Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/az2AFLzQgD0UQEpiJRRHWlkIEGE.roa
File: az2AFLzQgD0UQEpiJRRHWlkIEGE.roa (raw, json)
Hash identifier: c22l9Cu/RCXDWor6y0NJB9/rqEkaP/t4UfFKbYIMxho=
Subject key identifier: 6B:3D:80:14:BC:D0:80:3D:14:40:4A:62:25:14:47:5A:59:08:10:61
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 0192B4F179C480F0CCDD4ED2B1F53FA2E733
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/az2AFLzQgD0UQEpiJRRHWlkIEGE.roa
Signing time: Tue 22 Oct 2024 15:56:17 +0000
ROA not before: Tue 22 Oct 2024 15:56:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 997
IP address blocks: 185.243.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 17:21:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b4:f1:79:c4:80:f0:cc:dd:4e:d2:b1:f5:3f:a2:e7:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Oct 22 15:56:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b3d8014bcd0803d14404a622514475a59081061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b5:d9:bd:45:8d:1e:e6:3e:5b:f7:05:bc:63:
0b:ac:f1:5b:33:06:49:ca:f1:f7:e5:56:8e:1a:9a:
d7:7c:12:60:02:97:f1:5d:e0:96:39:92:8c:fc:1f:
a2:4a:2a:47:ec:c5:74:97:ce:3c:21:74:ba:99:56:
ab:a9:d9:7c:7e:12:08:45:44:ed:f8:67:ca:5d:48:
8d:b7:9b:aa:2c:ae:a7:fe:a5:50:9a:55:dd:06:01:
fe:da:14:05:f3:38:2e:fb:a7:40:71:c1:8b:c0:0a:
08:fa:54:b8:ef:a2:4f:82:92:d5:5b:1c:4d:d7:8b:
fc:cc:12:5c:da:c2:a5:a4:06:99:9c:3f:75:69:38:
c9:4d:e4:b3:24:2d:45:52:cb:ed:77:5a:08:f6:3f:
a9:87:ba:bb:24:18:b0:ef:b1:a1:17:44:35:f3:f0:
f6:f1:42:2d:dc:6c:a0:31:72:c0:42:2f:35:52:99:
d0:2a:00:34:e9:8c:64:c6:a5:5c:da:0c:5e:28:ad:
21:ca:38:b6:75:13:fd:48:7b:08:f1:0b:7e:e6:af:
5e:f4:f0:8b:f4:81:e0:f0:24:a0:7b:96:5d:17:e0:
4d:c6:5c:b3:15:7e:35:6c:da:8f:f0:73:a1:d7:65:
70:91:af:6e:1b:b8:45:b1:5d:97:d2:75:c8:17:df:
99:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:3D:80:14:BC:D0:80:3D:14:40:4A:62:25:14:47:5A:59:08:10:61
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/az2AFLzQgD0UQEpiJRRHWlkIEGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.42.0/24
Signature Algorithm: sha256WithRSAEncryption
96:2f:28:4e:fe:76:c3:4d:ca:74:74:a3:d2:55:d9:dd:b6:da:
a0:78:4f:33:06:28:a1:5a:08:a6:63:fe:9c:28:8c:d2:0a:31:
21:6e:2a:03:b5:20:9c:ba:cd:4e:3b:20:60:80:8d:4d:b9:5d:
6e:75:2a:e5:56:34:67:09:9c:70:7f:ae:fb:29:95:71:4d:e9:
24:70:04:fc:4e:f8:b9:b8:8e:94:3f:73:d7:a0:e0:b0:9c:66:
04:7d:61:d1:7b:68:a2:63:78:2c:78:33:fd:8d:49:27:13:3a:
60:df:13:61:34:d7:52:c0:d5:e7:93:cc:b4:77:12:80:1d:78:
fe:98:aa:d5:e3:cc:31:b3:97:e1:46:03:d1:47:fc:83:05:e4:
f8:cc:2b:b2:08:fa:1d:eb:81:16:8d:f4:fb:43:f2:3c:48:73:
51:3b:0a:00:92:d5:cb:38:1c:a6:d4:de:8d:0d:93:73:7d:5c:
97:b0:ba:1e:d1:8d:74:c9:00:2f:fd:1d:5c:29:d5:26:56:93:
da:ad:56:18:0e:9a:93:90:03:89:03:2c:44:43:32:09:07:27:
95:a0:bb:e6:8b:ff:33:89:65:52:5b:7e:c2:93:f8:79:5a:c0:
90:2e:a4:7d:01:bf:90:56:19:69:20:7c:a5:79:1b:ec:c2:2b:
aa:b3:aa:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 19:17:34 2024 by rpki-client on console-ams.rpki-client.org