Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/IwsD6wSUbyBECuqns_HS5g4o2CA.roa
File: IwsD6wSUbyBECuqns_HS5g4o2CA.roa (raw, json)
Hash identifier: ++SmHD8L5LqjUJvto5YXmGkuMpYLkstn3XuBCL2J6AU=
Subject key identifier: 23:0B:03:EB:04:94:6F:20:44:0A:EA:A7:B3:F1:D2:E6:0E:28:D8:20
Certificate issuer: /CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Certificate serial: 018570DE2DCF8C2C49F7F080EAECC4E0F1B2
Authority key identifier: CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/IwsD6wSUbyBECuqns_HS5g4o2CA.roa
Signing time: Mon 02 Jan 2023 05:04:47 +0000
ROA not before: Mon 02 Jan 2023 05:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206061
IP address blocks: 185.24.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:2d:cf:8c:2c:49:f7:f0:80:ea:ec:c4:e0:f1:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd68f7a391b7b1649ed4903482d3e931ed34e3d8
Validity
Not Before: Jan 2 05:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=230b03eb04946f20440aeaa7b3f1d2e60e28d820
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ac:0e:a9:c0:78:cc:c2:cc:ef:99:62:7a:4b:
62:23:bd:46:83:cd:c4:0e:a6:0c:60:50:17:75:a2:
f8:04:aa:af:84:f0:ef:00:88:09:57:6c:59:79:db:
c0:7d:18:3b:ae:26:15:c0:3a:70:00:a4:76:d0:8b:
3a:7a:08:1e:a5:03:27:05:bf:72:b5:43:71:a8:1a:
d9:bf:2a:a1:e7:dd:dc:4c:c3:fd:b7:a8:ab:0e:b6:
13:8c:96:02:8b:c4:e2:8d:c5:d4:a8:78:23:2b:8c:
15:e5:d6:60:54:cf:24:f8:f8:11:db:00:95:0c:b8:
8d:38:8c:7f:bc:f6:41:85:2c:0f:37:80:20:64:3a:
af:6c:81:ab:ce:ec:c0:72:f5:da:57:8d:7b:ed:88:
08:6f:39:2a:f1:12:9c:69:70:68:cb:22:17:ad:66:
d3:04:60:1d:29:bd:ff:e9:1b:64:84:89:36:38:2c:
71:4f:0e:c7:80:bd:1a:be:81:b1:6d:63:86:e6:31:
3f:40:59:fd:e7:14:8b:d8:d3:43:52:ce:80:5e:96:
a2:07:01:0d:6b:6c:bd:5e:8b:a9:5a:9b:fa:2b:ba:
29:df:3f:3f:ad:e3:6b:2f:04:50:af:4b:f0:62:60:
cb:44:68:b3:47:38:b7:f8:3c:a4:e8:b6:97:a4:3f:
cf:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:0B:03:EB:04:94:6F:20:44:0A:EA:A7:B3:F1:D2:E6:0E:28:D8:20
X509v3 Authority Key Identifier:
keyid:CD:68:F7:A3:91:B7:B1:64:9E:D4:90:34:82:D3:E9:31:ED:34:E3:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zWj3o5G3sWSe1JA0gtPpMe0049g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/IwsD6wSUbyBECuqns_HS5g4o2CA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/8b05bf-33f1-4b5b-88a4-1673ad8c4012/1/zWj3o5G3sWSe1JA0gtPpMe0049g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.217.0/24
Signature Algorithm: sha256WithRSAEncryption
41:30:80:07:3f:1e:15:7d:dc:68:55:ac:16:d7:8a:1f:c6:77:
16:4f:82:ff:19:90:f1:43:64:ff:aa:ae:50:ce:8c:43:f1:df:
f5:3c:99:39:35:ea:e2:de:2c:a8:37:d7:7d:51:f6:6c:db:91:
a5:14:88:30:83:e4:6b:05:66:f8:99:f7:02:99:90:d4:90:ad:
d2:8a:99:fe:05:ea:75:30:86:55:bc:bb:f9:f0:03:bb:ea:1f:
2f:8b:eb:e3:19:5e:f6:58:4e:a1:b8:b8:ca:1c:c0:f1:b8:62:
8b:60:23:cc:52:36:57:9f:fc:59:85:cf:90:9e:52:d0:83:ea:
15:4c:08:49:56:c9:a2:15:14:16:f2:35:76:a6:31:e7:87:4e:
3a:e0:6e:62:be:b5:e5:4c:28:fd:5f:de:59:63:ca:7c:b2:5a:
1c:4e:1a:03:bd:cb:8d:12:72:da:01:2e:92:74:41:b8:ce:12:
38:85:dd:50:7f:42:4f:a2:57:63:88:fe:75:e5:fa:38:8f:29:
c4:14:7a:79:3e:48:9e:d5:cc:df:40:6a:29:dc:6c:fd:0e:f9:
a5:b3:87:1b:ea:56:3e:f1:e0:e8:7d:a6:ea:bf:9d:a6:ed:48:
09:21:d0:6b:42:6f:0b:51:07:63:12:10:68:dd:96:a5:d6:02:
75:11:b5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:00 2024 by rpki-client on console-fra.rpki-client.org