Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/AQj3OjPUM_ZEZ9oN79PbdFO4Wa0.roa
File: AQj3OjPUM_ZEZ9oN79PbdFO4Wa0.roa (raw, json)
Hash identifier: vlvESEG7QQN+kpBxZ5g9EtdpDZD+3YlSek0mxNadgP0=
Subject key identifier: 01:08:F7:3A:33:D4:33:F6:44:67:DA:0D:EF:D3:DB:74:53:B8:59:AD
Certificate issuer: /CN=5806da5a59251275ceb18694e17415352aedd6aa
Certificate serial: 018CC64B8C2B14AE6EC0874856DA930BD606
Authority key identifier: 58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/AQj3OjPUM_ZEZ9oN79PbdFO4Wa0.roa
Signing time: Mon 01 Jan 2024 18:31:29 +0000
ROA not before: Mon 01 Jan 2024 18:31:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 32780
IP address blocks: 185.255.196.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 04:27:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:8c:2b:14:ae:6e:c0:87:48:56:da:93:0b:d6:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5806da5a59251275ceb18694e17415352aedd6aa
Validity
Not Before: Jan 1 18:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0108f73a33d433f64467da0defd3db7453b859ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:19:2c:20:0e:28:ea:da:8b:58:93:f5:f7:a0:
df:65:91:c1:86:90:97:4b:5c:f7:97:f6:4d:07:bb:
f1:d5:1d:8f:4f:f1:69:b6:b4:0c:64:27:05:99:94:
43:2f:d3:69:f7:34:8b:7b:14:bf:86:f1:02:78:c8:
13:7f:2e:00:34:2f:c7:ac:e8:dc:19:43:94:15:3e:
b1:c2:76:11:53:97:19:27:0f:08:cc:ad:60:79:14:
59:96:23:d2:29:62:9e:02:6e:eb:aa:a9:e5:6c:e1:
fd:0e:a0:87:7a:61:38:09:ba:74:dc:ff:43:b5:a2:
24:ea:90:15:04:59:ff:57:d9:5d:be:f4:78:77:21:
c6:cb:51:f3:b7:19:f9:54:84:66:5d:0e:d6:16:fe:
3c:b5:84:7b:11:54:5d:70:7d:4f:69:5a:47:30:d5:
dd:45:da:0a:04:6f:3d:ae:92:07:0c:a3:b0:72:b6:
67:3e:14:10:5f:1d:c7:23:8f:76:f3:c2:7d:3c:0a:
3b:b5:24:1c:8b:e4:25:58:d4:c3:5c:a0:61:6f:4f:
30:ea:63:11:15:ca:c9:e2:2f:69:06:22:52:a1:89:
1c:18:33:b9:d3:d0:3b:9b:9d:16:ef:7e:56:a5:bd:
67:97:7c:19:26:90:4a:71:7f:cf:e9:ad:89:f7:cc:
27:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:08:F7:3A:33:D4:33:F6:44:67:DA:0D:EF:D3:DB:74:53:B8:59:AD
X509v3 Authority Key Identifier:
keyid:58:06:DA:5A:59:25:12:75:CE:B1:86:94:E1:74:15:35:2A:ED:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WAbaWlklEnXOsYaU4XQVNSrt1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/AQj3OjPUM_ZEZ9oN79PbdFO4Wa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5df119-b1df-4ceb-bd4f-f79ccc3f4eaf/1/WAbaWlklEnXOsYaU4XQVNSrt1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.196.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:6a:ac:a5:f3:3e:58:d4:72:54:66:34:24:55:75:53:1e:78:
e4:3e:10:5f:56:e3:34:87:f9:ba:37:ff:3a:e5:56:ec:0b:4f:
59:ed:6e:28:db:ca:fb:7d:a9:35:14:c7:90:ec:42:b8:85:bf:
4f:73:35:4a:02:b5:d5:21:d4:0f:dc:b2:1c:40:9e:34:e5:68:
8a:cc:5f:51:f4:cb:28:fa:cf:44:fa:95:fc:8d:10:00:92:c0:
a2:49:84:09:7b:3a:83:5d:e8:c9:17:6a:81:d9:f6:80:43:7e:
e2:8b:3b:9c:62:61:5a:8f:7f:69:20:6a:f2:7b:1e:fc:b6:68:
86:5c:97:82:61:84:ea:84:11:c3:b6:1a:d1:ae:bd:13:5c:18:
11:5a:bf:82:0a:ea:2a:ae:08:6c:05:fd:c6:b6:1c:39:98:05:
e1:39:5c:8d:bc:b8:4c:d7:fd:1f:a9:e6:a6:48:f7:57:26:42:
67:9c:ed:7b:6c:9c:c4:7b:49:32:9d:9a:0a:8a:3d:c6:81:7c:
48:c1:5d:cd:6f:7d:f0:47:1e:4c:dc:41:89:d4:b8:27:ca:a5:
e8:fe:3c:a4:89:2a:99:5c:ec:79:c9:63:c5:a1:43:46:f2:7d:
a9:8e:a0:d8:aa:40:48:b6:ac:3e:6f:67:4d:70:29:ec:ba:35:
a9:03:a0:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:56 2024 by rpki-client on console-fra.rpki-client.org