Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/2add71-6fa8-47af-ab0e-58fe7edebd8e/1/MydZx28uE5WZGv8-5HrMltKBROc.roa
File: MydZx28uE5WZGv8-5HrMltKBROc.roa (raw, json)
Hash identifier: VkQjm4RBiTDowW9AByR7HpseyOUf1DmgIPCi33kUMdU=
Subject key identifier: 33:27:59:C7:6F:2E:13:95:99:1A:FF:3E:E4:7A:CC:96:D2:81:44:E7
Certificate issuer: /CN=ebc524d6276b0ffbf87af7c7dfb826897fec7976
Certificate serial: 018C677082B43B0A90FCBB7135DCC8E34225
Authority key identifier: EB:C5:24:D6:27:6B:0F:FB:F8:7A:F7:C7:DF:B8:26:89:7F:EC:79:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68Uk1idrD_v4evfH37gmiX_seXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/2add71-6fa8-47af-ab0e-58fe7edebd8e/1/MydZx28uE5WZGv8-5HrMltKBROc.roa
Signing time: Thu 14 Dec 2023 08:27:55 +0000
ROA not before: Thu 14 Dec 2023 08:27:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48551
IP address blocks: 185.159.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:70:82:b4:3b:0a:90:fc:bb:71:35:dc:c8:e3:42:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc524d6276b0ffbf87af7c7dfb826897fec7976
Validity
Not Before: Dec 14 08:27:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=332759c76f2e1395991aff3ee47acc96d28144e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b1:35:41:31:df:6b:be:90:04:0c:a5:28:ee:
0d:d3:ab:43:33:f2:95:46:8a:8f:90:5d:96:07:07:
e8:4c:e6:a4:97:75:a6:c6:ce:e5:1c:8f:43:20:1c:
8a:d9:a3:6a:75:70:c9:23:66:ee:87:68:aa:43:5f:
40:53:1f:49:e7:ff:76:f4:f8:ae:53:af:e9:67:72:
f3:9b:15:06:ef:44:c8:89:77:29:e9:70:78:ba:6b:
08:d8:ad:6a:63:08:5d:05:8e:2e:bc:02:b8:d0:42:
2d:75:99:76:1e:02:80:86:65:8d:94:43:09:ea:e2:
9b:8f:da:08:9e:f8:ad:51:fc:56:98:85:bb:fb:fb:
71:09:20:6f:e0:af:e0:e2:69:66:98:d5:7d:c5:e5:
1b:72:fe:90:e6:54:72:61:bf:bf:85:e0:9e:73:ac:
5e:52:a1:62:68:17:2b:0d:e4:28:11:d9:aa:d6:21:
51:3a:72:6b:a2:c1:1c:6f:a4:eb:16:70:62:6d:4a:
be:a8:45:fc:c4:1a:f9:49:e3:7a:9a:ab:ae:ab:2c:
5c:91:32:87:f8:02:c5:d9:49:8d:a0:39:d9:91:ae:
33:5f:fb:f7:7b:98:ff:1f:45:f7:1c:61:59:6c:86:
c5:96:3d:86:2e:46:59:38:77:84:31:46:5b:d0:bf:
81:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:27:59:C7:6F:2E:13:95:99:1A:FF:3E:E4:7A:CC:96:D2:81:44:E7
X509v3 Authority Key Identifier:
keyid:EB:C5:24:D6:27:6B:0F:FB:F8:7A:F7:C7:DF:B8:26:89:7F:EC:79:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68Uk1idrD_v4evfH37gmiX_seXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2add71-6fa8-47af-ab0e-58fe7edebd8e/1/MydZx28uE5WZGv8-5HrMltKBROc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/2add71-6fa8-47af-ab0e-58fe7edebd8e/1/68Uk1idrD_v4evfH37gmiX_seXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.189.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:93:77:9d:b6:31:fe:90:79:5e:d8:af:a7:1d:5f:f3:98:5b:
45:08:34:0a:af:5a:a2:33:28:a9:9b:be:f5:31:85:8e:2d:71:
74:60:29:14:0b:23:f7:36:93:34:56:e2:2d:55:3d:e6:9d:25:
a0:49:59:7b:e4:7d:77:46:4c:c0:c7:c4:62:35:e7:5a:26:a3:
ea:38:85:51:2b:b8:70:2e:92:cf:fc:3f:61:4f:4a:20:a1:fb:
7a:98:8a:73:8b:09:c0:7a:ac:84:b6:a8:05:dd:b2:9d:47:39:
f9:e4:fe:d9:79:7e:28:2c:b5:49:30:10:93:50:4b:e4:ee:d8:
69:03:f8:8f:3e:27:18:85:3e:b3:9d:a7:ce:3b:6e:4a:95:b3:
e8:4d:70:2c:35:18:6f:59:ae:e5:04:09:71:47:6e:c2:51:9e:
46:1f:89:86:38:c2:f3:7e:cb:a2:24:58:4d:7d:31:5f:c5:78:
7a:04:f0:73:8b:d4:f2:aa:b2:61:51:3d:f6:01:88:9c:fb:7a:
f2:be:a1:83:d2:49:3a:93:2f:43:bb:69:a9:92:86:e3:67:16:
fa:1a:4c:39:5f:00:21:66:09:88:0a:cd:d9:e4:da:3d:89:13:
a1:71:3f:09:11:68:8a:e2:7e:07:38:f2:c5:66:b5:86:8e:52:
49:4a:7d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:02 2024 by rpki-client on console-ams.rpki-client.org