Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/3c-w59-6vEULamo-IThDaAo6ka4.roa
File: 3c-w59-6vEULamo-IThDaAo6ka4.roa (raw, json)
Hash identifier: JgZqwfK40sGcV8zcKYMB3u/adEdgempP9lzo9nhC8Z8=
Subject key identifier: DD:CF:B0:E7:DF:BA:BC:45:0B:6A:6A:3E:21:38:43:68:0A:3A:91:AE
Certificate issuer: /CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582
Certificate serial: 018A028376D2895A674B1B254D6F7BE32C71
Authority key identifier: FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/3c-w59-6vEULamo-IThDaAo6ka4.roa
Signing time: Thu 17 Aug 2023 08:01:24 +0000
ROA not before: Thu 17 Aug 2023 08:01:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208864
IP address blocks: 185.42.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:02:83:76:d2:89:5a:67:4b:1b:25:4d:6f:7b:e3:2c:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc35877cc038bffdb97bb3d6ea216ab52b3a0582
Validity
Not Before: Aug 17 08:01:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddcfb0e7dfbabc450b6a6a3e213843680a3a91ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fd:99:ea:ad:50:4a:96:b9:ee:3d:0a:24:30:
33:3d:60:26:26:d2:b0:a8:84:b0:bf:b5:25:5c:08:
65:d4:c2:21:34:18:0e:78:00:26:2e:47:d6:e5:89:
f3:fb:86:3e:93:5c:cf:7e:4f:1d:84:dc:26:02:2b:
8f:46:2b:3f:d7:b5:9f:3e:d8:93:5d:37:66:4d:fa:
8e:1a:52:38:6e:80:51:1b:1c:c5:38:17:30:60:02:
78:c3:eb:3e:09:34:2b:fc:cc:aa:25:d6:38:c9:17:
f2:5c:62:d2:c8:16:38:48:3a:bd:5f:5f:9c:de:19:
e9:b6:64:64:05:fd:36:48:33:c4:df:9d:56:a2:6f:
8e:a5:9e:b5:27:21:6e:86:64:6c:c2:c5:af:4f:28:
05:b3:52:3b:88:c1:ef:f9:10:3f:4e:6c:8b:b2:bd:
7c:30:c3:ad:65:21:38:2e:d9:75:f2:d9:d7:e2:8e:
23:94:a1:63:7e:12:db:a0:0c:3c:9a:18:38:6a:62:
0d:80:f2:98:ae:d6:41:24:65:06:b3:31:c5:8b:1c:
24:04:40:d3:f2:ae:e3:ac:3d:d1:ba:be:12:5b:b9:
fa:2c:33:f5:88:b5:06:dc:a4:14:8c:a6:3e:60:d2:
ed:fe:a0:22:26:f1:0f:d9:da:a2:d8:60:e8:a8:e1:
81:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:CF:B0:E7:DF:BA:BC:45:0B:6A:6A:3E:21:38:43:68:0A:3A:91:AE
X509v3 Authority Key Identifier:
keyid:FC:35:87:7C:C0:38:BF:FD:B9:7B:B3:D6:EA:21:6A:B5:2B:3A:05:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_DWHfMA4v_25e7PW6iFqtSs6BYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/3c-w59-6vEULamo-IThDaAo6ka4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e8072a-6017-4ed5-bee3-8e65b347f218/1/_DWHfMA4v_25e7PW6iFqtSs6BYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.42.59.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:22:89:b4:13:dd:d2:f9:7a:49:6d:9b:3e:05:c8:d2:4a:73:
b4:b3:2f:10:da:66:a6:71:d6:e6:72:b4:96:64:07:01:f5:be:
c2:e0:19:de:06:d7:a9:20:39:2d:23:ab:52:a0:ef:68:5c:a7:
b3:9e:ec:ad:b8:a7:51:a5:ab:1d:de:1a:59:6a:33:d7:fc:9d:
3c:fb:09:40:26:19:8a:f9:e2:be:bf:fa:2b:45:6d:d8:b0:f0:
cf:a1:63:b0:5b:fc:30:09:99:1a:60:15:ed:50:24:ae:f1:cf:
17:6d:90:12:00:d3:21:9a:2c:d3:34:49:f2:2e:b2:15:45:95:
6e:a3:f8:55:55:e7:04:24:87:32:9c:1a:4b:3d:04:b1:89:c6:
a5:65:6c:86:83:63:d5:96:e5:61:ba:10:12:8e:90:16:a7:a9:
d5:dd:92:61:18:52:74:f4:fd:b9:32:3c:e1:d5:cb:36:d4:cb:
b3:58:c7:a0:ba:28:2b:82:47:45:d2:af:cf:7c:cf:11:a1:32:
46:36:ca:75:ff:c2:8e:20:67:f1:4d:71:c6:c4:1e:7f:fa:f8:
fe:0a:8b:20:65:37:2c:e8:72:0a:cf:c2:d2:60:6e:3d:3d:a4:
b4:16:e1:ac:4e:b3:6e:35:f2:36:d6:8c:45:a3:b3:5d:af:b4:
74:b2:cb:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:02 2024 by rpki-client on console-fra.rpki-client.org