Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/fEMxLxfa_JceCKOD8dUHa1lQM_0.roa
File: fEMxLxfa_JceCKOD8dUHa1lQM_0.roa (raw, json)
Hash identifier: sO+XNZXArF3+9wd7pofR/4i8BJP3BeftIL/DTEbLGoM=
Subject key identifier: 7C:43:31:2F:17:DA:FC:97:1E:08:A3:83:F1:D5:07:6B:59:50:33:FD
Certificate issuer: /CN=f0d4819e663aa9487b6a082a77d2237e1b8802a1
Certificate serial: 01905F34425158E9E5CFF6223C230DC76776
Authority key identifier: F0:D4:81:9E:66:3A:A9:48:7B:6A:08:2A:77:D2:23:7E:1B:88:02:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8NSBnmY6qUh7aggqd9IjfhuIAqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/fEMxLxfa_JceCKOD8dUHa1lQM_0.roa
Signing time: Fri 28 Jun 2024 14:16:18 +0000
ROA not before: Fri 28 Jun 2024 14:16:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.234.100.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 20:15:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5f:34:42:51:58:e9:e5:cf:f6:22:3c:23:0d:c7:67:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0d4819e663aa9487b6a082a77d2237e1b8802a1
Validity
Not Before: Jun 28 14:16:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7c43312f17dafc971e08a383f1d5076b595033fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fd:06:43:43:cb:7e:7b:35:41:b5:f5:97:e6:
b8:f4:12:98:3f:0f:63:38:6e:03:ac:6a:f6:84:02:
95:b1:38:53:d1:7e:97:99:ae:ab:37:cd:ba:c8:e6:
70:a6:03:1b:57:81:3c:8b:4d:d7:1e:ca:44:0e:2c:
f9:e1:f2:3e:7e:2b:08:8c:70:f9:a8:1d:01:29:73:
0c:7a:43:98:13:15:37:c3:c9:61:b6:0f:8f:a2:22:
d7:ff:69:85:18:c5:7f:9d:1c:6f:1f:7d:5e:90:30:
c1:31:98:d7:90:8d:fc:3a:97:aa:48:3a:72:ec:d8:
14:64:59:37:f2:c1:7b:85:a1:71:7e:b4:f5:4c:b6:
bd:fb:50:e0:97:fe:7f:91:34:d7:0f:ee:2f:25:cd:
3f:ec:46:9f:0b:8b:3b:e3:7b:72:c3:01:69:57:92:
04:98:94:67:18:bf:fd:62:74:dc:8a:f3:13:80:84:
3d:7a:31:74:52:c0:3d:73:82:0b:f4:aa:ad:ee:9d:
8d:7b:65:67:e2:bf:df:0a:2f:ff:37:80:92:62:ff:
75:06:cf:93:6a:6a:93:75:67:eb:29:97:f1:24:34:
2e:02:3f:79:0f:16:26:74:78:99:99:e9:a8:e8:0f:
23:6c:e1:9d:c6:25:9d:38:5e:af:d9:38:e2:2f:78:
51:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:43:31:2F:17:DA:FC:97:1E:08:A3:83:F1:D5:07:6B:59:50:33:FD
X509v3 Authority Key Identifier:
keyid:F0:D4:81:9E:66:3A:A9:48:7B:6A:08:2A:77:D2:23:7E:1B:88:02:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8NSBnmY6qUh7aggqd9IjfhuIAqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/fEMxLxfa_JceCKOD8dUHa1lQM_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/34d39a-62d2-40f2-84aa-9724cad6baee/1/8NSBnmY6qUh7aggqd9IjfhuIAqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.100.0/24
Signature Algorithm: sha256WithRSAEncryption
48:44:2a:bc:6e:88:36:48:43:a5:8c:54:d9:68:01:d6:83:99:
a9:a7:6c:e2:a1:ce:20:d0:25:58:89:e5:48:a9:9e:c8:c2:bf:
82:ec:4b:30:72:33:69:ea:c7:b8:50:ba:74:d0:04:e3:48:4c:
ef:e6:98:05:fe:c3:17:0b:8b:07:13:b2:a0:3f:93:88:58:37:
42:41:6a:7d:05:e6:52:b7:7e:06:fb:ec:f4:d2:cd:42:7f:ae:
87:db:57:7a:a6:d9:76:92:cb:c2:61:40:84:25:04:bf:41:db:
19:3e:5a:20:30:d5:cc:b9:8d:4a:38:9b:9b:07:43:f8:01:f1:
73:68:94:d5:a2:9e:c7:eb:fc:5c:23:1a:a1:77:6c:12:f7:e3:
5b:f2:d8:42:8f:fd:e4:25:91:28:d8:d0:72:dc:6f:8a:ef:de:
79:e0:78:4f:67:c4:1c:dd:50:b7:f5:56:f3:e7:2a:cd:40:3a:
45:fd:00:0e:24:40:80:44:3a:0e:ee:ff:bd:cc:08:4a:44:f6:
3a:c3:bc:21:d1:8c:fd:a2:6c:45:8a:87:26:d8:d6:17:e8:19:
10:9a:a1:42:8e:1a:a7:07:b1:f9:bd:09:f5:6b:a6:ec:6f:a5:
89:bc:b2:45:fe:8e:03:4d:a3:02:42:27:f7:5b:44:01:ab:35:
1c:26:71:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 23:37:24 2024 by rpki-client on console-ams.rpki-client.org