Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/M_NKcUBIFGuzvXVeueDJv246dKE.roa
File: M_NKcUBIFGuzvXVeueDJv246dKE.roa (raw, json)
Hash identifier: jirOJp4BeZbdosN33KvDoLHDgfZwbUpSyhmNVZh3x4w=
Subject key identifier: 33:F3:4A:71:40:48:14:6B:B3:BD:75:5E:B9:E0:C9:BF:6E:3A:74:A1
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 0185CBBBD9CA38922E97E82B221F9368EC4E
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/M_NKcUBIFGuzvXVeueDJv246dKE.roa
Signing time: Thu 19 Jan 2023 20:32:43 +0000
ROA not before: Thu 19 Jan 2023 20:32:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200482
IP address blocks: 185.255.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Feb 2023 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cb:bb:d9:ca:38:92:2e:97:e8:2b:22:1f:93:68:ec:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 19 20:32:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33f34a714048146bb3bd755eb9e0c9bf6e3a74a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d4:b9:57:e3:e2:66:1c:da:9e:92:c9:d0:ec:
fe:38:82:83:91:6a:dc:96:6a:b0:c3:65:74:e1:18:
82:66:01:89:ed:31:28:73:a7:b8:68:23:9b:2e:da:
61:8e:1a:66:12:ef:d9:d2:e0:63:91:b8:61:f1:47:
f1:63:1e:f5:0d:04:4c:94:19:9d:16:be:9d:47:e4:
98:b8:0b:72:b7:f3:3b:47:48:88:ac:1c:ca:49:a2:
b6:96:db:86:1d:06:9b:46:18:6c:b8:c1:4d:26:97:
cd:b6:55:3b:0e:53:cc:82:77:11:2d:bc:22:43:2f:
b5:9b:04:42:39:ff:ab:75:47:84:5d:3d:b1:c1:93:
9f:26:5a:f2:df:6e:c3:a0:f4:ad:c3:e2:1d:2c:54:
fa:69:a5:5f:3b:7a:f2:6e:20:a2:b4:f8:06:6a:3c:
a1:8d:37:9b:0e:02:21:98:94:fb:a3:b5:9c:42:52:
98:99:d2:fe:08:d1:1a:81:5a:9f:ca:6f:83:32:db:
6a:5b:04:f9:b2:04:4c:52:c7:65:db:36:75:b5:e2:
42:3c:c5:af:3e:94:72:ba:00:55:e4:d1:8a:6b:aa:
c2:14:94:d9:58:cf:3b:aa:b9:4d:ec:7c:2e:8d:56:
ec:e9:b2:a7:2b:c7:98:47:85:ab:0b:72:58:b2:2c:
37:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F3:4A:71:40:48:14:6B:B3:BD:75:5E:B9:E0:C9:BF:6E:3A:74:A1
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/M_NKcUBIFGuzvXVeueDJv246dKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.5.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:35:8f:55:cc:fc:7f:64:04:f0:1c:66:02:82:64:8c:7a:36:
b5:e5:97:58:11:ab:d1:49:0c:2c:31:00:52:16:43:49:7c:dd:
51:b3:49:75:ab:88:d1:f5:ef:b8:9d:0b:90:80:4c:f1:85:5a:
35:07:6d:f9:3e:ec:cb:2b:bd:fc:e8:16:43:ef:ca:bb:b3:48:
aa:04:a4:86:25:bc:96:e9:dc:73:32:bf:54:bf:b0:43:0c:66:
ee:70:eb:23:92:2f:ed:a1:d3:48:fa:f7:3d:b4:fb:3c:48:90:
2d:26:b9:78:e9:79:17:95:45:d6:ce:2a:6c:5d:cf:38:d3:12:
7c:e2:6a:c6:6c:9d:ce:1a:f6:7f:34:a5:5d:7d:bb:3f:58:90:
1b:5c:25:60:9f:7b:94:a7:e3:98:08:79:c6:0d:ee:12:25:e0:
d3:2c:10:61:cc:35:4c:dc:57:0b:d0:36:96:00:e2:94:cb:be:
3c:f8:1f:2a:20:b9:3e:94:4c:67:05:4a:ef:25:0d:e2:56:94:
6c:3a:b5:cc:80:58:3e:a1:8f:9e:36:e2:dc:10:48:59:d5:3d:
dd:78:f3:2c:a4:63:57:15:39:31:52:f1:c9:6b:df:4d:b2:7f:
c3:ce:fd:bc:68:6c:d7:77:e1:84:50:62:35:8b:f1:c9:c7:bc:
03:8a:04:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org