Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/hZ30VK56jc8VktM3yZwyCE63UBs.roa
File: hZ30VK56jc8VktM3yZwyCE63UBs.roa (raw, json)
Hash identifier: imS5Uhe9xxcEE3sem7SvcBpJ245CEIjsLmke1RzBYJk=
Subject key identifier: 85:9D:F4:54:AE:7A:8D:CF:15:92:D3:37:C9:9C:32:08:4E:B7:50:1B
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019200AECE02E6510AC48509D9D0517802F9
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/hZ30VK56jc8VktM3yZwyCE63UBs.roa
Signing time: Tue 17 Sep 2024 15:51:48 +0000
ROA not before: Tue 17 Sep 2024 15:51:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43641
IP address blocks: 185.58.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 16:05:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:00:ae:ce:02:e6:51:0a:c4:85:09:d9:d0:51:78:02:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Sep 17 15:51:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=859df454ae7a8dcf1592d337c99c32084eb7501b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:09:4a:61:c3:80:a2:25:ca:a5:d2:e3:47:a3:
ed:3e:27:14:a0:d2:96:77:94:43:e4:b7:d2:3e:10:
9c:28:0e:be:23:7d:08:54:85:d7:26:6d:72:90:5f:
fd:1a:a8:83:51:86:20:d1:7e:39:fb:99:8c:e0:bb:
bc:68:5e:eb:2a:38:5b:0e:71:b3:28:83:4f:b4:a6:
0a:84:d5:b9:20:bd:6b:c9:01:6a:4a:c9:7b:0e:e3:
cb:ab:f6:42:2f:62:b7:49:63:55:fb:88:e4:09:4b:
ca:40:63:12:b4:d0:68:20:55:fd:fe:6c:a9:fc:4d:
f8:20:79:69:c7:90:e3:ec:12:9f:a1:0d:d6:c2:89:
4c:36:3b:b8:93:2e:53:92:a1:4e:32:61:ea:29:f2:
59:de:dc:93:d3:8e:ec:da:e2:1c:0a:34:33:9b:13:
04:c9:d2:b1:15:d5:06:99:4e:de:9e:f6:2b:b1:98:
f1:26:a9:71:8b:3b:2e:fd:41:2c:27:0f:2d:ca:18:
47:8e:9f:25:77:dd:04:03:6e:5e:10:0f:8a:90:d0:
16:04:17:fb:f8:7f:29:5e:70:b8:50:9a:d6:11:93:
46:39:15:35:bd:27:0c:cc:54:6f:f3:8d:b8:03:e5:
8a:13:5c:11:75:1c:fb:5b:43:43:d9:90:48:8d:b9:
63:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:9D:F4:54:AE:7A:8D:CF:15:92:D3:37:C9:9C:32:08:4E:B7:50:1B
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/hZ30VK56jc8VktM3yZwyCE63UBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.23.0/24
Signature Algorithm: sha256WithRSAEncryption
21:9f:e4:e6:7d:2e:9f:9c:31:c4:69:06:f3:3b:69:5e:bc:e6:
2c:4a:b4:46:11:fd:27:9e:fa:2a:42:98:0b:0a:80:aa:1e:d2:
de:0e:ce:ff:19:bf:c9:b1:0c:1e:01:f8:af:c8:e3:7a:e8:db:
bb:f0:f8:a4:f3:63:4b:ad:07:27:46:53:88:3b:a3:10:c1:65:
da:4d:a7:46:3c:25:6e:b6:bb:ea:8d:fe:ed:34:43:9a:bf:7a:
99:b6:e6:4d:52:33:36:93:3b:f6:92:04:52:82:15:3a:ba:cc:
92:d8:09:e0:12:e6:d2:17:b8:bb:c0:38:b8:1e:d9:61:44:66:
ba:44:f4:94:1c:8f:35:e1:09:f2:6d:e9:12:b5:19:5a:47:f0:
23:a5:f1:75:8a:38:58:a3:15:b8:21:f7:21:ae:9a:45:65:6d:
bc:24:94:ef:9d:dc:b5:7b:c5:32:03:3e:33:76:9b:b4:b0:78:
90:f8:33:bf:ed:72:05:6e:d7:8d:56:11:9e:45:79:1d:14:90:
ff:91:56:f3:34:2a:91:7c:ac:f4:55:23:be:5f:b9:22:d1:dc:
e7:0b:81:bd:d3:14:00:f2:58:7a:c1:c7:3e:36:70:e3:5e:c6:
3d:7e:6a:81:a3:3b:bb:cc:8a:96:84:a6:8d:01:6d:b5:0a:fe:
99:8e:2f:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 19:11:00 2024 by rpki-client on console-fra.rpki-client.org