Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/itAObcjeO09KheJmT8xPCOG3oiY.roa
File: itAObcjeO09KheJmT8xPCOG3oiY.roa (raw, json)
Hash identifier: S4utYUhlQIED5kpksvxbJh4L7BTP9qmNjI4pY6CYnX4=
Subject key identifier: 8A:D0:0E:6D:C8:DE:3B:4F:4A:85:E2:66:4F:CC:4F:08:E1:B7:A2:26
Certificate issuer: /CN=4020f4d4c7528d8a827ec724918fe2df534bd905
Certificate serial: 018FF0E7B3B6DE96D093A7678FB1389F81D4
Authority key identifier: 40:20:F4:D4:C7:52:8D:8A:82:7E:C7:24:91:8F:E2:DF:53:4B:D9:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QCD01MdSjYqCfsckkY_i31NL2QU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/itAObcjeO09KheJmT8xPCOG3oiY.roa
Signing time: Fri 07 Jun 2024 04:14:27 +0000
ROA not before: Fri 07 Jun 2024 04:14:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.115.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jun 2024 14:56:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f0:e7:b3:b6:de:96:d0:93:a7:67:8f:b1:38:9f:81:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4020f4d4c7528d8a827ec724918fe2df534bd905
Validity
Not Before: Jun 7 04:14:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8ad00e6dc8de3b4f4a85e2664fcc4f08e1b7a226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f8:c0:e5:ed:6c:cb:47:6d:03:69:9d:b5:d5:
5e:61:5f:af:af:a4:1c:3c:87:0c:83:f7:ac:f9:f6:
37:07:28:6e:42:d3:da:a4:d4:5c:57:6f:e7:df:d7:
64:b7:d0:ef:8e:05:50:c7:d1:02:4d:b5:3f:c3:6f:
6c:5e:78:5b:95:bc:d8:d8:9d:67:10:75:ef:50:aa:
ea:82:2f:80:ec:0e:43:33:aa:01:51:99:5f:c2:b3:
a4:b9:65:99:8e:ad:33:9c:83:c8:89:55:47:97:c2:
b1:12:9e:03:3d:55:f0:95:5f:42:8f:a5:dc:9d:c2:
79:9d:87:f5:15:d2:ee:9d:40:c3:5a:a0:42:a6:d2:
ed:b8:b4:82:a4:aa:68:2a:c5:1a:65:31:41:5f:77:
a7:67:bb:b1:c7:ac:e4:dc:5a:ae:7b:2d:02:53:ba:
47:e8:11:fd:a2:6e:7b:d2:73:96:75:17:b5:4f:5f:
f8:20:82:00:f3:79:a2:fe:02:58:1c:eb:c9:09:43:
81:00:56:84:30:8c:59:15:67:92:72:9a:aa:c5:89:
25:40:00:1b:1a:df:53:4e:97:97:e4:2e:51:2f:a9:
96:39:52:46:ef:0a:bf:13:f9:eb:81:56:ef:37:72:
e9:b9:91:68:2e:e1:b4:83:93:d0:65:62:fb:b0:35:
c8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D0:0E:6D:C8:DE:3B:4F:4A:85:E2:66:4F:CC:4F:08:E1:B7:A2:26
X509v3 Authority Key Identifier:
keyid:40:20:F4:D4:C7:52:8D:8A:82:7E:C7:24:91:8F:E2:DF:53:4B:D9:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QCD01MdSjYqCfsckkY_i31NL2QU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/itAObcjeO09KheJmT8xPCOG3oiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2f7a6e-e8c1-4f62-95f9-64bfb79900d6/1/QCD01MdSjYqCfsckkY_i31NL2QU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.160.0/24
Signature Algorithm: sha256WithRSAEncryption
69:19:8f:4c:ed:6d:74:44:10:f0:3b:82:b0:b3:0f:e7:29:9b:
7b:6d:e0:47:5d:42:a9:a0:cb:f3:3b:5e:0f:13:2b:10:a9:4c:
e2:65:da:9f:64:96:85:ad:7a:d1:64:7a:14:0f:98:a3:e1:a3:
0d:3b:4f:0c:39:e3:08:bd:f0:be:75:3a:1c:7c:f3:a5:07:68:
c3:46:9c:ce:49:83:67:f3:8c:bf:5d:99:35:67:fd:98:44:9f:
84:76:b1:37:75:96:59:39:52:c9:4b:b7:c4:03:dc:b2:37:00:
a2:2b:c2:9d:3c:c5:7a:1d:f8:08:94:bb:78:f0:33:84:b5:b2:
d1:bc:f1:c0:28:cd:b0:bb:61:9b:7f:ca:25:d3:df:d2:48:db:
8c:68:8f:4e:5a:e9:d9:9d:ff:da:2a:9c:26:1d:1c:1a:b4:37:
f0:c7:30:36:39:00:6f:ed:c1:e7:2a:e9:38:f7:5c:ec:c7:ba:
55:64:e2:4e:9a:a7:11:bc:1a:58:d8:d6:b3:1b:b9:ea:96:a3:
c2:a3:32:eb:db:85:95:48:ea:a3:b7:4a:df:af:77:95:af:9a:
ce:a3:49:7f:4e:2e:4b:d6:6a:b8:15:78:38:3e:04:24:6b:8e:
37:60:d5:03:ca:90:b8:ee:cc:41:43:87:d5:6f:e5:14:4d:6a:
be:54:69:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 8 20:27:39 2024 by rpki-client on console-ams.rpki-client.org