Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/XpDH-drjGwos9ePcFljvVuj0bb8.roa
File: XpDH-drjGwos9ePcFljvVuj0bb8.roa (raw, json)
Hash identifier: /KB+qWejzDUMyj7JmIKPBWNzO7aPLXD047m59uF7yRA=
Subject key identifier: 5E:90:C7:F9:DA:E3:1B:0A:2C:F5:E3:DC:16:58:EF:56:E8:F4:6D:BF
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 01900613BA239BDA09057E3A5D2130FE485B
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/XpDH-drjGwos9ePcFljvVuj0bb8.roa
Signing time: Tue 11 Jun 2024 06:54:34 +0000
ROA not before: Tue 11 Jun 2024 06:54:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 997
IP address blocks: 185.243.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 23:13:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:06:13:ba:23:9b:da:09:05:7e:3a:5d:21:30:fe:48:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Jun 11 06:54:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e90c7f9dae31b0a2cf5e3dc1658ef56e8f46dbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:02:00:94:5c:b0:8b:bb:9b:be:22:3f:a3:04:
9b:b5:3a:84:12:53:6e:d1:b3:0f:ba:c2:00:66:bd:
fe:e6:53:b8:d9:f0:9b:dd:f7:e4:5f:10:34:f5:15:
ba:6e:ea:d7:b1:2e:d2:14:e6:be:13:53:db:00:54:
13:18:a3:d2:05:2d:ec:4e:ca:2f:b5:b4:68:5d:2a:
71:57:38:39:fb:5f:54:a3:b9:33:86:ab:73:44:b3:
98:0c:0e:40:1f:74:14:58:34:54:50:ce:a0:73:22:
33:9a:06:ba:86:23:13:27:34:2b:4a:fd:c3:83:fd:
df:a8:0d:eb:5e:b6:85:0f:bf:07:f5:0a:cc:70:b8:
04:20:4b:a2:3e:30:24:1d:35:b5:02:06:ac:bd:49:
6d:ec:c0:22:ac:dd:2d:61:65:f8:23:8c:f1:e4:94:
83:10:e2:b1:40:8d:03:e6:a0:d0:71:eb:ff:80:77:
42:df:ce:d6:84:ba:74:2b:7b:7d:e3:40:fa:2a:b8:
0b:0e:cc:91:1a:07:15:4a:63:3f:4a:9c:45:5b:09:
d7:a5:65:ae:9f:b3:73:3d:0a:4c:5c:fd:ef:10:26:
a3:e7:79:21:57:63:67:4b:d5:e6:e3:41:fe:e5:b8:
84:a4:65:1b:e9:13:89:2a:b5:73:3c:b2:4e:ba:68:
5e:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:90:C7:F9:DA:E3:1B:0A:2C:F5:E3:DC:16:58:EF:56:E8:F4:6D:BF
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/XpDH-drjGwos9ePcFljvVuj0bb8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.42.0/24
Signature Algorithm: sha256WithRSAEncryption
77:3c:75:69:e9:50:06:e3:bb:e0:a7:24:e4:00:6a:14:58:96:
a0:a0:2f:12:80:98:0b:76:25:70:17:63:0e:9e:0d:68:9f:0e:
df:eb:c8:cb:3c:a0:80:a6:d1:44:c6:49:cf:cb:4a:a4:2c:90:
8a:96:eb:fb:9f:00:1f:43:75:fa:b7:04:96:d8:0c:9e:79:55:
28:c2:51:03:26:b7:48:73:97:f2:36:be:a4:76:1b:28:1f:35:
e5:d6:80:98:54:f5:98:d3:92:47:ea:ff:58:44:9a:86:15:56:
f5:95:5b:e6:c6:4b:10:6d:8b:51:58:0f:61:60:28:e5:f8:79:
c8:ab:a0:02:94:d5:2a:98:22:f8:9b:be:ab:32:98:b8:24:fd:
a6:eb:65:b8:9b:76:f3:96:40:57:8e:01:f9:22:fb:8c:04:d2:
16:6f:99:43:54:8f:9f:b0:b5:73:b6:ac:61:e3:70:34:d0:c1:
d7:78:35:be:80:35:0d:ba:5d:1a:b1:bb:5c:cd:dd:b6:14:5e:
08:c2:e8:e0:4f:25:d6:99:7b:2e:07:ee:43:1a:aa:3f:f4:88:
92:c1:33:dc:43:63:b9:a8:8e:de:c2:a9:ba:e9:aa:85:e9:6a:
1d:22:ff:a6:a8:57:09:d7:7f:81:05:b7:c2:77:64:c9:3e:f0:
79:6f:5c:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 03:16:45 2024 by rpki-client on console-ams.rpki-client.org