Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/kTJQim_iDdbzb7ZFwnEkbUcL6Qk.roa
File: kTJQim_iDdbzb7ZFwnEkbUcL6Qk.roa (raw, json)
Hash identifier: RXrbw6Dj5U9ImreaOtiEnsqlakWqoinsmhN8KkpWHws=
Subject key identifier: 91:32:50:8A:6F:E2:0D:D6:F3:6F:B6:45:C2:71:24:6D:47:0B:E9:09
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 01889A1A812E3C17E52782A9153C2832932F
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/kTJQim_iDdbzb7ZFwnEkbUcL6Qk.roa
Signing time: Thu 08 Jun 2023 08:23:28 +0000
ROA not before: Thu 08 Jun 2023 08:23:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3507
IP address blocks: 185.41.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Jun 2023 18:35:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:9a:1a:81:2e:3c:17:e5:27:82:a9:15:3c:28:32:93:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jun 8 08:23:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9132508a6fe20dd6f36fb645c271246d470be909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0b:00:ff:fc:94:d1:da:8f:52:bd:d5:42:4a:
a0:f7:06:ee:82:04:73:29:cf:ef:1c:78:eb:37:b7:
36:ce:fa:9a:9e:ee:88:93:c7:12:64:91:ef:d8:b6:
22:68:b7:47:95:93:fe:01:fd:a4:8d:d7:39:67:ab:
10:18:5d:a8:7e:bc:de:82:95:7f:75:a0:8e:e3:ae:
74:ed:dd:22:77:fd:d5:02:c3:99:93:c4:9a:b3:cc:
06:4d:fc:5a:94:f0:60:fb:34:ca:ba:ac:4b:2d:51:
67:65:09:52:9b:a2:66:c0:a2:6a:25:ca:ca:78:2d:
1b:20:bb:53:08:1b:eb:96:49:d4:a7:4e:fa:b2:f8:
b4:95:d2:03:1d:0a:1c:d9:56:4f:d1:58:ac:33:a3:
8f:e5:b4:30:74:40:ef:96:e2:a1:3f:96:74:96:60:
4a:2b:f0:8a:bb:2a:c9:59:87:f2:e8:ea:e5:bf:4e:
58:a6:aa:4f:55:c4:34:e8:49:9a:d2:9f:7d:b2:ef:
76:0d:02:53:bf:6a:04:70:20:f0:1a:17:af:cb:fe:
03:c8:10:31:f8:ba:5c:48:53:f5:a0:5f:98:17:f5:
e2:c1:55:29:fa:3d:11:6a:b3:75:19:1f:a3:2c:2f:
ff:ce:94:15:54:43:ca:ab:bd:96:e9:c3:59:19:39:
34:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:32:50:8A:6F:E2:0D:D6:F3:6F:B6:45:C2:71:24:6D:47:0B:E9:09
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/kTJQim_iDdbzb7ZFwnEkbUcL6Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:ee:3c:3b:87:1a:0e:95:22:0c:0a:21:d9:8a:39:f4:bb:8b:
f1:4e:40:8f:6e:f2:0c:e0:7a:d3:31:5c:79:de:8d:96:d9:05:
ae:20:99:d0:73:89:4a:f5:7d:e1:46:d0:a0:ef:79:47:0d:22:
0b:b4:67:7e:28:a9:05:14:14:53:ca:74:cf:3e:a8:da:91:52:
04:53:59:65:00:0b:aa:69:cc:b3:95:0c:80:d4:e3:37:8a:5e:
e0:e0:0f:06:56:1b:62:97:4b:b4:34:6c:42:18:7e:a5:1b:9d:
8b:ef:2a:90:01:50:42:d5:fb:aa:5a:e6:45:8e:4c:b0:19:0d:
b0:e3:eb:95:a9:2e:b3:81:f9:00:12:2b:be:4e:4b:19:a0:e1:
be:f3:2c:67:ef:62:ea:3e:dd:4d:c0:66:2f:3a:b2:33:aa:b5:
b6:29:1d:f4:b8:d0:af:10:92:95:a9:9e:e5:cd:ce:2f:6c:c2:
3e:06:cb:c2:c7:15:9e:a7:3d:b9:f9:ad:17:e5:5e:c5:12:00:
9a:72:5d:6c:99:57:04:76:22:7d:1f:a5:90:04:ed:b8:0a:37:
92:e0:91:21:5b:7c:e3:dc:b0:96:59:90:a8:1b:b1:cc:59:c6:
cb:10:e5:fc:63:65:27:1c:7f:17:a3:f7:a8:f3:74:cc:aa:fa:
2e:3d:c1:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org