Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/n8qnJ2ESB4YALY-BUXV7YMQbpxE.roa
File: n8qnJ2ESB4YALY-BUXV7YMQbpxE.roa (raw, json)
Hash identifier: eGaMTvuVvzm3O3ypZ77Uj6jlXOOhK+Exq3etjF6f9ok=
Subject key identifier: 9F:CA:A7:27:61:12:07:86:00:2D:8F:81:51:75:7B:60:C4:1B:A7:11
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 019077537CE802769BEA207334335D82D341
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/n8qnJ2ESB4YALY-BUXV7YMQbpxE.roa
Signing time: Wed 03 Jul 2024 06:41:18 +0000
ROA not before: Wed 03 Jul 2024 06:41:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215287
IP address blocks: 185.58.23.0/24 maxlen: 24
194.79.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jul 2024 06:07:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:77:53:7c:e8:02:76:9b:ea:20:73:34:33:5d:82:d3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jul 3 06:41:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9fcaa72761120786002d8f8151757b60c41ba711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ae:26:58:79:6a:9f:4e:b0:35:c4:03:77:c1:
df:15:77:9c:ca:63:53:d1:17:dc:fc:ba:2c:23:25:
7f:51:fa:53:73:ec:2f:32:f4:35:c0:d1:ee:9c:14:
07:f6:62:db:6f:73:37:3e:34:40:59:79:e6:55:8f:
fe:2d:81:3a:1f:34:42:0f:f1:2c:ee:bf:7b:f0:4d:
8e:e4:3f:cf:4b:18:a5:d7:bb:7e:3a:49:4a:ed:a3:
3d:cc:c0:f9:c0:d2:fd:38:e5:bf:dd:b1:e9:9b:12:
52:c5:24:23:e8:10:45:ee:ba:b5:d1:a5:ef:dd:62:
f7:a6:97:17:84:e3:ec:32:e5:f1:b8:9b:33:0e:d4:
c1:37:83:be:14:1b:5f:25:0f:ba:07:ad:48:b1:2e:
dc:8b:55:3b:ed:09:4a:a0:55:15:58:dd:81:00:f1:
9b:35:96:18:2a:f2:97:5b:69:48:bd:2a:1c:40:9e:
f1:d8:ed:b2:fe:1f:b6:88:bb:8a:7f:c0:3b:ce:53:
ca:43:da:41:a1:94:f6:10:0b:5b:6d:37:b6:9d:55:
63:be:5e:9f:b8:47:32:f4:99:cc:06:df:d6:a2:35:
a4:cf:a7:f5:84:9e:bb:8e:ea:cd:56:c3:37:88:f2:
ce:74:c0:22:f9:c4:b2:a0:18:97:87:02:0f:34:63:
7c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CA:A7:27:61:12:07:86:00:2D:8F:81:51:75:7B:60:C4:1B:A7:11
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/n8qnJ2ESB4YALY-BUXV7YMQbpxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.58.23.0/24
194.79.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:5e:e1:62:cd:b5:7d:5d:cb:d3:94:4c:2a:5c:cf:77:e3:42:
d1:c7:25:39:e3:34:d2:00:b7:85:5a:3e:27:eb:7c:70:41:0d:
e5:cb:d2:9d:c9:0a:58:6d:d2:f0:2d:5f:bc:9b:56:c0:b4:d5:
b9:9f:78:0e:9f:78:b7:43:19:db:1c:ed:51:82:0a:30:1f:9c:
82:52:0e:46:13:f5:38:8a:2b:1c:ae:37:f9:d4:61:a4:fb:52:
71:29:04:6a:56:e2:f5:b6:1b:27:d4:50:36:d5:db:ef:62:51:
b1:26:9a:95:15:1f:3e:c9:d7:5e:30:7b:51:46:3f:45:80:08:
be:36:ca:59:23:1e:6e:74:62:70:e2:01:00:06:ab:92:bb:04:
96:3a:9f:79:03:45:12:f1:bd:ec:c3:34:ca:d2:7f:eb:c3:55:
ef:c7:7c:52:27:e6:2e:eb:f0:ab:3d:40:49:2c:14:3e:64:23:
ed:2c:9c:55:98:19:00:8e:9e:55:f3:54:b5:53:22:e3:75:68:
59:ac:87:3e:fa:23:e2:8a:2e:24:61:14:25:dd:1d:bc:33:47:
7c:d1:fe:72:8e:fc:b4:09:f3:37:55:50:43:4f:c4:86:a8:46:
25:ce:a4:2b:c1:8e:5a:64:4f:46:ea:f8:9c:5e:4b:00:d2:10:
a7:24:77:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 12 07:51:05 2024 by rpki-client on console-ams.rpki-client.org