Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/7t9e4pwemDan9B6aPrzwUgblrmQ.roa
File: 7t9e4pwemDan9B6aPrzwUgblrmQ.roa (raw, json)
Hash identifier: E4eauaIINgxOBuhihAgtk8UohvLiIG+RIJm4PJfZn6A=
Subject key identifier: EE:DF:5E:E2:9C:1E:98:36:A7:F4:1E:9A:3E:BC:F0:52:06:E5:AE:64
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 018F52BA5EF98911727A54A657B741397618
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/7t9e4pwemDan9B6aPrzwUgblrmQ.roa
Signing time: Tue 07 May 2024 11:04:56 +0000
ROA not before: Tue 07 May 2024 11:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 185.148.243.0/24 maxlen: 24
185.169.182.0/24 maxlen: 24
185.174.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 13:17:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:ba:5e:f9:89:11:72:7a:54:a6:57:b7:41:39:76:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: May 7 11:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eedf5ee29c1e9836a7f41e9a3ebcf05206e5ae64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:68:de:85:13:f4:16:5c:55:05:ec:ea:68:c5:
e9:9f:51:4b:cb:79:ed:c6:10:fc:d6:8e:aa:c0:c0:
44:18:ef:c6:8c:b3:4d:69:62:13:7d:91:08:d0:46:
4e:b1:ff:5d:67:70:b6:35:55:55:12:db:c4:b0:3a:
9e:d5:bc:22:5b:cd:69:50:28:a2:55:e8:57:c7:74:
c5:e3:c2:4d:d4:e6:45:c9:17:74:25:a8:cc:07:3e:
b2:f2:d1:3e:db:6b:f6:44:7a:6a:84:b6:ac:19:ea:
af:e2:88:18:33:c6:20:b0:c3:dc:6b:0e:4e:97:a0:
d2:fd:7e:a5:7a:f4:18:e3:77:9b:a0:0f:b4:11:2a:
fc:f4:d5:40:65:0d:5a:af:31:29:f3:8d:93:b6:58:
a9:82:85:a8:f8:6b:f1:de:09:19:bc:e9:97:3b:e1:
c4:6e:8e:99:38:77:95:38:b8:ff:6a:15:cf:1d:71:
ee:fd:11:4f:d9:eb:06:33:88:9f:bb:66:d9:ae:33:
00:f2:8a:f9:8b:f6:cd:a2:c5:1a:6d:4a:e4:e7:6b:
c7:d0:d3:25:aa:c8:a0:aa:c0:08:1c:31:2d:29:a2:
9f:b9:fe:d6:4a:1f:47:af:83:b3:76:0e:27:35:0d:
ec:d3:bd:b3:90:f3:a8:c5:07:40:66:af:b5:b6:8e:
eb:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DF:5E:E2:9C:1E:98:36:A7:F4:1E:9A:3E:BC:F0:52:06:E5:AE:64
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/7t9e4pwemDan9B6aPrzwUgblrmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.243.0/24
185.169.182.0/24
185.174.20.0/24
Signature Algorithm: sha256WithRSAEncryption
be:43:4c:5f:63:e4:13:1e:7c:ce:f5:70:a0:ae:c0:14:96:bc:
a1:f5:61:04:fc:95:c3:e6:65:2f:e1:17:71:9a:86:12:97:01:
23:bf:bb:3e:8d:fe:86:fa:90:6b:71:8a:b3:39:ca:c2:e4:75:
8d:96:3c:4c:49:be:83:d8:d3:51:d7:7f:f3:14:d1:17:37:00:
a0:9e:27:c2:0b:9f:5d:25:11:f8:ce:77:af:af:7d:52:3d:16:
c3:e5:be:be:9a:ac:e9:47:ca:6b:18:60:c0:17:8b:c6:7b:c9:
d7:8f:13:3a:64:79:8f:33:ac:70:ea:b0:9f:c2:28:af:00:f1:
98:96:b1:f0:15:2f:3c:da:6e:35:7b:31:83:62:53:42:f8:f3:
b2:37:50:4b:34:60:b2:bb:fc:2c:bd:d9:54:42:77:12:8c:e2:
b6:3a:e5:a0:7b:f2:d7:4a:76:d5:dd:df:46:0b:6e:f7:ce:06:
4c:36:74:3c:18:74:34:07:cb:7e:2c:9f:cb:20:34:e5:b8:bd:
c9:ad:07:f6:27:b9:06:8a:97:ba:46:03:36:38:75:c9:2c:5c:
6b:b8:37:fb:9e:3b:4d:24:ab:8c:c6:88:47:1c:09:e2:b6:67:
24:39:64:d4:e8:d1:14:0c:fe:29:95:d9:c1:90:8b:17:d4:b4:
f3:98:ef:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org