Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/0cda74-c9bb-4d92-9e6f-38997821ffce/1/iXPizYLvKVy-g501yOHmQqGWF0k.roa
File: iXPizYLvKVy-g501yOHmQqGWF0k.roa (raw, json)
Hash identifier: NHmF0lTmO405mHOz64toaVJJEkcfLRw1hN8WHImLSSY=
Subject key identifier: 89:73:E2:CD:82:EF:29:5C:BE:83:9D:35:C8:E1:E6:42:A1:96:17:49
Certificate issuer: /CN=3547913ce3a11588b59c3c9f9da9ff77f248ac12
Certificate serial: 01859C11DD3C15118DE65C740AC86E124C54
Authority key identifier: 35:47:91:3C:E3:A1:15:88:B5:9C:3C:9F:9D:A9:FF:77:F2:48:AC:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NUeRPOOhFYi1nDyfnan_d_JIrBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/0cda74-c9bb-4d92-9e6f-38997821ffce/1/iXPizYLvKVy-g501yOHmQqGWF0k.roa
Signing time: Tue 10 Jan 2023 14:24:54 +0000
ROA not before: Tue 10 Jan 2023 14:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203175
IP address blocks: 185.137.29.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9c:11:dd:3c:15:11:8d:e6:5c:74:0a:c8:6e:12:4c:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3547913ce3a11588b59c3c9f9da9ff77f248ac12
Validity
Not Before: Jan 10 14:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8973e2cd82ef295cbe839d35c8e1e642a1961749
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:be:9b:7e:74:13:42:e7:81:b0:a7:b1:1a:8c:
3f:ae:ad:67:83:52:f9:36:10:79:28:85:b9:74:75:
9d:26:84:94:78:81:6e:a0:40:d2:0d:22:b8:b5:53:
b4:d1:50:cd:c9:8f:e6:5a:c8:5b:a6:98:05:e3:c8:
f4:28:5b:d7:94:07:62:5e:27:2c:4b:9c:d3:a9:be:
cd:0f:78:04:78:75:28:ca:d0:b5:43:d7:2c:29:d1:
55:5d:a6:34:23:13:f7:ac:b6:b9:e3:71:c6:29:89:
64:b5:08:c9:53:77:09:29:5c:38:5f:91:0c:78:0f:
2d:1e:2c:32:60:26:9e:c9:76:31:50:6c:de:71:d9:
89:d0:af:2d:90:14:c9:9e:87:33:6b:ed:fb:fa:df:
c5:9e:75:61:a5:0b:8e:f2:12:c2:29:3f:e2:27:ef:
4e:a9:54:0e:2c:6f:f5:7e:47:50:1f:6e:0d:26:8c:
62:5a:99:55:b6:7d:82:10:3e:57:b4:32:f5:60:c9:
5c:6c:2f:09:88:cd:75:57:cf:4d:72:2b:aa:93:aa:
7e:e2:22:d6:08:86:02:82:75:3c:84:43:5e:82:e1:
d7:d5:82:23:10:09:9e:07:c9:c4:82:b4:68:e4:6d:
7d:54:f4:40:8e:e4:e9:94:8d:6b:05:99:87:cf:75:
b5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:73:E2:CD:82:EF:29:5C:BE:83:9D:35:C8:E1:E6:42:A1:96:17:49
X509v3 Authority Key Identifier:
keyid:35:47:91:3C:E3:A1:15:88:B5:9C:3C:9F:9D:A9:FF:77:F2:48:AC:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NUeRPOOhFYi1nDyfnan_d_JIrBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0cda74-c9bb-4d92-9e6f-38997821ffce/1/iXPizYLvKVy-g501yOHmQqGWF0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/0cda74-c9bb-4d92-9e6f-38997821ffce/1/NUeRPOOhFYi1nDyfnan_d_JIrBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.29.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:cb:1e:6b:af:85:1d:ef:cd:3d:62:86:0d:aa:c5:2e:89:c6:
5b:f4:38:b1:ac:a5:d3:ed:7f:e5:3a:dd:d1:ad:cb:62:55:c6:
9a:0e:2c:6c:9e:c7:e1:aa:38:68:9c:8e:eb:b0:1c:02:a5:bf:
72:e1:15:3e:a9:72:ab:94:a3:d8:f2:08:df:3a:80:04:1a:fa:
25:50:d4:5f:e6:98:3a:22:01:8a:c0:36:17:d2:bc:70:e3:b7:
ef:4e:52:fc:b0:0b:25:b7:38:43:cd:8f:51:62:79:25:b8:d6:
76:89:e2:f9:91:62:fb:18:13:d8:78:9e:e6:0e:ed:7f:f1:c9:
cf:5a:cf:7d:d8:76:12:9e:6e:be:da:8a:ed:c8:5e:01:02:74:
5a:da:5b:89:c7:d1:bb:ca:88:20:9e:f6:e9:d0:ff:00:c3:ff:
52:2c:52:21:9c:9f:37:cc:be:08:d4:7c:05:f0:d6:ba:3f:bb:
88:7c:0a:6a:53:b3:70:14:56:4c:da:f9:df:ec:e1:cc:35:7a:
15:c5:76:c7:96:3a:9e:b7:6b:31:c0:13:f2:a5:2d:d6:bd:6a:
67:c3:f0:d5:53:95:ad:b3:76:85:71:20:cc:8f:c1:9b:82:7f:
c1:8f:b0:47:d3:da:22:2a:56:23:d1:27:c8:72:d2:49:23:7b:
b6:dd:67:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:04 2024 by rpki-client on console-fra.rpki-client.org