Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/7kZ7t_k0SXyhYvI1ONzHsW_juDk.roa
File: 7kZ7t_k0SXyhYvI1ONzHsW_juDk.roa (raw, json)
Hash identifier: y1Q1832xEHn2x8xUk2kOEqTWWsB64jeWz3WC7I01JoE=
Subject key identifier: EE:46:7B:B7:F9:34:49:7C:A1:62:F2:35:38:DC:C7:B1:6F:E3:B8:39
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018DE517A4DA41C51B725A0EA49B32348A4A
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/7kZ7t_k0SXyhYvI1ONzHsW_juDk.roa
Signing time: Mon 26 Feb 2024 11:05:48 +0000
ROA not before: Mon 26 Feb 2024 11:05:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 185.148.243.0/24 maxlen: 24
185.174.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 17:16:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e5:17:a4:da:41:c5:1b:72:5a:0e:a4:9b:32:34:8a:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Feb 26 11:05:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee467bb7f934497ca162f23538dcc7b16fe3b839
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:61:c3:18:58:5e:26:81:8b:a0:6d:37:e1:24:
aa:7b:66:c4:90:97:8e:c3:ec:7b:77:64:d7:48:5b:
fa:81:5f:ee:c9:3a:94:76:0c:69:3b:fe:74:cf:f6:
1f:50:43:49:66:97:f5:56:18:cf:80:90:dd:89:45:
ca:14:5c:81:6c:54:4d:7d:ce:9a:89:16:7d:4a:94:
69:fd:a8:28:b4:89:b3:86:4f:f5:a3:4d:e0:b0:0d:
78:c4:df:0c:8a:da:25:1c:3c:5f:18:50:e7:65:a7:
b4:5e:b7:4d:5b:5b:b7:fe:97:90:f3:5a:60:58:97:
44:31:a7:89:ae:3e:54:28:2d:89:de:6d:50:2f:a3:
8f:82:5b:99:ce:47:69:bb:71:6b:05:5c:62:f0:08:
18:d8:6b:9a:f8:49:15:fc:ee:9f:3c:aa:61:9d:83:
86:e6:64:84:32:ee:e4:71:7b:d2:82:df:fe:6d:f9:
08:d5:d7:90:c1:98:c1:cf:ed:d8:07:24:bb:9d:d5:
66:71:a9:ad:72:69:2f:35:82:a1:9f:1a:84:bf:5e:
dd:95:bd:3f:d0:b7:e1:e7:15:75:ff:47:8d:2b:a5:
16:32:33:a6:30:21:06:db:15:0d:bf:e6:7a:78:2d:
72:09:8f:b6:b3:30:6c:ab:1f:8a:c8:dd:2a:fc:d7:
43:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:46:7B:B7:F9:34:49:7C:A1:62:F2:35:38:DC:C7:B1:6F:E3:B8:39
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/7kZ7t_k0SXyhYvI1ONzHsW_juDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.243.0/24
185.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:6b:cc:97:89:ee:2a:46:d3:00:d8:84:84:83:7e:21:ff:bc:
75:5c:a4:8c:c0:c8:46:96:75:c2:c5:23:04:3f:96:1f:c3:d3:
05:66:4c:7e:aa:c5:52:d2:8c:a9:98:61:f9:d0:17:93:39:b6:
bf:c4:4a:ae:83:18:5b:0f:16:c3:00:62:26:6a:d0:17:bd:e2:
d9:c8:96:02:6c:70:fc:ff:82:ab:de:f8:62:67:11:bd:54:e4:
58:5d:b5:fe:18:c2:d4:0a:10:14:02:1b:47:51:a1:77:a8:0a:
df:a2:a2:79:8a:f8:78:ea:d4:6d:97:9f:9f:3a:de:1a:4b:d9:
65:a7:f8:61:6b:5e:23:c1:0f:94:b1:72:7c:3c:e1:b7:38:f3:
e3:27:7e:13:b1:10:e1:cf:bd:1c:ac:ed:44:a9:f0:e3:c5:0e:
70:50:58:f5:df:5f:c7:58:db:3a:51:28:df:6d:39:70:68:b7:
dd:65:38:9b:d4:7b:93:c4:82:33:09:16:64:a3:f4:8d:da:7c:
11:fa:9b:6a:78:22:09:1b:06:ac:27:c2:35:99:ea:be:da:30:
88:21:c4:3a:1f:49:a9:b5:12:ee:33:ad:75:02:3a:bf:1b:85:
61:be:62:7e:0f:5f:99:6c:92:8c:f8:a2:d7:1b:af:cb:a6:dc:
07:17:56:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 4 19:43:29 2024 by rpki-client on console-fra.rpki-client.org