Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/ETPhuXQfaNq8ZA3Zn-iBKpitDEE.roa
File: ETPhuXQfaNq8ZA3Zn-iBKpitDEE.roa (raw, json)
Hash identifier: UQyfNNYSHcxPkE2gq7NCCI49G5uvMwaGeKn044d6V8k=
Subject key identifier: 11:33:E1:B9:74:1F:68:DA:BC:64:0D:D9:9F:E8:81:2A:98:AD:0C:41
Certificate issuer: /CN=5c3a1d973f9b3391e8adacaa664d1b23d778f008
Certificate serial: 0186A744AD26FEFEE8C3755604424E583F25
Authority key identifier: 5C:3A:1D:97:3F:9B:33:91:E8:AD:AC:AA:66:4D:1B:23:D7:78:F0:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XDodlz-bM5HorayqZk0bI9d48Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/ETPhuXQfaNq8ZA3Zn-iBKpitDEE.roa
Signing time: Fri 03 Mar 2023 11:39:01 +0000
ROA not before: Fri 03 Mar 2023 11:39:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.1.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a7:44:ad:26:fe:fe:e8:c3:75:56:04:42:4e:58:3f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c3a1d973f9b3391e8adacaa664d1b23d778f008
Validity
Not Before: Mar 3 11:39:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1133e1b9741f68dabc640dd99fe8812a98ad0c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8a:1c:70:de:b9:86:42:a2:71:24:2d:57:fe:
5e:23:d4:b3:3a:ac:61:8a:68:49:bb:dd:a7:b3:f9:
01:68:cc:bf:38:95:f5:33:7c:9a:88:3f:c6:86:6a:
01:34:ab:0c:44:f2:6e:7e:87:8a:64:08:8c:26:ac:
ff:2c:a6:81:39:a6:a3:28:73:a5:97:c7:70:9c:91:
a2:47:10:31:50:13:a7:7d:a0:49:12:34:33:cf:f0:
c2:a4:68:a5:93:34:49:08:70:8d:33:49:27:d8:80:
56:93:cc:c0:60:56:2f:80:c3:1e:f3:9a:65:a7:7f:
19:1f:40:12:28:68:2a:ee:d2:89:2d:50:5e:45:79:
ac:9d:96:c9:0b:8b:ff:8e:b7:2b:54:e8:83:90:60:
5a:dd:44:16:a2:08:a6:39:00:ca:74:dd:22:d8:83:
c8:82:f8:8b:d5:68:0d:bb:9e:5f:b2:31:c1:3f:8a:
0a:a5:94:96:55:43:31:60:77:62:28:11:e1:fe:a0:
d9:56:69:2f:a3:d2:d7:e5:9a:06:2b:e0:66:82:77:
36:03:fb:2c:13:df:56:32:3e:f8:26:3d:64:5b:83:
19:ba:9d:00:ab:95:c1:43:71:a4:7d:1b:bf:26:8b:
f0:17:f2:e3:28:fd:47:d6:5a:cc:2b:4f:d9:ce:d2:
58:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:33:E1:B9:74:1F:68:DA:BC:64:0D:D9:9F:E8:81:2A:98:AD:0C:41
X509v3 Authority Key Identifier:
keyid:5C:3A:1D:97:3F:9B:33:91:E8:AD:AC:AA:66:4D:1B:23:D7:78:F0:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XDodlz-bM5HorayqZk0bI9d48Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/ETPhuXQfaNq8ZA3Zn-iBKpitDEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/a5fcf5-7863-43c1-a1c1-194cc9902abf/1/XDodlz-bM5HorayqZk0bI9d48Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.27.0/24
Signature Algorithm: sha256WithRSAEncryption
26:03:2a:db:7c:6d:10:59:59:3d:92:fa:c8:6e:e0:39:9e:63:
1e:f8:03:2a:2d:47:27:a9:e7:3f:41:48:12:91:9f:0c:1e:79:
78:7e:ea:c1:4f:06:a6:4d:84:3c:5c:a6:bd:88:02:4b:fe:36:
9d:d6:3b:ec:0e:9f:87:6d:9e:aa:77:73:b3:e3:c2:f5:43:44:
56:31:a7:46:7c:b4:59:a8:cb:bc:e8:ef:e4:34:a7:e4:8b:af:
89:e9:9a:55:c4:ce:3f:d0:e7:c8:23:8e:71:63:46:f3:2b:2e:
97:fc:9a:e1:96:a7:90:63:0a:46:21:63:55:5a:07:d2:b8:80:
de:34:b2:e3:ab:fa:b6:c1:76:c9:d1:21:8f:c7:33:07:13:47:
8e:22:4d:36:41:f8:f2:02:40:d9:6a:1a:c7:85:85:f9:fc:1d:
4b:0e:31:b5:af:00:a4:84:5c:65:60:40:ca:fb:f5:cc:5b:60:
77:07:2d:d9:05:d8:8e:76:21:08:d0:4f:71:87:72:f3:a9:ca:
22:64:ba:21:47:59:f1:3c:e6:79:c5:46:7d:88:08:99:9b:71:
aa:cb:87:c5:0a:34:29:6d:74:8c:ae:9b:ac:f1:ec:01:5d:c3:
e9:d4:00:63:a8:68:44:3a:1d:0a:85:c9:3f:ad:9f:67:fe:ca:
3b:5c:06:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:04 2024 by rpki-client on console-fra.rpki-client.org