Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/c6f56b-bf22-417e-b11b-c6dc58137d07/1/0rGdPM-sAOCtwXeddxx5NFSZCpc.roa
File: 0rGdPM-sAOCtwXeddxx5NFSZCpc.roa (raw, json)
Hash identifier: +1cYj07Od9iz4/SksGTIXiZEFIKJUOAyiCW3x5KiZec=
Subject key identifier: D2:B1:9D:3C:CF:AC:00:E0:AD:C1:77:9D:77:1C:79:34:54:99:0A:97
Certificate issuer: /CN=0438e64299e545d3637074cb946b400f7990ecf4
Certificate serial: 0187BD8B6299B29A80FA5F8F3DFF6FED2CD7
Authority key identifier: 04:38:E6:42:99:E5:45:D3:63:70:74:CB:94:6B:40:0F:79:90:EC:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDjmQpnlRdNjcHTLlGtAD3mQ7PQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/c6f56b-bf22-417e-b11b-c6dc58137d07/1/0rGdPM-sAOCtwXeddxx5NFSZCpc.roa
Signing time: Wed 26 Apr 2023 12:30:41 +0000
ROA not before: Wed 26 Apr 2023 12:30:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43239
IP address blocks: 185.187.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 11:11:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:8b:62:99:b2:9a:80:fa:5f:8f:3d:ff:6f:ed:2c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0438e64299e545d3637074cb946b400f7990ecf4
Validity
Not Before: Apr 26 12:30:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2b19d3ccfac00e0adc1779d771c793454990a97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a8:a0:5e:90:41:c2:6f:b5:ee:6e:8e:ad:b2:
d6:ec:16:fd:74:f0:a4:7c:3e:53:42:c5:13:63:65:
44:8e:f4:00:f9:68:ae:6e:37:ca:c7:da:1f:6e:1e:
1c:b8:76:16:4c:70:0f:c0:14:b9:a0:8f:56:76:b4:
54:5c:c1:40:b8:12:0a:62:27:63:10:4a:26:2b:56:
4d:1a:cd:6b:d8:76:1a:ca:4a:d2:b7:80:b0:2c:20:
fc:e9:52:d4:47:7b:21:a8:aa:d1:34:f0:a9:2b:0c:
03:91:2d:55:d2:8d:0f:1f:8d:82:51:45:f2:a1:ec:
68:f1:27:22:6d:73:02:81:fb:af:54:5b:a8:1f:f0:
cb:ef:ba:ae:6c:b3:c4:03:d7:e9:a4:a0:c7:0a:f2:
6e:13:a7:58:e6:e3:6d:9b:71:96:cc:91:34:89:97:
59:ff:4c:05:68:2a:0c:b4:07:1c:7a:0b:98:34:db:
a5:f4:48:9a:7f:23:65:73:dc:cc:01:e5:d4:b4:43:
ca:27:30:46:6d:a4:d5:2d:6c:34:e5:ce:a9:da:87:
83:36:b0:4e:11:f2:b5:b4:ae:32:74:f9:18:1a:c5:
e4:d6:cb:63:ee:37:5f:e6:ec:8a:78:3b:f2:4f:30:
f1:9c:90:9f:4c:cc:d1:cf:20:ac:ae:18:74:c2:9c:
91:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B1:9D:3C:CF:AC:00:E0:AD:C1:77:9D:77:1C:79:34:54:99:0A:97
X509v3 Authority Key Identifier:
keyid:04:38:E6:42:99:E5:45:D3:63:70:74:CB:94:6B:40:0F:79:90:EC:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDjmQpnlRdNjcHTLlGtAD3mQ7PQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/c6f56b-bf22-417e-b11b-c6dc58137d07/1/0rGdPM-sAOCtwXeddxx5NFSZCpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/c6f56b-bf22-417e-b11b-c6dc58137d07/1/BDjmQpnlRdNjcHTLlGtAD3mQ7PQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.187.107.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f0:a1:47:b2:7f:51:b0:42:14:5f:16:3a:68:72:03:fa:30:
77:0b:3d:f6:9b:ac:17:06:12:b7:65:e3:a6:15:9c:69:6f:44:
02:e3:69:05:e8:a7:c7:cb:14:4a:ea:58:29:a3:1d:eb:50:90:
1a:07:7e:21:d5:a1:a6:82:68:09:2c:b6:22:4f:8f:dd:4f:aa:
73:69:ba:0e:b6:21:b8:3c:4c:e7:89:ed:16:74:e8:56:fa:5d:
76:f6:fd:2b:d7:20:0e:a4:42:84:f2:f7:85:79:af:63:ae:71:
2c:ff:9a:d2:b6:4f:13:c2:7b:08:90:c2:ae:6d:f6:0d:1a:37:
a2:91:dd:57:5b:91:24:68:b2:61:b2:53:65:8f:78:25:ab:4e:
fa:22:5b:cc:32:0e:7f:65:28:39:18:fd:52:bc:da:af:7d:08:
ce:d5:75:db:1f:65:f3:b8:ad:95:02:82:b5:78:62:a6:7f:ff:
8a:8a:c0:67:a8:b7:64:f7:33:a6:22:57:c9:6d:2b:ce:ee:79:
23:92:75:3b:cf:40:e1:57:d2:82:61:cd:3c:75:a8:bb:0c:97:
55:46:9a:31:89:4b:c7:e7:7c:95:87:65:71:e0:9d:4a:8d:8c:
62:1c:fd:74:b5:f1:bc:37:1f:bb:4a:f0:b6:86:b4:e6:13:c2:
65:1d:28:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:37 2024 by rpki-client on console-ams.rpki-client.org