Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/esHxxf4ncHwh3_dvLVDxYJbpmW8.roa
File: esHxxf4ncHwh3_dvLVDxYJbpmW8.roa (raw, json)
Hash identifier: DUnJrV4w3eNLKooQtjzyjUq7CSO3+jQTjtpanopbP4M=
Subject key identifier: 7A:C1:F1:C5:FE:27:70:7C:21:DF:F7:6F:2D:50:F1:60:96:E9:99:6F
Certificate issuer: /CN=a0e41fd03d2fddcda58a08fa5fa1091ecea0c0b0
Certificate serial: 018570F086D8C6EA9EC5AF70C7EA54FB4DF9
Authority key identifier: A0:E4:1F:D0:3D:2F:DD:CD:A5:8A:08:FA:5F:A1:09:1E:CE:A0:C0:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOQf0D0v3c2ligj6X6EJHs6gwLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/esHxxf4ncHwh3_dvLVDxYJbpmW8.roa
Signing time: Mon 02 Jan 2023 05:24:49 +0000
ROA not before: Mon 02 Jan 2023 05:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211454
IP address blocks: 185.215.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:86:d8:c6:ea:9e:c5:af:70:c7:ea:54:fb:4d:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e41fd03d2fddcda58a08fa5fa1091ecea0c0b0
Validity
Not Before: Jan 2 05:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ac1f1c5fe27707c21dff76f2d50f16096e9996f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:60:61:28:8d:84:1d:68:07:c4:61:55:c0:aa:
68:04:df:41:de:cd:d1:db:62:cc:70:33:c8:b5:66:
e9:d5:d1:e2:2e:59:6e:b1:49:a1:a7:b0:39:d7:9d:
7c:f4:56:f8:02:6e:d9:60:7a:60:1c:c6:76:8e:39:
72:70:42:92:16:f8:d8:67:11:ab:e8:3d:a7:ed:b4:
3c:82:20:26:57:fa:54:de:93:f8:9b:fe:59:32:f3:
41:d4:4d:88:60:9a:07:6b:8a:47:da:b3:6e:77:9a:
e4:f9:10:af:73:e3:17:ff:0f:d3:05:ca:93:90:65:
f6:5d:67:43:00:82:93:98:58:9a:f5:8c:05:16:e5:
01:d9:06:f1:c5:97:12:61:c3:cb:76:eb:da:76:03:
bf:32:88:fc:cc:51:b6:f1:4f:12:c5:f0:23:e5:d3:
6f:ab:b3:38:ec:c9:d4:46:f0:e0:f4:14:13:e4:06:
da:a6:b1:12:0b:d6:c8:5d:d6:ac:db:b4:29:2f:81:
57:2e:d1:27:e4:f3:8f:0d:4b:29:14:62:2a:d7:52:
88:d6:78:06:e7:3e:98:a1:c5:38:bf:be:6b:da:fe:
63:d5:f7:ad:15:71:c5:4a:81:44:56:66:5c:c2:f2:
26:94:e8:30:c4:d6:be:7e:99:62:34:bc:1e:a6:5a:
f2:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C1:F1:C5:FE:27:70:7C:21:DF:F7:6F:2D:50:F1:60:96:E9:99:6F
X509v3 Authority Key Identifier:
keyid:A0:E4:1F:D0:3D:2F:DD:CD:A5:8A:08:FA:5F:A1:09:1E:CE:A0:C0:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOQf0D0v3c2ligj6X6EJHs6gwLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/esHxxf4ncHwh3_dvLVDxYJbpmW8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f040fd-ebb2-4a6b-ad43-21603f4e809c/1/oOQf0D0v3c2ligj6X6EJHs6gwLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.7.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e0:a6:40:09:16:de:6e:8a:cf:84:b5:f2:31:63:1e:d3:63:
db:3f:55:9b:e1:a4:c8:bd:9e:6f:47:04:8a:9e:94:1c:3a:9f:
dd:39:0c:48:bb:30:1c:7e:40:79:93:58:2e:bc:f7:0f:a8:7f:
2e:7a:18:19:16:d7:58:e9:94:3f:8c:d6:99:9c:56:d6:a2:c2:
e2:66:d3:99:7a:49:23:94:56:cc:df:2b:69:e6:f1:83:2b:27:
b4:82:3b:b9:20:3b:22:47:ce:f3:8c:9c:d6:e9:64:a2:78:bb:
2a:92:08:c8:6b:34:15:80:32:95:db:71:1a:5a:f6:e7:15:d3:
a3:12:f1:b9:eb:9b:8a:6f:a4:8e:0a:0f:37:9d:b6:e7:d8:40:
17:be:50:70:84:4b:91:6d:a5:25:29:f0:b2:b4:c5:7f:c5:ca:
9d:7a:d6:ec:03:b1:be:05:d4:a9:02:23:30:d6:00:f3:91:1d:
0a:fb:90:45:da:3a:8b:6c:22:92:a6:b5:2e:95:67:82:42:36:
86:b6:25:12:9c:e9:4d:34:f5:e9:47:81:51:3e:01:eb:24:10:
d2:6f:7d:51:ac:e3:44:3c:4c:08:a4:31:e2:a6:c9:b1:ec:74:
0f:58:64:74:b6:91:82:92:aa:50:7b:76:6e:98:e2:0b:88:04:
bf:2d:95:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:35 2024 by rpki-client on console-ams.rpki-client.org