Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/kTuPWFs3OIFU5Qojk_yg1VSvvyw.roa
File: kTuPWFs3OIFU5Qojk_yg1VSvvyw.roa (raw, json)
Hash identifier: YVGtNOGU81kUVSrQELkjnjlw9rzu+1xKvJfs+jE0GB8=
Subject key identifier: 91:3B:8F:58:5B:37:38:81:54:E5:0A:23:93:FC:A0:D5:54:AF:BF:2C
Certificate issuer: /CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Certificate serial: 018CC64B4D903A2F792E1AAFCF51AE010842
Authority key identifier: 23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/kTuPWFs3OIFU5Qojk_yg1VSvvyw.roa
Signing time: Mon 01 Jan 2024 18:31:12 +0000
ROA not before: Mon 01 Jan 2024 18:31:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39122
IP address blocks: 185.24.232.0/24 maxlen: 24
2a04:2e02::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:4d:90:3a:2f:79:2e:1a:af:cf:51:ae:01:08:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23cbbf9348ae558c6efa0c086f24be04cb23c6e9
Validity
Not Before: Jan 1 18:31:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=913b8f585b37388154e50a2393fca0d554afbf2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:91:a3:a6:0e:72:30:6f:82:25:76:69:f7:58:
b6:5e:39:42:8f:af:05:32:74:75:12:81:66:ed:47:
11:35:49:4d:f9:ed:30:03:2a:3d:9e:de:ed:f7:ed:
95:51:54:86:71:fe:82:02:e6:eb:02:17:84:f4:cf:
8f:7e:b6:67:94:74:12:96:44:a6:bd:bf:54:84:a2:
11:a8:07:28:4c:9b:40:b4:91:04:47:9e:af:a3:50:
58:47:1c:99:d0:45:9e:2d:a9:d0:b5:04:55:01:b0:
b6:cc:b6:cd:28:92:d1:d1:b0:98:65:fb:4d:5e:c7:
07:55:5c:79:80:06:9f:0d:ce:45:99:ea:80:55:08:
17:0c:8b:ef:c7:6f:bf:42:18:39:66:99:6a:08:7b:
16:d9:f3:00:50:9c:f9:44:d1:37:f6:de:d7:db:cf:
a5:fe:8e:c0:ac:8f:4f:15:bb:a4:f9:ab:dc:88:95:
fd:b3:93:ba:21:f5:3e:dc:3b:e1:f4:30:3d:f3:47:
97:8b:a0:e8:44:0b:2b:a0:a9:ec:8f:41:59:5a:49:
57:b9:f5:38:b1:8c:f8:73:bd:fc:a4:e7:f8:d4:3f:
10:54:a7:34:02:bf:1f:b9:15:63:4b:ec:77:74:a9:
cb:d9:1e:78:c0:84:02:e3:e3:e2:a4:28:e6:65:72:
e4:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3B:8F:58:5B:37:38:81:54:E5:0A:23:93:FC:A0:D5:54:AF:BF:2C
X509v3 Authority Key Identifier:
keyid:23:CB:BF:93:48:AE:55:8C:6E:FA:0C:08:6F:24:BE:04:CB:23:C6:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I8u_k0iuVYxu-gwIbyS-BMsjxuk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/kTuPWFs3OIFU5Qojk_yg1VSvvyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0e90f9-e8d3-4562-a5b3-621ee052a6fc/1/I8u_k0iuVYxu-gwIbyS-BMsjxuk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.24.232.0/24
IPv6:
2a04:2e02::/32
Signature Algorithm: sha256WithRSAEncryption
4d:0e:40:8c:17:c2:f6:d4:ed:6c:47:5c:f1:6f:40:fe:6b:af:
64:24:09:c6:b5:3d:d5:53:20:87:a5:3d:a1:dc:52:8c:1e:65:
9d:8c:71:be:93:2a:15:05:bc:66:ce:a1:32:f7:68:90:5b:a5:
e8:56:b6:b9:6e:b5:4f:ee:b4:67:0b:51:82:be:00:ac:45:aa:
b8:64:83:c7:31:e2:8a:de:41:51:c2:2d:30:09:82:ec:e5:f9:
c7:87:53:34:a4:88:30:48:44:e9:23:5e:f5:14:17:41:ca:0c:
fa:6b:4f:44:55:c9:a8:7d:dd:53:93:3c:3b:08:6f:ef:4c:6c:
9b:e0:44:6a:fa:c0:3b:f5:32:05:84:83:55:d4:bc:89:cf:2e:
0e:61:6a:7a:48:ac:50:f8:9b:4d:4a:5c:9a:4f:fc:cb:8c:b8:
67:a3:64:7d:d2:5d:16:32:e6:c7:b7:48:da:e3:4a:c5:8c:ad:
6e:7d:80:2e:7e:a0:71:02:58:ba:90:98:22:06:22:61:df:e5:
cb:d7:ba:c3:e7:c3:7f:1f:07:ed:bb:65:22:fe:b6:93:2a:3b:
df:52:82:68:2e:21:02:ec:7f:dc:19:50:2c:a3:45:2c:92:bd:
2e:00:de:cf:e3:2f:0d:82:25:31:ae:f4:1b:d1:46:f9:d0:e7:
e1:0d:73:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:39:15 2025 by rpki-client