Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/39fuW5Sm03Ps0jc6VGiG9MCfMW8.roa
File: 39fuW5Sm03Ps0jc6VGiG9MCfMW8.roa (raw, json)
Hash identifier: p+dMkVb3N54GpekXJ8qtrLzHPMEOSnMs/fBwuurMR9w=
Subject key identifier: DF:D7:EE:5B:94:A6:D3:73:EC:D2:37:3A:54:68:86:F4:C0:9F:31:6F
Certificate issuer: /CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Certificate serial: 018920DB4E54EA73FA311D3622A7D389EFD8
Authority key identifier: 9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/39fuW5Sm03Ps0jc6VGiG9MCfMW8.roa
Signing time: Tue 04 Jul 2023 12:23:10 +0000
ROA not before: Tue 04 Jul 2023 12:23:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19437
IP address blocks: 185.138.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 08 Aug 2023 14:02:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:20:db:4e:54:ea:73:fa:31:1d:36:22:a7:d3:89:ef:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dc28ae9937ff7e49ec4f1234e53d8b9dd694541
Validity
Not Before: Jul 4 12:23:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfd7ee5b94a6d373ecd2373a546886f4c09f316f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ba:5e:3b:3b:c6:39:80:bd:8b:1b:6d:cc:cb:
92:f6:46:70:1d:80:cc:47:ab:16:28:9e:f2:43:2d:
a6:53:46:59:a0:ed:b7:15:e4:47:d8:5c:3b:49:12:
21:04:7c:1e:6c:32:be:35:c9:a4:74:5f:88:03:1e:
90:68:6e:5c:4c:eb:3c:8b:3d:4d:5c:fe:b0:d3:46:
e7:f0:6a:71:a3:10:be:cc:18:d0:1b:57:d2:1f:81:
68:54:dc:cd:84:f0:a7:ec:a5:11:5f:f6:e5:53:7b:
27:1a:f0:ce:64:cc:20:33:34:f5:ff:f3:87:47:e9:
9c:28:b2:f6:f3:df:b8:be:3c:28:f6:29:77:77:49:
15:4c:cc:b9:66:44:45:e2:0b:ed:f0:8a:d0:74:53:
6e:0f:84:1c:c4:34:10:c8:a0:0d:6a:3e:f3:d3:1f:
76:81:a9:19:54:6f:bc:bc:8c:35:09:9e:f5:7e:4f:
8f:16:2a:56:cc:2e:f1:2f:f9:aa:20:13:66:a0:89:
83:56:e5:9c:58:29:86:28:7f:db:1c:0c:31:f4:b3:
b8:71:bb:99:20:42:46:bb:7e:52:98:6e:36:65:8a:
00:71:1b:fd:b1:ed:56:5f:cc:73:79:70:70:46:7f:
c7:ef:9c:2a:79:26:90:e4:f1:2f:58:93:79:21:25:
5e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D7:EE:5B:94:A6:D3:73:EC:D2:37:3A:54:68:86:F4:C0:9F:31:6F
X509v3 Authority Key Identifier:
keyid:9D:C2:8A:E9:93:7F:F7:E4:9E:C4:F1:23:4E:53:D8:B9:DD:69:45:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ncKK6ZN_9-SexPEjTlPYud1pRUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/39fuW5Sm03Ps0jc6VGiG9MCfMW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/c0330c-9872-4ac6-a22c-192cbd08db51/1/ncKK6ZN_9-SexPEjTlPYud1pRUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.166.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:6b:cb:f9:a2:7a:dc:10:05:0b:d9:5a:ef:2e:a1:9a:c1:8b:
8e:df:1a:6e:92:57:17:12:87:23:53:12:16:f6:06:ce:bc:ad:
13:f5:31:eb:d5:de:90:a6:39:ff:d6:d0:69:f5:0f:d2:d6:d8:
7d:13:5f:42:99:96:72:87:a8:af:66:41:9e:e5:5b:49:7c:d7:
7f:c2:3e:48:c0:03:9d:d6:ad:dd:89:9b:50:3e:be:52:af:e4:
1d:27:75:a2:34:ab:63:1d:b3:a8:c2:02:a2:52:9c:b3:5d:3a:
76:5e:df:03:ae:ec:80:67:65:6e:c7:ea:14:a4:12:4b:bf:16:
fa:7b:6c:bb:e1:36:ec:4a:46:b2:e5:b1:f6:cc:28:43:05:86:
f3:37:83:bb:ee:cc:3b:88:6c:ff:02:a7:04:ee:db:cd:f4:73:
7e:7e:31:9d:fb:69:c6:05:14:52:21:43:38:e1:86:77:2e:08:
f5:da:bb:15:f3:0f:85:9c:e0:28:aa:be:5e:26:72:37:15:04:
5a:57:48:61:35:c2:ac:99:13:a0:97:f7:6c:cc:ba:1f:92:fa:
74:5d:12:81:2d:3a:26:e6:c0:33:6f:d1:24:fc:6b:5a:2c:2f:
ba:04:02:fb:af:f2:db:d4:d1:f6:8e:55:1b:34:8c:18:06:3e:
50:04:fb:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:54 2024 by rpki-client on console-fra.rpki-client.org