Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/46FObXwfdlhs0Gpr3NOsjFLk0MI.roa
File: 46FObXwfdlhs0Gpr3NOsjFLk0MI.roa (raw, json)
Hash identifier: UfdDSZ+hv1GiXeOW5J1kgSa22gmGtoygYtYxKypKdBU=
Subject key identifier: E3:A1:4E:6D:7C:1F:76:58:6C:D0:6A:6B:DC:D3:AC:8C:52:E4:D0:C2
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 0185710308997FF1FC57D44AABCBBF5399EE
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/46FObXwfdlhs0Gpr3NOsjFLk0MI.roa
Signing time: Mon 02 Jan 2023 05:45:02 +0000
ROA not before: Mon 02 Jan 2023 05:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42093
IP address blocks: 185.241.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 16 Mar 2023 07:45:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:08:99:7f:f1:fc:57:d4:4a:ab:cb:bf:53:99:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jan 2 05:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3a14e6d7c1f76586cd06a6bdcd3ac8c52e4d0c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:51:bf:3a:e9:b4:ed:ea:17:4b:97:2b:63:61:
dd:d6:86:af:8a:9b:6c:5e:cb:55:0a:4e:2b:81:60:
dc:8d:93:89:1c:65:4e:0d:21:c1:de:cc:7a:d7:47:
60:94:7a:07:c2:9a:73:bf:31:14:78:f3:64:77:8a:
12:d2:b9:52:53:f4:8f:aa:42:83:5d:3f:41:6a:8c:
37:68:c8:9b:3e:e5:a8:0c:be:3d:c0:84:b6:33:fe:
d9:d2:76:28:96:23:ae:fa:b3:38:c2:38:21:6f:26:
00:cf:e1:cb:91:b5:b6:91:d2:07:f4:13:11:02:b9:
e1:9e:d8:ed:9d:df:ac:1b:75:80:b8:a9:53:8d:99:
d8:fc:1f:d0:bb:be:e7:3e:77:42:cd:d6:0d:34:5a:
d6:33:9f:70:26:8b:25:29:04:b3:b5:5e:cc:22:be:
5a:a8:51:80:1d:08:95:73:55:0d:87:53:e4:7f:45:
cc:6a:3d:46:47:6f:c0:75:d6:db:79:a4:c6:82:20:
96:f4:b3:29:ae:00:87:4a:35:2f:83:af:d6:38:86:
65:34:7f:4d:91:1c:8d:2a:fd:a0:b3:67:ff:93:34:
7e:6d:9d:91:63:d7:a1:d4:f0:ff:20:b6:b3:00:50:
31:cc:69:04:8e:f2:29:13:20:9d:4d:60:a6:61:63:
66:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:A1:4E:6D:7C:1F:76:58:6C:D0:6A:6B:DC:D3:AC:8C:52:E4:D0:C2
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/46FObXwfdlhs0Gpr3NOsjFLk0MI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.209.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b2:af:89:d6:15:39:c7:b9:46:44:d8:2f:52:4c:f0:cd:03:
f8:30:db:d1:f1:34:70:a9:f7:08:bf:e3:90:75:80:37:7e:62:
70:29:26:4e:4a:e4:47:c4:0c:5c:0e:d0:0a:43:b9:28:b6:2f:
67:db:75:e3:ef:9f:e4:db:af:5d:90:9a:1d:72:de:5a:06:99:
62:dd:c6:7e:59:b0:80:5e:17:f7:b4:b0:d9:b6:fc:01:e5:f3:
4b:99:39:73:aa:c7:b3:b7:a3:2b:9d:f3:de:15:00:15:a6:4d:
4d:e8:12:95:06:44:20:61:02:cb:4b:fd:5a:d8:28:8c:c8:b7:
b4:06:8d:31:e0:26:1b:2f:77:43:cd:2f:75:47:fb:2d:fb:28:
50:7c:10:73:5a:ca:f0:32:c7:c9:f0:58:75:33:c8:ce:74:21:
a0:e6:cf:f2:cf:8c:a7:66:38:ce:d0:ac:b9:b9:75:d9:f4:40:
ec:ed:ee:1c:08:93:41:fc:38:e2:79:2e:a7:94:dc:61:8d:09:
b3:c3:19:c2:30:2d:b3:c4:46:f4:0b:18:32:73:57:04:ad:bf:
ee:93:69:88:18:65:38:e9:e7:c3:14:7e:53:5a:db:aa:f3:99:
34:6d:f0:78:8e:0f:d3:58:5d:32:48:91:52:46:9a:ca:7b:30:
ef:7a:5a:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:08 2024 by rpki-client on console-ams.rpki-client.org