Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/eCH-gpYJ7VnKgx8E_9vGoncz8S8.roa
File: eCH-gpYJ7VnKgx8E_9vGoncz8S8.roa (raw, json)
Hash identifier: BalWFFsH7xraoTcjoWI11p04ZftmgYNdXefNtEjZsHs=
Subject key identifier: 78:21:FE:82:96:09:ED:59:CA:83:1F:04:FF:DB:C6:A2:77:33:F1:2F
Certificate issuer: /CN=8b9b0163eee9e792aaa16b7d5105d347211f3123
Certificate serial: 01856DC1EA9B3F28A5298CD9DB9A247E4805
Authority key identifier: 8B:9B:01:63:EE:E9:E7:92:AA:A1:6B:7D:51:05:D3:47:21:1F:31:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i5sBY-7p55KqoWt9UQXTRyEfMSM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/eCH-gpYJ7VnKgx8E_9vGoncz8S8.roa
Signing time: Sun 01 Jan 2023 14:35:03 +0000
ROA not before: Sun 01 Jan 2023 14:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44592
IP address blocks: 185.237.179.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:ea:9b:3f:28:a5:29:8c:d9:db:9a:24:7e:48:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b9b0163eee9e792aaa16b7d5105d347211f3123
Validity
Not Before: Jan 1 14:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7821fe829609ed59ca831f04ffdbc6a27733f12f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:aa:ae:c4:a8:87:89:28:63:53:e8:08:3d:bb:
f2:5c:b6:3e:da:66:ee:e4:a8:5a:45:3d:7c:51:24:
41:86:94:ff:9e:1a:8e:11:b7:68:b7:05:b8:25:28:
58:19:db:d7:94:0e:b0:9e:ee:4d:8c:61:9c:1c:35:
d4:7b:3b:bf:ff:d0:07:31:25:d2:4e:4a:8e:72:1c:
b5:ab:db:7f:31:ea:fc:eb:e8:b3:46:06:e5:1d:25:
42:ce:4e:57:29:89:5f:92:24:cf:96:8e:2a:00:af:
00:3c:cc:84:9d:74:78:91:96:73:b6:e1:ff:db:64:
c1:ea:9b:e8:63:7f:71:1f:fe:71:8b:1a:6a:f0:f3:
25:b2:ae:2b:01:85:6f:c5:ca:11:43:7d:a5:4c:8d:
cc:f8:4a:b1:e5:cd:35:37:2d:f5:da:f5:fe:5b:1e:
60:2a:bc:fe:74:9d:d9:dd:ec:98:40:00:9d:d9:1d:
cf:e4:a4:6d:c6:74:21:64:50:15:b2:64:b6:6c:2d:
cc:ad:71:2c:bb:f2:b8:2e:3f:88:58:46:05:cd:9d:
ad:31:0c:85:8c:0d:00:29:25:3a:d0:14:89:34:d1:
a9:c9:74:11:38:d2:28:99:7b:f1:59:c8:d5:f5:f8:
78:1e:43:73:d6:23:6e:29:8a:40:da:59:7d:89:90:
fb:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:21:FE:82:96:09:ED:59:CA:83:1F:04:FF:DB:C6:A2:77:33:F1:2F
X509v3 Authority Key Identifier:
keyid:8B:9B:01:63:EE:E9:E7:92:AA:A1:6B:7D:51:05:D3:47:21:1F:31:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i5sBY-7p55KqoWt9UQXTRyEfMSM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/eCH-gpYJ7VnKgx8E_9vGoncz8S8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2b800e-6953-4009-b195-41b26607bf36/1/i5sBY-7p55KqoWt9UQXTRyEfMSM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.237.179.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:44:b3:bd:79:c3:9f:0c:a7:70:de:ff:ab:f6:16:c1:72:5d:
86:c4:fa:76:68:6a:31:28:4b:3b:99:fb:0a:d1:d6:d3:51:8a:
cc:e7:34:ef:71:45:3b:30:21:d2:ed:4e:62:0f:93:a8:ed:74:
1b:5d:18:12:33:8f:63:af:f8:12:8d:8c:df:c7:06:02:15:00:
3d:a1:0a:8a:bc:c2:12:21:1d:21:d4:2f:2e:fa:1d:7c:3d:15:
2a:10:cc:78:d7:44:1b:6d:a0:dc:dd:f8:90:5f:7a:c7:90:4a:
95:53:7e:fb:67:3b:af:cc:42:42:6a:81:b0:c5:ef:85:29:cc:
0e:2b:a7:35:be:46:2b:19:b9:bc:7d:d2:db:55:93:dd:6a:dd:
a7:f4:a3:06:bc:d4:c4:be:90:07:07:2f:29:c2:81:df:7c:3f:
ff:43:fb:18:4d:7f:10:de:a8:52:e8:18:aa:29:67:5b:21:7e:
55:04:f2:a3:fa:f5:fc:19:11:1d:c6:7e:15:95:79:f6:d9:3d:
14:35:00:7b:36:d4:4f:1f:3c:5f:4c:b7:7d:41:84:80:a1:67:
1e:21:e8:9a:10:f7:50:43:fd:6a:cd:16:ae:c4:03:1c:8c:b9:
e9:1f:20:a6:03:83:80:c7:53:5b:03:0e:94:95:85:d1:bb:55:
2d:c6:a0:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:28 2024 by rpki-client on console-ams.rpki-client.org