Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/5dYwkwUkhTr-uKqzdKTma0tI4fk.roa
File: 5dYwkwUkhTr-uKqzdKTma0tI4fk.roa (raw, json)
Hash identifier: NNKn97A8Vd4/0yVxhJZqC7yubnvUX1HYaLjR30sta2M=
Subject key identifier: E5:D6:30:93:05:24:85:3A:FE:B8:AA:B3:74:A4:E6:6B:4B:48:E1:F9
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018A452E6AC0F3D460DBFBE99D29EF7C655B
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/5dYwkwUkhTr-uKqzdKTma0tI4fk.roa
Signing time: Wed 30 Aug 2023 06:43:04 +0000
ROA not before: Wed 30 Aug 2023 06:43:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43072
IP address blocks: 185.112.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 30 Aug 2023 07:26:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:45:2e:6a:c0:f3:d4:60:db:fb:e9:9d:29:ef:7c:65:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Aug 30 06:43:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e5d630930524853afeb8aab374a4e66b4b48e1f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:6f:82:40:59:87:e2:d3:63:85:4a:ca:a8:53:
0a:a0:5f:d0:b7:6f:39:92:17:cb:84:80:cf:7f:b7:
50:4d:27:37:fe:a8:93:7b:73:7b:37:73:a9:51:a3:
ae:1f:fe:f4:25:09:26:6f:9f:f6:50:ca:22:af:7f:
c2:ea:78:e6:9a:70:2e:ac:28:94:03:1c:3a:47:0b:
1a:f4:c8:4f:68:58:d9:e5:77:7b:a3:47:bc:c7:39:
be:a4:02:a1:20:fd:fa:8a:e6:44:c6:8e:db:84:54:
8f:c6:c1:0c:2b:f2:95:98:6d:28:81:b5:5b:45:41:
ec:22:52:57:f6:41:ae:bb:b5:3d:67:d3:61:a6:4f:
c6:3d:cf:04:a3:55:24:bb:0c:48:43:32:cf:93:06:
8c:8c:9a:15:f9:c3:2b:96:3e:85:3b:e5:29:4a:e3:
71:60:2a:36:a0:eb:98:52:ca:28:fb:b6:e3:2f:a3:
e0:91:9c:ed:c1:87:2d:51:13:ad:b3:17:32:38:75:
c3:ba:7b:46:27:7a:e3:96:97:b3:fd:06:36:0b:34:
76:54:30:c7:14:8b:df:7a:7b:02:b2:03:3d:d3:25:
bd:91:77:fb:03:6e:be:1e:cd:69:71:f9:d7:35:fd:
98:68:62:2d:47:bb:32:ab:04:6f:32:fc:71:de:dd:
df:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:D6:30:93:05:24:85:3A:FE:B8:AA:B3:74:A4:E6:6B:4B:48:E1:F9
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/5dYwkwUkhTr-uKqzdKTma0tI4fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.243.0/24
Signature Algorithm: sha256WithRSAEncryption
14:b2:58:1e:a8:5f:5e:c9:1d:53:ef:47:f1:29:a9:b3:37:44:
4a:b7:ae:3f:a5:f0:c1:e5:8d:bd:90:d0:46:70:d9:6f:44:93:
b0:7a:ff:b1:8e:d0:b6:8a:e5:4c:a3:6c:c0:5a:12:1d:5a:0e:
b3:33:2b:3a:97:38:b1:6c:21:84:35:de:95:cc:55:17:95:c3:
6e:9d:f8:db:00:dd:60:b8:39:6e:3f:40:3d:7e:0a:e6:a8:94:
1a:d6:c1:44:75:c7:40:c1:bd:bf:92:ad:78:ec:97:89:10:12:
4b:74:92:b4:8c:c9:42:3a:93:5a:a1:76:be:bf:a2:44:ff:97:
c6:67:b2:90:72:f1:67:29:d4:93:28:2c:f9:49:c2:ca:35:26:
11:54:b7:4d:5d:18:f4:f9:07:aa:4a:26:d3:80:f4:d6:41:f9:
ac:b8:b5:13:d2:c2:21:b7:63:99:a6:5c:9b:02:44:02:ca:86:
28:79:e0:42:81:89:85:03:30:0d:29:26:1d:ce:ad:af:e6:ba:
6d:43:81:eb:d4:be:e3:2a:4e:b4:1d:59:a3:cd:86:03:a2:89:
f4:9f:5c:80:89:89:ce:68:a3:af:0a:d0:8e:dc:4d:6b:5f:87:
eb:b3:de:11:fe:ed:17:5b:28:87:19:36:ba:a9:c9:1a:8f:94:
ab:fa:a9:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org