b5:fc:ec:f9:7d:f6:34:89:43:09:ce:b6:65:b8:
26:a6:78:48:1a:80:76:81:46:dd:01:8d:22:ba:51:
a5:a2:42:82:b0:77:ed:53:50:51:00:42:ee:48:6b:
d6:f6:bb:bc:8d:44:30:06:43:21:d5:be:49:65:ed:
ad:6f:7d:6c:7f:02:ee:f2:34:e3:24:ee:02:d3:97:
5f:10:58:0d:36:ba:bf:2e:0f:92:c2:ec:cb:c3:c4:
5f:ee:cd:46:cb:fb:a8:58:18:87:18:c4:1f:0b:e0:
4b:4d:1c:e1:07:e3:46:9a:89:4b:5c:fa:bc:79:92:
e3:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:90:F6:C1:D2:92:7A:14:15:A4:59:FE:CB:AF:60:BA:D7:85:5A:20
X509v3 Authority Key Identifier:
keyid:2D:C8:1D:24:C4:5D:DA:A3:45:F9:06:4D:E2:9F:BC:A7:B1:29:A5:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LcgdJMRd2qNF-QZN4p-8p7EppSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/C5D2wdKSehQVpFn-y69guteFWiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bf3db5-a33f-4311-acd9-2fcc0b749b32/1/LcgdJMRd2qNF-QZN4p-8p7EppSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.236.0/24
Signature Algorithm: sha256WithRSAEncryption
59:d5:96:6b:f2:9a:62:b6:9c:bf:c9:4d:04:db:f2:60:53:57:
b4:66:df:6d:db:ac:79:43:52:4b:6e:6c:8f:ca:16:ec:a9:9f:
90:35:6d:47:51:a6:77:00:a0:45:d6:bf:0e:99:b3:09:25:fd:
29:24:57:09:f5:e3:63:f3:f0:6c:5f:f5:0b:61:d5:cd:71:57:
95:60:74:ec:6d:9a:dd:71:e6:ee:d5:c8:9d:a5:fb:e1:60:ba:
28:43:2f:b1:2d:e0:52:82:61:2b:9f:1d:30:88:52:ab:39:06:
d2:a4:3b:37:7e:7b:bf:6a:41:c3:fa:59:2f:94:a0:7b:0e:85:
e6:ee:35:94:2c:eb:a9:b5:99:67:3d:68:ff:33:1d:53:cd:df:
2d:6e:39:7a:5d:22:af:52:6a:d2:4e:04:3c:90:9e:03:d2:8f:
b8:af:da:46:41:5e:28:c1:f6:18:8d:1f:4b:88:0c:51:22:90:
e0:6d:a5:c9:50:e6:c0:2b:a0:01:e0:01:e2:50:d4:18:f0:b8:
cc:79:b8:c3:27:cd:35:3e:03:2e:82:76:f2:b0:6f:b9:04:db:
c2:0b:9b:60:a2:e6:e1:34:a8:49:75:d1:de:4c:e2:51:42:b0:
de:30:fd:36:36:04:2d:a0:89:95:88:c1:1b:fa:53:e4:7b:86:
a8:75:c4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 17 22:34:22 2024 by rpki-client on console-ams.rpki-client.org