Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/H3UV6wThW2FosCAasOrBG6X5-98.roa
File: H3UV6wThW2FosCAasOrBG6X5-98.roa (raw, json)
Hash identifier: A9waLZPPZeMGmJQ5JiD82AKiw1yunfagOEABjTK+ZFs=
Subject key identifier: 1F:75:15:EB:04:E1:5B:61:68:B0:20:1A:B0:EA:C1:1B:A5:F9:FB:DF
Certificate issuer: /CN=767c1766fbbdcff68bbc34a3c6be69a0c8a03ab9
Certificate serial: 018C86750A0353244952C1077B2040BEC059
Authority key identifier: 76:7C:17:66:FB:BD:CF:F6:8B:BC:34:A3:C6:BE:69:A0:C8:A0:3A:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dnwXZvu9z_aLvDSjxr5poMigOrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/H3UV6wThW2FosCAasOrBG6X5-98.roa
Signing time: Wed 20 Dec 2023 09:01:06 +0000
ROA not before: Wed 20 Dec 2023 09:01:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57588
IP address blocks: 185.143.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:86:75:0a:03:53:24:49:52:c1:07:7b:20:40:be:c0:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=767c1766fbbdcff68bbc34a3c6be69a0c8a03ab9
Validity
Not Before: Dec 20 09:01:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1f7515eb04e15b6168b0201ab0eac11ba5f9fbdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:41:b8:a5:9a:7e:66:e9:c7:a7:af:fe:6c:df:
05:20:47:11:81:3d:60:2f:fa:cb:ac:09:35:18:52:
2a:d1:9f:a7:e7:2b:f9:1d:1f:60:64:a2:15:fb:43:
3b:32:3a:e7:af:ef:e5:b8:fe:8c:3c:ff:f7:f3:c0:
ef:6d:9d:ed:a6:c7:5c:7d:d7:26:1c:37:28:66:8b:
7e:17:e6:31:18:3f:0f:31:a1:dc:4a:21:a8:9f:1a:
d4:02:7f:00:b1:46:e4:1b:a2:0f:2f:38:c2:5e:53:
5b:a2:35:98:9f:5b:08:52:48:d1:e5:0e:40:b7:b1:
a0:3f:fc:f0:bd:49:b7:c3:08:83:86:54:29:e8:40:
7e:9a:bc:75:61:28:7f:12:cf:d6:8b:ba:80:f5:35:
11:40:9c:0d:3f:60:97:66:2e:28:d4:14:25:c9:65:
b2:ba:3e:17:03:71:95:2c:93:03:da:12:f9:d3:62:
27:f8:08:66:a4:f8:7f:4e:0d:e9:0e:fa:e2:5c:fa:
71:35:a8:73:9f:7a:7b:c7:e9:2e:4a:a6:cb:c0:04:
d5:75:fb:d9:c7:0c:77:f3:46:93:cf:b6:af:8d:da:
4f:34:34:16:a0:3c:e0:22:3a:e8:f0:11:43:10:d8:
29:28:3a:3b:8f:f2:17:9e:53:2f:e1:4e:ae:6d:fe:
ff:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:75:15:EB:04:E1:5B:61:68:B0:20:1A:B0:EA:C1:1B:A5:F9:FB:DF
X509v3 Authority Key Identifier:
keyid:76:7C:17:66:FB:BD:CF:F6:8B:BC:34:A3:C6:BE:69:A0:C8:A0:3A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dnwXZvu9z_aLvDSjxr5poMigOrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/H3UV6wThW2FosCAasOrBG6X5-98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/884356-7e2a-4c2a-8ff4-3568e1d29d4a/1/dnwXZvu9z_aLvDSjxr5poMigOrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.42.0/24
Signature Algorithm: sha256WithRSAEncryption
61:2f:5b:f7:d6:43:1d:f5:1b:54:2d:6f:95:4f:29:57:79:39:
f2:b5:b2:0d:c5:39:4e:b8:5a:15:76:d6:57:74:90:59:57:05:
a9:5f:87:d6:07:a8:1e:c8:6a:ad:49:26:2f:14:22:10:44:bd:
cd:56:52:4c:9e:31:02:1a:e1:04:df:0e:e6:a3:cb:66:f6:4b:
b3:78:f7:34:9d:70:cd:14:ea:fa:8a:8b:ed:86:a9:a0:f1:9c:
22:7b:06:be:fd:a3:d8:2c:93:ae:bf:71:e8:0b:54:71:b2:de:
c7:77:eb:e5:e5:d1:08:61:ef:e9:49:b5:a1:fe:1b:a3:17:10:
bc:02:bc:c6:9c:0c:cb:8a:77:9b:77:8d:38:4a:ac:7c:bb:a5:
4a:ca:f7:5c:f4:8f:40:7f:56:11:12:82:98:64:ec:c5:fe:c2:
07:cf:35:b7:88:82:18:66:49:e8:ee:7b:1d:1d:62:d8:12:79:
e5:73:fc:1e:7e:74:0a:04:19:12:1a:99:d9:56:0e:e3:51:02:
f5:6c:66:04:63:f6:e5:ec:3b:21:e2:4b:c4:45:68:9f:41:45:
33:1f:44:08:16:b3:3a:da:29:cb:e5:22:90:87:c9:93:4b:06:
38:70:d1:a7:ff:8a:45:47:23:31:06:94:b0:12:d6:b5:77:93:
6f:20:2f:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:22 2024 by rpki-client on console-ams.rpki-client.org