Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ekD9FAburC6xNCvWHJmBcevGuEM.roa
File: ekD9FAburC6xNCvWHJmBcevGuEM.roa (raw, json)
Hash identifier: /DNV2a1Dyn/IPKt6A/2DIMvH8rgtvwthg1q5jlXNiJw=
Subject key identifier: 7A:40:FD:14:06:EE:AC:2E:B1:34:2B:D6:1C:99:81:71:EB:C6:B8:43
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01856CAF3F89420925ACD5F2D859442578BF
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ekD9FAburC6xNCvWHJmBcevGuEM.roa
Signing time: Sun 01 Jan 2023 09:35:02 +0000
ROA not before: Sun 01 Jan 2023 09:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61091
IP address blocks: 185.11.24.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:3f:89:42:09:25:ac:d5:f2:d8:59:44:25:78:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 09:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a40fd1406eeac2eb1342bd61c998171ebc6b843
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f2:54:b2:aa:42:bb:84:58:5b:2f:2e:8c:4d:
74:3b:f4:d4:be:29:54:e9:6c:32:74:c3:87:7a:69:
78:7d:48:4a:aa:f4:c5:56:04:7e:c8:c1:dc:0a:66:
ed:db:14:da:4b:b8:a3:d9:67:54:05:c9:3f:9e:f1:
bf:c1:d1:92:06:52:15:88:2f:f2:07:34:70:eb:e3:
4f:2c:94:63:0e:3e:e2:b7:79:7b:94:fd:ba:53:3e:
99:17:c2:67:71:51:7a:f0:ce:b2:5d:5b:1e:60:0d:
ba:2f:be:eb:0d:0b:74:7e:34:75:e4:28:fc:2e:c5:
db:d8:2f:54:2b:e8:6e:d1:8c:96:a6:12:4b:bd:fd:
ab:5b:cf:bc:38:db:9e:cf:f6:0b:b0:6d:37:ce:7a:
92:4a:45:83:f3:80:f4:1d:af:07:d7:3d:22:11:7a:
4c:2d:96:1d:e1:37:a4:fd:65:3e:55:cb:4d:c4:af:
9e:e8:b2:d5:e3:d0:c1:3d:31:fd:21:dd:6e:a6:6c:
4f:1d:56:ca:2c:fa:bf:a1:3a:fc:54:61:95:e7:6e:
f5:59:ad:22:30:d3:7a:b4:dc:11:1f:f8:0c:45:e8:
a3:35:42:31:ac:33:95:3a:20:16:02:2f:6c:38:c7:
15:a1:ad:ff:f4:16:52:78:40:f1:b8:d6:a0:51:f4:
e1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:40:FD:14:06:EE:AC:2E:B1:34:2B:D6:1C:99:81:71:EB:C6:B8:43
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ekD9FAburC6xNCvWHJmBcevGuEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.24.0/24
Signature Algorithm: sha256WithRSAEncryption
46:01:60:da:5e:75:22:c3:ff:d3:59:88:42:a8:c7:ac:ab:c2:
bb:38:83:0f:e7:33:56:6d:48:fa:28:01:a3:df:31:3b:4b:cf:
f2:a0:88:c1:f6:8c:a9:05:a3:5f:52:22:4e:a9:2b:cf:c5:32:
6c:b4:3a:22:c1:22:86:43:e1:43:2f:37:93:dd:b5:78:7b:cc:
d9:54:8b:ae:11:9e:51:44:c9:5b:09:91:b1:ca:ae:b6:2f:f2:
68:88:a0:af:40:ce:74:17:ef:3a:bc:a8:5f:9e:f4:fa:f6:8f:
63:75:40:b8:72:00:0a:cc:ba:51:7f:e5:88:71:19:77:42:13:
9c:8f:59:c1:a8:b2:f4:34:0f:42:b0:51:20:79:16:bf:f4:8d:
4b:f5:6d:57:b7:37:5d:03:f0:86:0e:54:12:ba:2f:20:88:42:
51:b5:d8:ce:19:f8:93:f8:a2:f9:49:ad:88:cc:b3:cc:17:70:
77:59:7b:44:43:cb:00:be:c7:e6:41:66:b8:2a:a1:52:6d:8f:
30:ee:64:ec:ad:ca:51:19:e9:e9:16:85:de:2d:97:27:23:00:
5e:b9:18:7e:f2:c3:0b:5b:10:bf:d4:5b:7f:d0:56:59:c5:f3:
5d:1b:b2:1f:32:f3:1f:cc:fa:9c:cc:03:d2:d0:ba:d3:d1:b7:
ca:00:31:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org