Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/twuPeXaCG0nsacUKcPXC6idhGP8.roa
File: twuPeXaCG0nsacUKcPXC6idhGP8.roa (raw, json)
Hash identifier: z7o60zFjo2Ge7v/RI/8RCLWBGWTuasxIR3PdcMMRRPs=
Subject key identifier: B7:0B:8F:79:76:82:1B:49:EC:69:C5:0A:70:F5:C2:EA:27:61:18:FF
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 018CC493974E80C20EFCC546824B937E2854
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/twuPeXaCG0nsacUKcPXC6idhGP8.roa
Signing time: Mon 01 Jan 2024 10:30:55 +0000
ROA not before: Mon 01 Jan 2024 10:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 18254
IP address blocks: 185.243.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Jun 2024 23:10:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:97:4e:80:c2:0e:fc:c5:46:82:4b:93:7e:28:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Jan 1 10:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b70b8f7976821b49ec69c50a70f5c2ea276118ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:35:1d:13:8d:6e:db:d8:c2:5c:5e:39:8a:17:
04:6b:a9:a0:96:68:34:2a:55:6e:e5:e6:de:a5:84:
42:d8:c7:93:d2:50:b6:ee:d5:e4:54:dc:27:ff:2a:
27:f6:3f:e3:2d:f2:04:8c:f3:5e:74:c8:f1:41:bb:
22:d5:f5:94:36:29:98:81:b9:d3:98:24:97:cb:6e:
d1:aa:3f:aa:30:b7:56:54:7d:74:f4:9c:1b:5e:02:
bd:f5:14:e8:49:11:8e:30:2c:3e:86:11:2f:1e:c4:
e0:59:6c:c2:08:02:f0:68:ed:3a:82:32:f3:79:06:
49:a9:a6:73:1f:b6:12:d2:00:79:bb:29:4b:17:9b:
f8:ba:a6:c9:23:8f:64:c7:37:37:f3:db:68:f1:aa:
ce:93:c4:b7:cf:1a:f2:7f:98:d3:bd:c3:f7:4b:74:
a3:42:ba:be:a6:1f:38:b4:7e:89:b0:99:b3:74:d4:
e7:b6:35:ec:64:8e:11:7b:05:94:51:bd:f5:a3:2d:
35:ce:e6:f8:aa:aa:f7:a9:29:97:fa:81:dc:39:20:
50:92:a1:ef:43:43:a9:26:ad:9d:85:15:a0:da:17:
ef:be:2a:37:c7:97:dd:81:6c:8f:87:3c:e7:e3:e2:
83:b4:ce:c1:a2:f2:b1:86:d0:40:c5:13:c0:c4:ba:
cc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0B:8F:79:76:82:1B:49:EC:69:C5:0A:70:F5:C2:EA:27:61:18:FF
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/twuPeXaCG0nsacUKcPXC6idhGP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.42.0/24
Signature Algorithm: sha256WithRSAEncryption
83:df:71:83:6a:b0:30:10:28:38:84:d7:0c:f2:3f:06:4b:08:
19:22:85:fe:3f:58:e3:83:35:db:9a:f5:fc:63:29:8f:9f:22:
a2:c2:cd:a9:a3:97:fd:72:a3:f0:2e:d6:31:b7:3a:e9:99:5d:
eb:46:8b:74:52:60:3a:20:2d:08:3f:55:d1:2b:7a:ee:d5:30:
15:87:29:aa:87:34:5f:f1:ea:00:b8:6c:64:e9:89:33:f3:28:
0b:fb:11:50:36:83:c1:b6:bf:7b:11:ff:c3:5c:d4:8d:06:da:
79:6d:d9:aa:a2:ad:ef:f5:b3:6c:a0:2f:12:7e:44:e3:82:42:
b7:69:38:4e:68:84:83:28:5b:ba:e9:2e:cf:c5:6d:95:d2:c4:
bf:6e:05:02:f0:c7:87:98:a0:9c:55:d8:ef:98:db:5c:1d:07:
d3:a3:39:8b:5b:f1:65:45:ba:6a:c1:7f:08:2e:68:28:03:9f:
e4:6b:30:eb:a3:b7:a1:a7:8f:62:95:39:f3:9b:69:ba:7b:9f:
17:57:d9:5c:77:26:43:bb:3c:27:e2:ed:c8:a6:00:ed:f5:08:
14:d5:a9:7c:e5:51:bd:f5:e4:9e:5f:ed:1d:92:13:26:aa:0c:
11:47:ab:6e:cd:1e:72:fd:be:0a:c6:12:a0:93:7d:8e:f2:30:
0a:59:b4:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 26 03:16:45 2024 by rpki-client on console-ams.rpki-client.org