Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Hn9TVEyIIgMtqgvznbZlz2PhDlE.roa
File: Hn9TVEyIIgMtqgvznbZlz2PhDlE.roa (raw, json)
Hash identifier: DHrM2VT/THnL+58n6eNUsV9GnwFqx840lcs1uZJLeUI=
Subject key identifier: 1E:7F:53:54:4C:88:22:03:2D:AA:0B:F3:9D:B6:65:CF:63:E1:0E:51
Certificate issuer: /CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Certificate serial: 019097CDB3957435658380B4F943CE629337
Authority key identifier: FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Hn9TVEyIIgMtqgvznbZlz2PhDlE.roa
Signing time: Tue 09 Jul 2024 14:02:38 +0000
ROA not before: Tue 09 Jul 2024 14:02:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201691
IP address blocks: 185.49.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Aug 2024 10:14:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:cd:b3:95:74:35:65:83:80:b4:f9:43:ce:62:93:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa3d0bc11b29da44ad57304c3f8568870a019c24
Validity
Not Before: Jul 9 14:02:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e7f53544c8822032daa0bf39db665cf63e10e51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2c:72:ca:1c:e1:06:0e:23:e4:de:4a:38:7e:
f1:74:c3:19:12:b0:a0:70:12:e4:c3:9d:04:3d:78:
82:99:7c:13:92:e4:c2:ea:73:0b:48:4f:c7:dc:0d:
12:2e:2f:1f:25:cc:e4:b7:aa:f3:28:e1:88:8f:fe:
32:72:b4:39:e0:00:33:27:51:c6:ba:6f:86:f0:33:
31:51:5e:bd:c3:08:7e:44:52:27:cf:43:e7:97:9b:
7b:e6:30:32:cf:59:58:1d:c9:7d:a8:a4:38:46:fa:
32:d1:4e:b1:07:42:a8:2f:b7:1e:62:c5:c3:1e:e9:
95:59:3a:70:c4:db:3c:42:d8:f5:ed:6e:4f:39:f9:
00:c4:73:4a:63:aa:80:dd:db:9d:13:ad:d6:02:09:
c5:16:d7:c7:e4:22:d1:9b:d0:70:2c:3a:b8:4b:d8:
ab:08:71:03:ac:d3:5e:3e:92:60:5c:e7:40:46:9a:
27:3c:31:8e:20:a4:25:05:b4:fb:a1:c4:2e:3d:ac:
54:7b:63:59:14:2c:5a:8a:90:cc:ee:01:a7:77:c9:
cf:27:8b:bf:bb:6b:b3:72:2e:e5:41:d2:49:cf:af:
e2:ff:b7:5c:62:dd:9f:45:39:4f:ac:67:8e:39:33:
7a:e3:d2:26:eb:c2:1e:46:0d:2f:82:56:ba:89:c2:
e0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:7F:53:54:4C:88:22:03:2D:AA:0B:F3:9D:B6:65:CF:63:E1:0E:51
X509v3 Authority Key Identifier:
keyid:FA:3D:0B:C1:1B:29:DA:44:AD:57:30:4C:3F:85:68:87:0A:01:9C:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-j0LwRsp2kStVzBMP4VohwoBnCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/Hn9TVEyIIgMtqgvznbZlz2PhDlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/aa6629-d149-4197-a315-d21071ef735b/1/1-j0LwRsp2kStVzBMP4VohwoBnCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.107.0/24
Signature Algorithm: sha256WithRSAEncryption
78:4e:78:d5:be:0b:29:40:f0:86:6e:72:0b:a4:ec:bf:e9:77:
c7:ca:13:1a:2c:41:c2:5a:7f:d5:6a:98:96:64:85:24:36:e9:
1f:8f:72:15:bb:84:3a:d1:91:60:78:b9:98:bb:5e:5e:49:bd:
9a:69:ab:fe:ae:9c:65:1f:9d:1f:23:3d:46:f2:6c:d9:1f:a2:
a9:d9:53:13:69:d1:66:a6:a5:65:b5:b8:95:7e:62:b1:fc:d8:
ad:d2:6d:51:71:29:d4:4a:a0:93:89:e5:03:35:47:01:ca:7f:
11:95:7c:ac:10:f0:cc:cf:98:44:04:70:51:df:1d:a7:95:d2:
d8:49:69:b9:80:7a:14:ba:bf:d1:4c:ab:40:78:f5:fe:2c:fb:
0f:87:2b:d9:7d:a5:1b:a9:78:5a:5e:dc:77:47:8d:93:05:b8:
52:1d:0d:8e:e8:45:42:74:3a:77:49:b7:32:2b:ff:3a:3e:58:
dc:31:07:7d:c9:d5:1a:60:b1:6f:51:1e:82:5d:c5:3a:d7:b0:
18:03:f0:bd:40:86:d9:18:e1:fe:b9:6c:14:65:35:43:af:e6:
f3:86:b8:1c:26:27:54:d8:0c:6b:6d:40:2d:ca:10:51:b2:d9:
a0:93:1b:36:80:c8:4a:11:60:80:83:18:99:c5:98:6b:9a:9e:
0e:84:d4:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 7 13:00:29 2024 by rpki-client on console-ams.rpki-client.org