Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/eic92j6K0LTi3VHzee13dbCUH-4.roa
File: eic92j6K0LTi3VHzee13dbCUH-4.roa (raw, json)
Hash identifier: fX5kAoRcadrms8Ps5w8Z0hMj03aWJhOS9n6Q7NUBIVI=
Subject key identifier: 7A:27:3D:DA:3E:8A:D0:B4:E2:DD:51:F3:79:ED:77:75:B0:94:1F:EE
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 018573CCD5430B1AF06A3C745E8F41F2D90F
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/eic92j6K0LTi3VHzee13dbCUH-4.roa
Signing time: Mon 02 Jan 2023 18:44:41 +0000
ROA not before: Mon 02 Jan 2023 18:44:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 185.210.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:cc:d5:43:0b:1a:f0:6a:3c:74:5e:8f:41:f2:d9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Jan 2 18:44:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a273dda3e8ad0b4e2dd51f379ed7775b0941fee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:24:97:78:cb:ea:03:19:19:20:20:8f:de:8e:
6e:28:c2:37:d0:7d:5e:63:e8:c0:01:18:50:c3:7b:
79:74:54:96:20:2d:21:2e:dc:8b:3c:af:bf:0a:ef:
d7:e9:f6:56:72:66:58:61:93:5e:e7:95:0a:a9:fe:
30:52:75:2e:0b:09:b0:cb:43:ec:b4:ca:bb:56:b2:
ef:62:41:d2:ed:1a:a1:07:39:5d:a0:aa:00:3a:99:
28:19:3c:96:ba:96:a7:70:20:3e:97:11:f5:59:51:
2a:36:07:ad:e1:c6:70:d8:63:6a:20:e8:ff:77:af:
67:8b:ab:31:9c:6e:75:9c:60:07:20:4b:6c:41:ac:
20:ee:83:c1:16:e7:d2:cf:dc:1d:2a:62:d7:e8:33:
d6:dd:7f:35:4f:1b:7a:5f:b3:61:62:54:81:67:fb:
f1:a9:a2:f5:67:34:37:5e:10:b3:f3:5e:4a:e6:1e:
3d:6f:08:e4:89:39:24:0f:23:26:34:23:99:f6:a5:
b7:6f:5b:2e:5a:d8:e5:d6:6c:be:62:a1:e4:a9:96:
21:5e:4f:77:af:14:0d:85:bc:f5:f3:96:ad:16:82:
03:3e:46:b5:8e:f6:d6:1f:06:49:bd:56:4c:8b:e9:
04:4b:d9:54:ff:b1:11:f2:c1:25:01:8c:5e:2c:15:
39:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:27:3D:DA:3E:8A:D0:B4:E2:DD:51:F3:79:ED:77:75:B0:94:1F:EE
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/eic92j6K0LTi3VHzee13dbCUH-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.157.0/24
Signature Algorithm: sha256WithRSAEncryption
27:58:90:d6:d6:40:1c:ac:1f:62:e9:dd:11:d9:ad:5b:38:37:
ea:df:bf:01:5b:9e:33:f9:44:ce:81:25:1f:c9:c9:cb:53:d3:
0d:ba:d1:ec:71:fe:be:88:38:a6:3e:9f:b2:91:42:28:26:0d:
73:2d:81:cb:d4:85:42:35:6c:3a:aa:91:fb:78:66:7c:5c:c3:
5b:3f:e9:82:9c:de:b6:13:fa:29:cb:f0:95:58:9e:84:7c:d9:
3a:79:ae:ea:65:4f:b8:12:ce:a3:f9:4c:48:f0:42:6e:6f:5d:
97:47:97:88:7d:7f:ce:5c:a6:34:70:52:85:48:cd:27:e4:60:
b2:69:d9:0d:5d:ca:9b:14:ae:9a:3b:ca:af:c4:75:35:fd:98:
77:b8:ac:7b:13:ba:49:4c:40:30:d8:4d:30:46:bb:37:1f:8c:
bb:f4:53:1d:02:0e:11:42:64:14:d4:6c:aa:f7:18:74:4d:5f:
97:5c:f5:a0:86:16:c0:e7:89:c3:7e:c8:6a:eb:5f:55:e8:c5:
63:46:35:6a:fa:0b:1f:34:23:79:16:2b:55:ed:18:03:13:57:
33:40:42:e6:6f:ad:28:2f:9a:c6:b5:ab:30:d3:7d:42:44:52:
a7:be:fb:ea:07:bc:c2:26:7f:38:a8:bf:6a:32:d4:8a:30:cc:
3f:4c:c0:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:48 2024 by rpki-client on console-fra.rpki-client.org