Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/TH1mwlazv1X_QS91DCbZIHiu_hQ.roa
File: TH1mwlazv1X_QS91DCbZIHiu_hQ.roa (raw, json)
Hash identifier: 9rSD/SNdSPatcEXrmiIdd6g/TJqRZXWMlJISUJwlEzI=
Subject key identifier: 4C:7D:66:C2:56:B3:BF:55:FF:41:2F:75:0C:26:D9:20:78:AE:FE:14
Certificate issuer: /CN=33a924ad59b459357a19ee0a47f379530e2d244c
Certificate serial: 018CC94E5B5B0A8A1E7FB8FD3EACCD6C7B94
Authority key identifier: 33:A9:24:AD:59:B4:59:35:7A:19:EE:0A:47:F3:79:53:0E:2D:24:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M6kkrVm0WTV6Ge4KR_N5Uw4tJEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/TH1mwlazv1X_QS91DCbZIHiu_hQ.roa
Signing time: Tue 02 Jan 2024 08:33:24 +0000
ROA not before: Tue 02 Jan 2024 08:33:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51104
IP address blocks: 185.169.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 Jan 2024 12:08:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:5b:5b:0a:8a:1e:7f:b8:fd:3e:ac:cd:6c:7b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33a924ad59b459357a19ee0a47f379530e2d244c
Validity
Not Before: Jan 2 08:33:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4c7d66c256b3bf55ff412f750c26d92078aefe14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:41:53:46:88:91:d2:c5:f3:15:cb:b0:20:a8:
bf:d8:d3:1f:70:66:d4:63:d7:73:c0:97:bb:7e:19:
17:0e:7a:11:f7:28:09:20:f9:7f:c5:02:02:90:af:
fc:da:49:ec:99:ce:4e:c1:84:23:f5:d1:32:d4:66:
8d:b2:37:07:7b:b3:23:3c:96:b7:fe:fa:f6:4c:6e:
1d:71:c0:eb:47:7c:f2:59:aa:72:4e:c7:b3:72:e6:
d0:1e:78:58:21:7f:e2:6e:67:e8:01:33:ee:d0:b8:
01:86:a1:7c:cb:68:c2:f8:31:86:c2:21:d5:9f:ba:
71:89:b4:08:75:f5:15:d9:86:c0:b3:7e:4d:f1:0c:
2c:87:83:78:b4:3d:03:ad:f2:74:b0:f2:1e:14:e8:
a6:38:28:9f:82:8e:25:b7:c6:8a:9b:6b:20:55:75:
5a:1b:59:1b:96:0d:88:23:b0:4d:6b:ac:50:66:28:
5e:bc:6e:0d:94:20:a7:ed:ce:7d:11:ce:94:28:9e:
8f:01:3f:83:2e:8a:92:ef:a1:54:41:c7:13:bc:fd:
77:47:eb:69:6d:43:31:db:cd:69:5b:03:bc:af:a2:
36:40:1c:18:ca:2b:3f:69:59:20:03:71:58:45:9d:
32:99:9d:34:4f:c5:99:90:e4:40:99:29:bd:80:83:
a0:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:7D:66:C2:56:B3:BF:55:FF:41:2F:75:0C:26:D9:20:78:AE:FE:14
X509v3 Authority Key Identifier:
keyid:33:A9:24:AD:59:B4:59:35:7A:19:EE:0A:47:F3:79:53:0E:2D:24:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M6kkrVm0WTV6Ge4KR_N5Uw4tJEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/TH1mwlazv1X_QS91DCbZIHiu_hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/09830e-0ffe-4682-bc4d-eb77e9571152/1/M6kkrVm0WTV6Ge4KR_N5Uw4tJEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.7.0/24
Signature Algorithm: sha256WithRSAEncryption
61:61:8f:52:e3:2c:52:ec:b1:c1:c2:42:40:ce:93:8e:2a:1b:
28:7c:5a:e6:53:b6:10:c3:cd:c6:92:ff:9d:08:fc:2b:9d:e0:
16:e7:69:b1:18:7f:30:97:6c:29:09:14:9e:a1:d2:ff:d7:83:
46:e2:a6:d9:79:24:0f:7a:9e:a5:c9:15:d8:49:7b:ec:3b:a6:
bf:b4:8c:4d:87:81:ee:3d:9a:ab:6f:2c:8f:25:f8:73:1a:34:
0a:9a:75:a1:ba:3b:40:5e:53:73:54:fb:fb:78:98:06:28:f6:
13:d0:69:2d:64:e8:fc:9e:69:4a:dc:52:62:91:5a:0b:92:6c:
9d:1a:ce:17:69:ab:c0:71:20:70:d3:b6:91:a5:c4:4d:49:f2:
2a:6d:89:1e:b7:fd:8e:87:2d:72:69:1e:52:17:1f:c2:04:92:
b0:9f:60:e3:9b:27:9b:a9:1a:14:47:9d:52:df:9f:13:24:33:
b2:90:5a:69:60:8a:12:15:bc:aa:bd:7f:05:80:91:31:cb:4c:
e0:32:4b:9c:95:2a:01:bd:65:53:65:56:e9:31:b3:ab:52:ec:
d9:15:98:21:51:fd:af:41:bf:ef:87:59:3a:51:06:bf:ee:6f:
59:cb:6a:d2:f3:2b:fb:3b:c7:f3:af:c6:48:d3:50:23:6e:b3:
d6:bc:33:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 17 15:50:44 2024 by rpki-client on console-ams.rpki-client.org