Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/z6bHRU4fkMrYxq2_maF-UOz5Pno.roa
File: z6bHRU4fkMrYxq2_maF-UOz5Pno.roa (raw, json)
Hash identifier: 2MsDMXbxnpn/GgenP34YyU/CMpdGDS9Y16hwFrWrE7g=
Subject key identifier: CF:A6:C7:45:4E:1F:90:CA:D8:C6:AD:BF:99:A1:7E:50:EC:F9:3E:7A
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 019145827AFEA819696E62D43EB21DAFA7A3
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/z6bHRU4fkMrYxq2_maF-UOz5Pno.roa
Signing time: Mon 12 Aug 2024 07:34:24 +0000
ROA not before: Mon 12 Aug 2024 07:34:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.210.168.0/23 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Aug 2024 09:46:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:82:7a:fe:a8:19:69:6e:62:d4:3e:b2:1d:af:a7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Aug 12 07:34:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cfa6c7454e1f90cad8c6adbf99a17e50ecf93e7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:6c:12:6a:0c:78:76:28:c8:50:28:48:41:89:
4c:fe:85:f1:f4:a5:a3:fc:c5:c5:5e:c8:04:e3:9c:
fe:12:23:01:78:ef:1e:c8:8e:ec:ac:d0:8d:94:1b:
2f:fa:db:fa:58:87:d7:0b:11:e7:ec:e0:c4:ad:19:
df:eb:95:a3:6a:c9:a2:e2:30:3a:7a:89:c9:07:46:
13:2c:8c:e7:46:67:6f:a2:ff:2c:ab:9f:3e:a1:54:
ad:d2:e4:a4:d1:07:a4:70:55:6e:36:24:8d:b6:8f:
4a:72:eb:d5:37:72:52:bf:a4:0c:be:03:86:aa:3d:
c7:ec:f4:38:8f:b0:47:cf:b2:6c:35:56:1c:57:21:
17:ac:a9:c1:8e:08:18:33:5a:e2:d5:ac:15:64:3d:
e4:31:62:6e:23:56:8a:19:24:c0:eb:8c:cc:6f:63:
c0:75:9d:5d:7b:11:27:74:47:7b:97:f8:e5:44:ab:
e3:2a:cc:a4:93:08:a1:8e:54:69:d3:ef:99:6d:d8:
90:85:93:d3:cf:1d:1b:9c:a4:fa:cf:c6:f2:df:b6:
bc:19:ed:5a:09:7e:5a:a6:86:f5:30:b3:ca:60:58:
08:a3:df:26:7b:58:4f:f4:ea:36:a4:bd:9a:d0:65:
e5:47:88:30:fa:a1:a6:e7:1e:a4:e2:d0:86:0c:33:
d1:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:A6:C7:45:4E:1F:90:CA:D8:C6:AD:BF:99:A1:7E:50:EC:F9:3E:7A
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/z6bHRU4fkMrYxq2_maF-UOz5Pno.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.168.0/23
Signature Algorithm: sha256WithRSAEncryption
54:fb:a6:ac:c9:da:a4:4a:4e:13:4a:0b:cb:fe:b4:5e:d2:36:
91:ff:1d:b7:d2:09:c4:5c:f3:1e:7e:99:b5:42:be:d5:66:71:
7e:e7:c2:3c:b8:e0:2b:11:7d:c1:12:3c:92:78:35:0d:f0:ae:
fb:5c:84:c7:ec:51:4e:6f:c2:a7:63:33:9f:8f:89:d2:b3:72:
69:35:91:65:32:c6:21:6a:f1:6a:ea:78:77:90:c0:8e:a1:80:
cf:33:4b:b2:73:64:7a:f8:87:ef:de:45:f8:14:11:4f:5d:56:
4a:23:54:3a:77:d6:5d:d3:2e:13:1a:31:10:12:07:31:be:69:
b9:68:de:c8:60:44:cb:ec:01:e4:69:36:c6:e5:4a:23:be:80:
62:84:87:e3:08:fa:7c:80:5a:b7:a4:68:47:12:9e:5e:32:88:
67:b4:76:c4:19:70:72:48:be:b6:2b:c0:02:22:c6:fa:4c:26:
15:ff:91:1d:ac:a8:1d:27:8b:84:47:d9:77:23:d3:83:6d:a3:
39:d3:af:69:23:21:da:2c:bd:b6:6c:7f:e3:4b:4d:55:34:a6:
fb:ac:27:67:e4:cf:10:1f:43:22:b5:ef:bc:6f:26:42:c9:be:
d4:1a:16:c7:29:f6:43:19:34:29:0b:ad:53:14:66:17:92:50:
14:23:bb:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 12:32:01 2024 by rpki-client on console-ams.rpki-client.org