Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/N9NoOsCRmOISTn7M2HDZ3gJXdiI.roa
File: N9NoOsCRmOISTn7M2HDZ3gJXdiI.roa (raw, json)
Hash identifier: bIUP30u4Qkbo/XrK1GdBMEg9VqWF4edwViDDieElvXI=
Subject key identifier: 37:D3:68:3A:C0:91:98:E2:12:4E:7E:CC:D8:70:D9:DE:02:57:76:22
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 018ACC042185FB9DD3C4F54BABE321163C2C
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/N9NoOsCRmOISTn7M2HDZ3gJXdiI.roa
Signing time: Mon 25 Sep 2023 11:05:37 +0000
ROA not before: Mon 25 Sep 2023 11:05:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42295
IP address blocks: 185.240.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:cc:04:21:85:fb:9d:d3:c4:f5:4b:ab:e3:21:16:3c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Sep 25 11:05:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37d3683ac09198e2124e7eccd870d9de02577622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e6:68:88:8b:d9:5f:42:55:4a:16:68:1b:ec:
f1:32:ed:6f:03:f7:f7:d9:30:d3:6b:a9:1f:d4:51:
09:9e:1d:44:dd:cf:a2:d5:ae:7f:fe:09:40:91:f9:
57:fd:5a:17:b7:c8:8f:c3:46:e4:d4:3b:88:a0:44:
1b:64:40:52:e5:d2:fe:4c:df:f1:d4:82:0d:10:e5:
c7:79:37:aa:9c:72:34:ee:34:b0:e9:f6:0c:fd:f4:
9c:85:d0:58:91:86:86:f6:19:54:18:d1:57:b3:c5:
20:71:75:a6:b3:30:78:d7:dc:65:18:0e:7b:69:d1:
db:97:5a:dc:ec:63:98:5a:94:f8:06:42:47:38:80:
15:92:ea:44:b1:33:a4:de:5c:ca:a4:7d:63:38:42:
a6:e7:9e:6e:bd:5e:62:23:db:fa:8e:e7:8a:69:8e:
f7:1f:d8:aa:91:97:45:ee:f9:7c:8f:86:58:11:10:
9c:50:67:3e:0a:cb:cb:87:69:22:6a:20:1b:31:53:
63:e5:a3:ed:35:9b:12:ce:a0:70:dd:aa:df:86:5a:
ae:51:d4:9c:55:8b:f7:6f:fb:82:9d:7f:8c:38:74:
47:36:40:3a:3c:02:eb:d1:cf:a2:74:70:fa:22:85:
7e:22:24:3e:25:29:1f:86:68:6d:d4:b9:82:e2:81:
38:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D3:68:3A:C0:91:98:E2:12:4E:7E:CC:D8:70:D9:DE:02:57:76:22
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/N9NoOsCRmOISTn7M2HDZ3gJXdiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.133.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:ac:13:bb:8d:57:30:c4:c7:90:2b:df:db:cb:49:00:18:63:
67:28:ef:71:6f:cf:42:f0:8e:6e:2d:4d:76:fd:b8:92:20:5b:
78:2c:3f:9b:fa:e4:f6:b8:fe:f6:3b:3e:94:10:c4:2e:13:d1:
e2:35:cd:8e:cb:36:c6:42:f1:cf:35:87:b5:c9:36:1a:ce:12:
96:a5:a8:37:19:a8:f5:79:15:be:49:fd:a8:3a:2d:14:e1:9f:
98:0b:25:1c:fd:74:32:57:e8:5a:4a:c6:41:b8:05:88:4d:2c:
93:79:aa:57:d6:cc:17:c6:93:b3:28:cf:82:a1:0f:c6:2d:35:
d7:15:5a:f7:67:06:60:b7:c9:a7:05:55:ca:0f:28:39:10:a4:
61:f5:15:93:b7:fc:35:b1:9b:05:16:16:7b:15:fc:e6:57:4a:
be:f7:fe:86:18:83:a9:eb:5e:92:0e:11:b7:de:f8:df:52:0b:
75:3c:a5:3f:de:c1:49:e3:c3:1e:8c:7b:61:c3:3a:65:af:51:
b8:1b:43:73:3e:5b:ed:1e:00:57:29:cf:dc:b0:e3:3a:0b:37:
6e:ce:1f:33:58:80:1b:e6:09:d6:90:54:47:fe:e6:60:f9:c2:
23:55:84:93:6e:7a:af:8b:ac:76:31:2e:02:fc:c8:4f:98:a0:
cc:2c:7a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:41 2024 by rpki-client on console-ams.rpki-client.org