Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xe0ZfSM2dVJEK1xgLAMuFOMM-dA.roa
File: xe0ZfSM2dVJEK1xgLAMuFOMM-dA.roa (raw, json)
Hash identifier: 1yYL7h6TbaxTlD+bA+rqhaTHCbdqaxrHvKYmDh9TnZs=
Subject key identifier: C5:ED:19:7D:23:36:75:52:44:2B:5C:60:2C:03:2E:14:E3:0C:F9:D0
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018B85959A8606C439FC57B5B7919DC7CB49
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xe0ZfSM2dVJEK1xgLAMuFOMM-dA.roa
Signing time: Tue 31 Oct 2023 11:54:15 +0000
ROA not before: Tue 31 Oct 2023 11:54:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60842
IP address blocks: 185.39.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:85:95:9a:86:06:c4:39:fc:57:b5:b7:91:9d:c7:cb:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Oct 31 11:54:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5ed197d23367552442b5c602c032e14e30cf9d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:d7:bb:a2:c4:1d:e5:0e:a7:57:5c:e2:b7:ca:
02:11:bd:d1:0f:ba:f7:db:84:30:9f:f3:3c:05:92:
55:9f:47:ff:5c:03:9d:b5:b1:06:ec:9a:49:0a:01:
f4:f0:28:41:9e:31:6d:8a:8c:f7:71:97:26:5d:d7:
87:45:d1:5a:57:ac:d3:a3:1d:aa:51:d3:d1:d5:47:
69:e7:b4:5c:ff:6b:2e:7d:55:6d:e8:84:50:01:5a:
1e:08:fc:2f:b5:19:cb:c9:46:1a:c3:e7:f3:9f:54:
c2:06:3d:ec:07:57:c4:e9:05:d1:6f:6a:0f:59:23:
2b:9f:d2:e4:a4:48:43:d7:f7:c2:7e:31:3f:11:7d:
1b:18:33:d1:19:cf:33:36:7c:b5:62:d1:d4:49:12:
6c:c0:96:b7:32:84:2e:50:ae:12:28:fd:52:55:62:
d1:41:e8:6f:bc:2d:26:4b:95:c3:74:9b:fa:10:8c:
9e:11:01:b6:16:63:3a:50:3e:58:4c:9d:14:1c:96:
f5:55:23:83:0b:3b:81:24:f3:5a:0e:47:67:d8:7b:
58:66:04:4a:a3:ec:40:12:0f:c6:3b:39:e4:28:70:
7c:c5:55:1a:41:17:42:2a:cf:49:da:77:10:1f:85:
a2:8e:cb:37:b3:ba:01:7b:32:fa:97:1c:a0:70:3a:
c6:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:ED:19:7D:23:36:75:52:44:2B:5C:60:2C:03:2E:14:E3:0C:F9:D0
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/xe0ZfSM2dVJEK1xgLAMuFOMM-dA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.205.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:36:74:84:82:25:c2:2a:1d:35:de:37:4e:d2:2d:3a:a2:a1:
96:9a:9b:c8:2c:35:4f:37:61:1e:99:39:7f:e8:56:43:b1:66:
35:e3:35:28:7f:bf:99:66:73:20:2e:aa:5c:47:55:05:ad:34:
93:ba:af:91:a5:db:80:24:80:8d:04:ff:6b:80:16:56:09:b8:
b1:c4:f3:7d:08:88:82:f9:2c:6d:e1:30:39:26:c2:51:a5:d9:
4b:fa:94:2f:fe:80:05:a8:95:0c:d5:d8:16:57:64:e5:1f:83:
a7:46:49:78:9e:b4:8b:6d:9d:e6:2f:08:95:ae:1a:8a:86:80:
67:f8:14:98:be:b1:3d:0d:af:2b:dc:bc:97:90:d7:8a:65:9c:
e8:88:89:6a:6a:c4:90:27:25:a4:27:4a:00:4d:07:8e:d1:2e:
ac:f5:64:2a:9c:13:5d:08:5b:f8:f3:f3:c3:a9:be:eb:c0:95:
56:ff:24:c5:d8:df:09:13:b2:36:2e:bd:7b:bb:b5:a2:17:2b:
8e:7b:72:be:78:45:44:40:17:90:af:c1:f6:45:aa:fd:05:e9:
96:ba:c8:2a:dc:62:c4:ca:44:df:e0:14:4d:57:89:74:e7:86:
82:88:c7:9b:8e:ad:74:9c:8f:9f:c2:43:da:a2:bc:d7:75:04:
cc:17:93:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:33 2024 by rpki-client on console-ams.rpki-client.org