Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/IuWoPZoyIRZxBUSWwJ9AIL5X4HY.roa
File: IuWoPZoyIRZxBUSWwJ9AIL5X4HY.roa (raw, json)
Hash identifier: d5luIJzjuXFrT4DNKK1Iw8q7hyEdPwxm6Vxit/yQa9A=
Subject key identifier: 22:E5:A8:3D:9A:32:21:16:71:05:44:96:C0:9F:40:20:BE:57:E0:76
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018BB88D6AA59A3D7EADA205F6DAB93E8234
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/IuWoPZoyIRZxBUSWwJ9AIL5X4HY.roa
Signing time: Fri 10 Nov 2023 09:25:57 +0000
ROA not before: Fri 10 Nov 2023 09:25:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35404
IP address blocks: 185.241.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b8:8d:6a:a5:9a:3d:7e:ad:a2:05:f6:da:b9:3e:82:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Nov 10 09:25:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=22e5a83d9a32211671054496c09f4020be57e076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d6:b3:20:18:14:dc:b0:dc:bc:02:57:9b:6b:
34:b8:ac:89:95:1a:e6:fa:2e:40:44:a5:08:df:61:
2b:80:15:46:01:00:b5:71:29:42:62:4e:7a:7b:ff:
6b:08:c9:82:28:79:2e:88:d9:2d:e2:1b:23:99:00:
bf:04:d7:49:58:a7:ec:79:3c:cf:77:ec:d4:fc:26:
d6:04:5f:d4:cf:79:aa:2e:b4:e1:46:21:06:76:47:
26:4a:57:72:42:b4:60:d1:0c:2b:8c:83:a1:70:30:
1a:74:88:44:c9:62:2e:91:28:78:28:46:2c:4f:de:
3d:86:69:33:4c:de:e3:17:08:8b:95:95:7e:89:cc:
71:86:2b:45:bf:99:47:1f:71:5a:7f:26:3b:00:13:
42:e2:cf:f2:2d:7a:7b:8e:a6:38:3d:b2:8d:f1:81:
0a:f7:c9:9c:f7:62:68:26:fe:e5:83:a1:2e:96:96:
78:fe:6e:ba:34:b8:10:fb:d3:62:54:0b:dd:03:ff:
5f:ea:7b:6a:0b:c8:99:ae:60:79:54:73:bc:00:c3:
5e:41:42:65:bb:0c:90:6a:e5:13:83:9e:05:db:33:
af:71:ba:a9:b0:8a:60:d2:1b:17:0d:ef:19:14:d1:
6b:3e:17:0c:d1:2b:d8:41:69:7e:3a:d2:93:a2:c4:
c0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:E5:A8:3D:9A:32:21:16:71:05:44:96:C0:9F:40:20:BE:57:E0:76
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/IuWoPZoyIRZxBUSWwJ9AIL5X4HY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.247.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f5:62:2e:bf:91:33:47:bf:8d:f3:2d:39:a0:fb:60:64:2b:
44:78:62:26:f0:19:06:0b:d8:2b:2a:5b:fb:b1:e2:ec:01:b0:
b8:9c:73:eb:7f:98:86:44:e3:12:fb:b7:09:0a:be:bd:a9:72:
c3:5b:25:a9:8f:c5:f7:c9:8d:d3:99:ed:ba:73:fa:ea:bd:f3:
b9:48:ef:42:02:c3:64:71:20:31:fc:c7:11:a5:0c:e1:44:63:
db:ab:a0:80:ea:70:e8:cc:db:9e:8c:1d:de:da:c4:68:d0:1e:
e8:98:c6:ff:71:b1:9f:ec:eb:a3:c2:1b:b5:76:32:f8:d7:35:
b5:2c:dc:39:53:b8:4e:f4:cb:5c:e7:71:06:b3:6d:f2:fd:62:
9c:0f:48:40:e4:06:ec:39:94:65:fd:37:68:5d:74:06:43:f8:
7f:dd:42:c5:a5:84:2d:7d:86:15:0b:e3:87:c4:4a:f8:a0:36:
1a:21:da:1b:5c:5c:dd:62:53:7c:2c:24:13:55:fb:8f:72:34:
e8:ac:bd:23:7b:6c:af:7f:85:68:72:6a:08:40:a5:65:1c:46:
c4:20:ec:5d:c2:93:1a:33:17:8c:06:64:87:17:af:07:f2:ae:
d5:45:c5:c5:21:ba:a9:9d:bb:e4:4c:d1:31:22:95:3e:13:b6:
93:36:f8:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org