Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7TZE9AyzSwjStOF9jxo4GiM5aTU.roa
File: 7TZE9AyzSwjStOF9jxo4GiM5aTU.roa (raw, json)
Hash identifier: wMbjNevOPsi4za99dPZfdoZTq3wzBNO73XBgDufVr+k=
Subject key identifier: ED:36:44:F4:0C:B3:4B:08:D2:B4:E1:7D:8F:1A:38:1A:23:39:69:35
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 018C1AA136495C08AD8F9C69A06C550F3099
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7TZE9AyzSwjStOF9jxo4GiM5aTU.roa
Signing time: Wed 29 Nov 2023 10:30:21 +0000
ROA not before: Wed 29 Nov 2023 10:30:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 149485
IP address blocks: 185.209.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 10:10:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1a:a1:36:49:5c:08:ad:8f:9c:69:a0:6c:55:0f:30:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Nov 29 10:30:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed3644f40cb34b08d2b4e17d8f1a381a23396935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0d:14:af:59:84:81:9d:53:93:da:7f:a6:cb:
5a:28:92:33:6a:ac:cf:16:58:aa:99:90:4e:31:ef:
42:11:71:e3:42:1a:47:a3:94:4e:82:5c:88:16:36:
f3:2f:51:30:5d:e1:fa:92:00:fb:9e:3e:26:c0:05:
de:ae:83:50:48:1d:7e:a8:a1:c8:eb:9c:5b:0c:16:
68:e6:b7:f5:3b:16:52:da:65:98:b8:0c:77:47:69:
23:9e:4b:33:75:ae:7c:29:38:ae:84:4a:84:46:37:
3e:6d:ee:a6:1f:d8:27:2f:10:36:91:5a:88:27:0c:
9a:c9:f7:a6:0a:cf:52:29:ff:8f:9d:e2:ff:39:85:
5c:e8:b8:0e:28:80:db:0c:b7:7f:cd:d8:6a:1e:2a:
cf:a8:a4:53:c4:e1:30:23:fd:a3:0b:86:4e:1c:5e:
64:65:47:71:ba:8b:93:80:4f:a4:e7:80:d1:b3:14:
09:ea:26:39:8e:57:8c:cb:00:c6:34:40:4d:59:c2:
39:f5:81:95:8a:9b:23:a0:d2:ce:41:80:47:f1:c9:
5c:a2:97:b0:de:4f:be:ff:c2:06:af:3a:8d:de:20:
1d:33:52:e5:06:63:16:ec:d9:b4:68:01:31:93:1c:
b8:c5:83:25:01:07:9d:80:1b:85:09:d1:f1:fd:59:
5f:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:36:44:F4:0C:B3:4B:08:D2:B4:E1:7D:8F:1A:38:1A:23:39:69:35
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/7TZE9AyzSwjStOF9jxo4GiM5aTU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.38.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:07:5d:63:5a:d6:f6:0d:07:5e:1f:13:52:2f:e7:6e:52:c8:
94:b8:79:ca:97:04:38:78:b9:82:db:e9:5e:46:a7:a3:1f:55:
36:ba:85:21:c1:9b:70:c8:b7:87:56:e6:5e:57:b2:85:4b:36:
72:92:05:5b:7c:12:81:f6:05:75:77:d5:18:f4:fe:ae:e1:54:
b7:54:5e:fb:9c:bb:3d:4b:a8:bf:dc:61:f7:2f:26:d6:8a:89:
57:e3:85:4e:b9:33:f7:37:ac:2e:28:c1:10:43:93:a1:80:cd:
9e:99:35:1d:10:e9:18:2a:a1:f4:36:65:60:23:8f:a4:0a:79:
55:5d:15:c0:48:83:e9:b6:94:2d:b0:26:1b:af:92:68:b8:71:
9e:69:3e:3c:63:d4:d0:e5:30:bc:be:1c:dd:58:b9:02:86:c0:
34:66:6e:fb:c1:67:50:62:a4:61:08:1c:f2:80:51:2e:65:ed:
ea:68:d3:71:11:d3:60:8e:9b:52:c4:fe:74:86:40:63:8f:1b:
53:6a:de:59:81:77:b7:3f:a0:f3:e8:d2:60:23:eb:57:89:88:
e9:5b:84:c6:be:6d:82:a2:dd:43:ad:c2:01:74:87:cb:24:0f:
33:1f:71:ae:eb:3a:87:45:17:db:ab:00:16:37:1e:08:2d:fc:
14:03:77:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:20 2024 by rpki-client on console-ams.rpki-client.org