Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KoFmOlkg2JuSH2_R19VrFd1L7tA.roa
File: KoFmOlkg2JuSH2_R19VrFd1L7tA.roa (raw, json)
Hash identifier: wLRpT+Qtsw1gj8DW32pUrncoVnK7H/kpz4oDpGQXUBg=
Subject key identifier: 2A:81:66:3A:59:20:D8:9B:92:1F:6F:D1:D7:D5:6B:15:DD:4B:EE:D0
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 0191D645BA466AD5212F43278CF055E777DF
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KoFmOlkg2JuSH2_R19VrFd1L7tA.roa
Signing time: Mon 09 Sep 2024 10:12:59 +0000
ROA not before: Mon 09 Sep 2024 10:12:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60117
IP address blocks: 185.58.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 16:05:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:d6:45:ba:46:6a:d5:21:2f:43:27:8c:f0:55:e7:77:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Sep 9 10:12:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2a81663a5920d89b921f6fd1d7d56b15dd4beed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:23:f2:ac:6c:56:a3:5a:67:74:89:81:0f:4e:
d6:5f:91:3e:30:74:c5:f9:66:dd:99:b1:6c:d1:87:
7e:e9:6c:16:c4:ea:22:10:30:15:72:68:8a:5b:a3:
91:1f:69:e5:6b:dd:48:11:f9:71:2e:76:23:74:47:
3a:d8:da:7a:49:ed:08:89:97:b0:52:b3:f9:30:dd:
e6:c9:4a:bb:87:ef:84:96:ae:e9:1b:75:15:e2:86:
ae:3a:64:be:3d:ea:b3:51:58:d8:13:df:4a:f2:3f:
2d:81:d6:d7:9e:63:45:b4:3b:e1:04:1d:95:02:66:
b5:70:e7:7a:ce:73:5d:b0:4d:1e:16:df:bc:2d:69:
98:ac:d1:1c:9e:62:75:b7:dd:2d:9f:a5:f5:c1:66:
5e:a2:0c:d1:99:ff:53:cf:2a:5c:5f:3e:08:eb:18:
fc:8a:20:d2:d1:b3:13:2c:a1:87:b8:8b:26:18:b4:
3b:df:85:f2:0f:fe:54:3f:e1:f9:08:eb:7d:4f:c1:
98:28:98:b5:f5:9c:83:c7:8b:e0:e2:61:2f:27:ba:
de:ee:28:5a:ad:be:63:af:50:65:81:66:e8:27:52:
93:e7:fb:c3:cd:f6:87:11:10:04:54:2d:ba:33:23:
af:ca:e2:b6:e7:97:50:1b:db:6f:25:10:91:b9:c9:
74:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:81:66:3A:59:20:D8:9B:92:1F:6F:D1:D7:D5:6B:15:DD:4B:EE:D0
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/KoFmOlkg2JuSH2_R19VrFd1L7tA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.23.0/24
Signature Algorithm: sha256WithRSAEncryption
30:cc:3e:e0:33:14:15:cc:11:71:67:19:0d:b6:f7:2e:22:ad:
1a:70:fa:8a:e8:8a:f0:a6:98:00:b8:e5:2f:54:69:dc:10:ca:
2b:51:64:e3:08:e9:2e:21:fe:bc:f6:a2:72:76:77:0a:08:cc:
10:d4:f6:76:8e:4d:7c:0d:fc:ab:87:61:46:c6:6e:23:28:35:
ec:b1:b7:a9:a1:e1:a0:48:37:2a:28:9a:de:45:21:b8:1e:4b:
f5:e1:19:b2:e9:96:ed:f8:cb:5e:4d:82:dd:60:26:63:93:a7:
f0:43:4d:25:df:e2:35:5c:bd:64:a4:55:82:e8:60:2a:ff:a7:
45:28:5f:48:d9:e2:2a:30:60:c7:eb:8b:82:f4:87:69:1d:73:
3b:b5:42:36:f5:d3:1b:4b:e7:1e:43:a0:a2:7a:13:ce:18:bc:
e4:58:b5:e4:f2:25:3e:41:4d:2f:ec:4f:2f:42:6b:64:e1:b2:
99:a5:c0:06:df:d7:fb:9b:97:f7:ee:af:ea:0f:eb:80:46:7c:
1f:f5:8e:2d:95:38:3a:f2:05:57:49:fd:e5:36:c4:f6:87:58:
4e:98:30:cf:a8:a9:ec:da:f3:33:60:dc:c8:37:b1:a2:22:3d:
4a:9e:ed:33:7e:94:23:12:64:d9:8d:25:c6:fd:4f:27:fe:a9:
4e:30:26:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 21:45:05 2024 by rpki-client on console-ams.rpki-client.org