Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/1hTOliOTNzh_B5AcalSV2oakKd0.roa
File: 1hTOliOTNzh_B5AcalSV2oakKd0.roa (raw, json)
Hash identifier: eRdk6fxHl5o+NCz64/bZjG+V8qu0Vsr1Qrbl3e3nMEc=
Subject key identifier: D6:14:CE:96:23:93:37:38:7F:07:90:1C:6A:54:95:DA:86:A4:29:DD
Certificate issuer: /CN=e1477072b91af5c3f3bfe69743243e7cda3ae879
Certificate serial: 01907E96ECFCC54726641AB006F4CA9532BA
Authority key identifier: E1:47:70:72:B9:1A:F5:C3:F3:BF:E6:97:43:24:3E:7C:DA:3A:E8:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Udwcrka9cPzv-aXQyQ-fNo66Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/1hTOliOTNzh_B5AcalSV2oakKd0.roa
Signing time: Thu 04 Jul 2024 16:32:18 +0000
ROA not before: Thu 04 Jul 2024 16:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 185.145.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 18:28:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:7e:96:ec:fc:c5:47:26:64:1a:b0:06:f4:ca:95:32:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1477072b91af5c3f3bfe69743243e7cda3ae879
Validity
Not Before: Jul 4 16:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d614ce96239337387f07901c6a5495da86a429dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:77:4d:5a:59:e1:24:7c:93:03:22:c8:ef:5b:
b2:f5:54:8c:c3:d2:95:f1:4e:06:56:48:d9:e2:7e:
c0:f1:95:c3:bb:1e:7d:0c:7d:25:87:9c:0d:4e:55:
f7:e4:e3:5a:f4:af:4b:59:5b:da:3f:1f:fc:3a:e1:
65:b6:b6:1f:47:8a:72:a1:15:02:10:44:2b:49:fd:
e0:a6:a4:6a:14:51:9a:b8:34:8a:03:12:c7:7d:50:
d8:ed:87:b5:00:f8:4e:3a:80:00:25:84:03:41:f4:
19:f5:e4:9a:39:6d:c5:dd:8e:0c:50:c2:40:c6:09:
7c:82:f1:b6:e8:59:bc:ad:29:9f:06:21:9a:1b:21:
a0:e1:ca:b4:8d:a0:90:24:1e:49:5a:b7:74:1b:2c:
b3:32:19:ab:68:ee:bf:59:6a:c9:f1:a3:7e:05:61:
c2:40:de:c5:d1:70:fc:42:b6:a6:a0:cd:fb:84:35:
ae:63:cf:49:b8:9c:9a:d5:fb:8d:23:e9:21:ef:3e:
95:12:0c:cc:63:e4:14:c4:31:dd:f0:ea:09:2c:77:
4b:92:d6:31:1e:1b:6d:f0:48:03:c4:8b:e7:b4:b7:
23:0a:3b:cf:7e:f3:8f:85:cc:f9:20:3d:8d:3b:a8:
13:39:22:43:c8:98:0a:6d:0e:7b:3b:3d:ac:98:9a:
ca:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:14:CE:96:23:93:37:38:7F:07:90:1C:6A:54:95:DA:86:A4:29:DD
X509v3 Authority Key Identifier:
keyid:E1:47:70:72:B9:1A:F5:C3:F3:BF:E6:97:43:24:3E:7C:DA:3A:E8:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Udwcrka9cPzv-aXQyQ-fNo66Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/1hTOliOTNzh_B5AcalSV2oakKd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/4Udwcrka9cPzv-aXQyQ-fNo66Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.235.0/24
Signature Algorithm: sha256WithRSAEncryption
89:44:2e:e9:68:03:07:84:ea:db:db:02:53:8d:90:58:06:b3:
94:ed:a7:5c:e7:5a:0f:41:69:c9:ed:01:87:f6:cc:42:cc:4e:
8a:d3:1a:2a:9d:58:e5:6c:b8:27:b9:88:8b:ca:df:95:3c:5e:
f4:cc:ed:80:c0:20:a3:f1:e8:33:d6:44:02:b0:db:48:57:8f:
46:1a:e5:65:8e:87:47:d9:89:20:f3:73:b6:d7:3b:8e:7c:57:
7c:bc:5c:69:ce:5c:98:eb:87:37:cd:db:7e:d1:db:98:00:be:
bb:d2:9f:33:13:8e:83:dc:17:93:ea:5d:b8:af:e5:0a:d2:6b:
09:73:ef:3b:b6:23:e7:ae:96:90:38:48:0a:e6:fb:34:f1:34:
84:86:c8:35:d1:61:c9:53:0f:4e:e0:6b:05:39:f6:f1:8e:d6:
1f:b8:e0:9e:d0:f0:3a:7b:f1:22:ae:f5:d8:87:81:c5:53:7c:
9c:e1:96:88:3d:bd:21:b3:f0:d9:be:46:b5:62:09:f1:7b:4c:
7f:24:88:eb:d4:1e:00:0f:27:f7:47:6c:47:60:f6:1d:62:67:
cd:d0:32:78:ac:04:96:a0:72:57:ff:aa:77:2b:09:96:f4:e7:
79:71:86:79:71:70:85:fa:4e:a5:b0:84:f8:4a:b9:f0:72:c5:
17:6f:66:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 19:31:06 2024 by rpki-client on console-fra.rpki-client.org