Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/183656-0dc5-4a94-ae6d-8ad1d0f80217/1/02mumHoX4pmP2mEFWeBlYf93-zc.roa
File: 02mumHoX4pmP2mEFWeBlYf93-zc.roa (raw, json)
Hash identifier: Nn7RBi/dfUO4+v0Wt0tmtlLwZ2vXxky3WUmFcXUufQw=
Subject key identifier: D3:69:AE:98:7A:17:E2:99:8F:DA:61:05:59:E0:65:61:FF:77:FB:37
Certificate issuer: /CN=6904daf858b7b00b51cbb94afb28f03ea21e411d
Certificate serial: 018CC2DB3ADE5B10FFB1414DC61ED71313C7
Authority key identifier: 69:04:DA:F8:58:B7:B0:0B:51:CB:B9:4A:FB:28:F0:3E:A2:1E:41:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aQTa-Fi3sAtRy7lK-yjwPqIeQR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/183656-0dc5-4a94-ae6d-8ad1d0f80217/1/02mumHoX4pmP2mEFWeBlYf93-zc.roa
Signing time: Mon 01 Jan 2024 02:29:56 +0000
ROA not before: Mon 01 Jan 2024 02:29:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203851
IP address blocks: 185.154.48.0/24 maxlen: 24
185.154.49.0/24 maxlen: 24
185.154.50.0/24 maxlen: 24
185.154.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Nov 2024 10:54:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:3a:de:5b:10:ff:b1:41:4d:c6:1e:d7:13:13:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6904daf858b7b00b51cbb94afb28f03ea21e411d
Validity
Not Before: Jan 1 02:29:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d369ae987a17e2998fda610559e06561ff77fb37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8d:6b:08:c7:8d:d6:fb:ac:52:d7:87:0e:aa:
53:25:f9:bb:42:a7:e6:5a:7f:37:95:a3:38:f7:eb:
0c:48:16:ee:07:22:39:3b:7f:73:ab:cc:ad:c3:2b:
ce:80:e1:50:76:d2:cf:28:f0:99:01:90:ba:b9:61:
8d:41:d4:38:e2:c4:c0:7a:b5:c2:f9:d3:8b:53:9a:
3e:b5:50:c1:1f:51:d2:f6:9d:75:59:0b:78:ae:52:
61:88:4f:e6:39:63:6f:00:a0:e8:9c:c9:e9:30:cd:
23:87:e2:8a:8d:72:b1:d6:18:8f:02:06:6b:05:97:
26:36:6c:80:0a:7f:00:ad:25:19:12:bf:23:67:4a:
2a:cb:02:33:20:ac:fc:1e:10:3d:12:e4:2d:78:80:
22:f7:fb:f7:51:24:87:b5:e2:93:74:7e:3b:08:5b:
ab:63:e5:65:f9:a2:c8:df:7f:42:ef:fd:bc:34:9c:
c6:64:db:2f:42:c7:6c:5d:95:1b:19:d5:a5:e0:59:
26:0c:63:76:ae:53:29:65:57:73:91:a3:6e:72:af:
db:c8:2f:36:96:cb:89:2f:77:8f:72:80:1b:db:bc:
4a:12:be:a8:cc:11:3d:8a:8a:ee:8d:6c:b5:2a:fd:
25:9f:46:c8:07:01:b7:e3:01:8c:f5:9e:00:50:08:
31:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:69:AE:98:7A:17:E2:99:8F:DA:61:05:59:E0:65:61:FF:77:FB:37
X509v3 Authority Key Identifier:
keyid:69:04:DA:F8:58:B7:B0:0B:51:CB:B9:4A:FB:28:F0:3E:A2:1E:41:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aQTa-Fi3sAtRy7lK-yjwPqIeQR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/183656-0dc5-4a94-ae6d-8ad1d0f80217/1/02mumHoX4pmP2mEFWeBlYf93-zc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/183656-0dc5-4a94-ae6d-8ad1d0f80217/1/aQTa-Fi3sAtRy7lK-yjwPqIeQR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.48.0/22
Signature Algorithm: sha256WithRSAEncryption
46:08:8a:c9:68:3f:76:c0:01:2e:1e:c5:9b:0f:7f:23:29:d9:
ba:77:d4:98:d1:2e:3d:50:0e:bd:0c:5c:d2:e5:27:27:4d:34:
a7:ef:a8:c8:f0:72:52:1e:d7:6c:e2:33:d1:a8:c9:c7:9e:be:
a5:97:d8:b3:6c:dd:e4:8b:b0:d2:23:62:86:1b:03:5d:27:fa:
3e:2c:46:a1:4a:ed:93:6a:7f:51:5a:7d:1f:c6:ce:c6:f4:54:
ee:5c:30:f2:e3:75:c1:b6:a9:2f:d9:f1:b2:2c:70:8b:8e:77:
65:5d:32:58:b3:e3:5e:78:86:83:ff:e9:22:0c:65:47:b1:37:
ce:b6:ae:2d:db:e4:cf:0c:e2:f8:52:49:52:e1:be:6d:31:0d:
b3:24:9f:1c:52:69:f6:9e:51:ea:b7:8b:51:ed:ff:ea:60:f6:
ac:3d:e4:73:d1:85:ea:49:dc:bf:f8:09:93:c9:b6:4c:fc:79:
97:5c:e7:17:24:f4:06:02:da:fe:e6:ee:09:03:75:5e:73:3a:
a4:8d:f6:9d:33:9c:ff:60:be:66:4a:5a:3c:8b:f7:2e:a2:68:
b8:80:98:85:d8:a1:53:3b:0c:40:6c:ef:20:79:8e:7e:b7:8a:
0f:03:03:f0:3b:29:f1:38:2e:da:c2:71:e2:5b:83:1b:0e:be:
6b:8e:be:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 4 14:07:44 2024 by rpki-client on console-ams.rpki-client.org