Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/UAD9hgR4kfimTzzTS7uyB8ajAIk.roa
File: UAD9hgR4kfimTzzTS7uyB8ajAIk.roa (raw, json)
Hash identifier: bLHSOBnzn1OIJ09RjceVud5t/HJbNDnhu1NHYK9yJvE=
Subject key identifier: 50:00:FD:86:04:78:91:F8:A6:4F:3C:D3:4B:BB:B2:07:C6:A3:00:89
Certificate issuer: /CN=12b1674bbf0d118f2554f80cafd3ef1b39d8ae3f
Certificate serial: 018BB7EF07E7379B6D924DD8A9B822DB91FC
Authority key identifier: 12:B1:67:4B:BF:0D:11:8F:25:54:F8:0C:AF:D3:EF:1B:39:D8:AE:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ErFnS78NEY8lVPgMr9PvGznYrj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/UAD9hgR4kfimTzzTS7uyB8ajAIk.roa
Signing time: Fri 10 Nov 2023 06:32:57 +0000
ROA not before: Fri 10 Nov 2023 06:32:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203694
IP address blocks: 185.132.124.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b7:ef:07:e7:37:9b:6d:92:4d:d8:a9:b8:22:db:91:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12b1674bbf0d118f2554f80cafd3ef1b39d8ae3f
Validity
Not Before: Nov 10 06:32:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5000fd86047891f8a64f3cd34bbbb207c6a30089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:cb:39:74:57:95:a2:37:e2:e3:bb:6e:da:e0:
78:64:9b:5c:5e:bb:1b:4f:02:56:cf:4f:31:ce:ff:
78:88:60:cf:5a:23:ad:10:a7:84:c3:fd:ac:04:c0:
0f:50:c2:84:dc:94:7e:1a:08:a4:16:93:65:f9:86:
8b:6b:c1:6c:a0:a4:00:56:d4:1a:2f:bf:96:5b:d5:
55:8d:bd:d4:50:b0:16:4f:f7:ef:4a:c6:67:a8:4c:
24:7e:59:54:57:9d:a5:e6:f1:40:b6:4a:7b:65:e6:
29:8e:da:3f:7d:b9:19:ae:cd:cf:7a:1d:68:26:2d:
a8:d5:f3:db:8f:06:4b:2b:97:0a:e7:36:2d:63:ac:
ad:36:85:af:5d:fd:96:b1:e7:1a:61:d3:58:9f:9d:
4b:6c:ca:ea:1b:22:e4:30:57:fc:11:9b:96:4e:21:
43:04:e1:d0:c2:c0:3c:6a:2c:50:b1:85:4e:9c:12:
4d:6b:8a:d2:98:5b:3b:ec:60:b6:9d:98:95:b5:fe:
d1:50:da:b5:09:5e:e5:1d:45:ff:d3:27:7d:eb:5e:
f9:c0:60:91:86:cc:5e:cd:6d:d6:49:96:43:61:e1:
07:1a:5d:fd:5e:36:58:db:41:f7:5f:8d:ba:f6:3d:
4b:c5:1a:e3:00:0f:55:36:bc:f0:34:ae:e8:84:6a:
a1:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:00:FD:86:04:78:91:F8:A6:4F:3C:D3:4B:BB:B2:07:C6:A3:00:89
X509v3 Authority Key Identifier:
keyid:12:B1:67:4B:BF:0D:11:8F:25:54:F8:0C:AF:D3:EF:1B:39:D8:AE:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ErFnS78NEY8lVPgMr9PvGznYrj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/UAD9hgR4kfimTzzTS7uyB8ajAIk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/2399d2-8e24-48f2-be88-f371f98a753b/1/ErFnS78NEY8lVPgMr9PvGznYrj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.132.124.0/24
Signature Algorithm: sha256WithRSAEncryption
19:c8:1d:3b:1b:79:59:6c:02:90:f8:d7:b9:24:79:58:55:7a:
fa:a3:1a:07:e5:9e:d3:3c:84:cd:c1:f6:a6:24:5d:36:14:ec:
82:f1:64:53:31:33:1d:e5:1e:bf:e8:41:7e:84:ae:8b:e9:ff:
0e:c9:b7:18:78:fa:06:5b:a1:4c:64:44:d5:4e:3f:32:6a:75:
48:47:ad:1b:55:54:d8:16:ba:65:2f:e2:5b:08:ec:43:9b:a2:
cc:6d:29:2c:44:59:cf:2c:a6:12:27:93:37:4d:fc:92:a7:96:
30:7a:e6:19:90:f2:d8:db:5f:2a:f4:74:b2:53:b5:d0:c0:93:
d3:8d:93:24:3c:15:45:e8:69:13:44:31:7f:6a:f2:91:9f:e1:
cd:d4:83:16:54:0e:21:ff:30:99:20:cc:10:52:30:81:87:10:
0f:3a:17:d5:5b:92:d4:b6:b3:82:ab:3f:80:6a:84:b4:b8:aa:
06:36:fc:02:ba:e3:8f:34:96:fa:56:e3:51:7d:15:01:1d:1a:
b7:41:5b:51:7e:12:69:49:18:01:1e:8a:c0:06:af:6e:7b:69:
b7:1f:9c:8a:62:80:79:c3:3c:0e:9d:47:18:62:95:c5:98:59:
79:07:7f:a8:91:d7:3c:c0:40:e7:e7:a7:48:8a:0a:c1:1a:a6:
77:a8:fb:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:34 2024 by rpki-client on console-fra.rpki-client.org