Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/NTtTcN53kKg4VzgPXhuh-Hp-n0c.roa
File: NTtTcN53kKg4VzgPXhuh-Hp-n0c.roa (raw, json)
Hash identifier: nQnVIok2gT8tIHaAsgPFniC7mQJld4tlgzCnKaiQljY=
Subject key identifier: 35:3B:53:70:DE:77:90:A8:38:57:38:0F:5E:1B:A1:F8:7A:7E:9F:47
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01857139CB1E72078B08236820973494F6FA
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/NTtTcN53kKg4VzgPXhuh-Hp-n0c.roa
Signing time: Mon 02 Jan 2023 06:44:50 +0000
ROA not before: Mon 02 Jan 2023 06:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398465
IP address blocks: 185.255.4.0/23 maxlen: 24
185.255.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 05 Jan 2023 20:15:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:cb:1e:72:07:8b:08:23:68:20:97:34:94:f6:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 2 06:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=353b5370de7790a83857380f5e1ba1f87a7e9f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:7d:e1:f6:5a:fb:08:68:f7:b8:34:53:79:91:
2d:39:38:60:40:0e:64:6b:49:3e:9b:19:78:54:7c:
e3:61:9f:ea:58:9b:c0:57:e0:73:95:4b:0e:bf:93:
ed:32:0b:d2:01:4c:4d:fa:f9:27:8f:84:68:57:d7:
f7:a0:3d:56:8f:81:1b:4e:0e:f7:81:58:09:c0:35:
d6:2b:50:da:78:39:fa:b3:84:3a:1b:5a:0b:a1:6a:
6e:02:f5:05:c2:bd:6f:f9:4c:d2:33:fc:7a:e1:2c:
d2:e2:1d:da:50:93:83:04:26:cb:bf:27:19:e6:af:
b8:a4:c0:c9:6a:c3:08:ce:21:60:d6:f9:9f:bc:60:
30:11:17:97:2f:56:3a:ac:c2:b1:c5:5e:ff:be:15:
ac:49:ae:65:ad:dd:e8:30:91:52:6e:a2:09:6d:5e:
4b:78:60:d3:2a:8a:b3:d3:a0:c5:3b:76:00:b5:92:
e3:59:73:b7:66:92:37:15:41:1d:85:19:ef:2e:9d:
f9:98:2a:45:d8:94:62:5b:04:21:08:9a:1d:1b:5e:
8d:0d:14:97:e6:cf:12:a1:03:92:c1:8f:a5:c5:eb:
ec:fb:01:23:9b:03:ed:b5:1c:66:d5:1d:54:e1:85:
e2:c8:61:06:49:09:d8:5a:1c:1f:df:96:4b:fe:31:
4b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:3B:53:70:DE:77:90:A8:38:57:38:0F:5E:1B:A1:F8:7A:7E:9F:47
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/NTtTcN53kKg4VzgPXhuh-Hp-n0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.4.0/23
185.255.7.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:d2:12:62:26:53:a8:cf:59:9e:86:fb:29:56:a8:27:1b:04:
3f:a7:cf:22:79:1f:07:64:23:36:3f:59:fa:61:17:09:80:25:
62:4a:d8:94:9e:03:1a:7d:e2:e2:b8:0c:8d:3d:14:3a:de:ac:
6b:9e:8e:89:7b:66:7b:ba:29:17:12:d9:80:a3:0a:e5:dd:84:
08:6f:78:31:a6:84:d2:37:6c:8f:6f:4a:ea:11:d5:38:fa:88:
11:27:00:88:23:29:d7:50:82:ca:e3:a1:4e:7b:18:54:f1:a6:
42:35:7c:2a:5f:8a:c8:66:ca:5f:98:39:cf:d8:a8:99:d7:3b:
79:e7:07:0d:4f:54:c2:ff:1a:ff:81:78:7d:6f:95:6d:21:46:
f2:86:de:e9:79:19:a0:0f:c0:5f:3a:b4:55:e7:45:ee:94:39:
50:78:12:f0:f3:d2:f5:4d:0f:94:5d:74:e2:36:04:38:62:c1:
60:31:9a:3f:99:75:03:30:67:48:cd:66:d0:3b:9a:a8:9c:cc:
6b:64:e5:72:92:25:66:1e:ed:6e:34:8d:30:dd:bc:2a:38:44:
67:8d:b1:36:92:d1:d4:52:3e:02:d0:62:a3:ce:7f:ef:5f:32:
ad:81:27:ad:82:a5:a1:11:d0:00:9f:47:a4:69:ee:1d:e8:24:
3d:2b:27:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org