Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/tH43tleWJCzvVV1QZmEGHmN-uUM.roa
File: tH43tleWJCzvVV1QZmEGHmN-uUM.roa (raw, json)
Hash identifier: r0vblOxY0vGfuU83N6m8spR309xi2yoZBthmWp+s0YQ=
Subject key identifier: B4:7E:37:B6:57:96:24:2C:EF:55:5D:50:66:61:06:1E:63:7E:B9:43
Certificate issuer: /CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Certificate serial: 0185719E76725A21FC480C9527AF3D0D5E1F
Authority key identifier: A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/tH43tleWJCzvVV1QZmEGHmN-uUM.roa
Signing time: Mon 02 Jan 2023 08:34:48 +0000
ROA not before: Mon 02 Jan 2023 08:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199475
IP address blocks: 185.15.0.0/22 maxlen: 22
185.189.136.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:76:72:5a:21:fc:48:0c:95:27:af:3d:0d:5e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e6e823f6dda67d283a9f41a72909906ac9a837
Validity
Not Before: Jan 2 08:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b47e37b65796242cef555d506661061e637eb943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:6a:33:d2:9e:82:29:89:b8:13:64:75:20:b4:
b5:f8:07:29:4a:86:15:71:75:35:83:92:e4:0c:05:
64:52:20:f5:4a:53:df:79:d9:9d:2f:a1:4b:df:0f:
fb:08:90:10:1e:70:68:4d:1c:56:a1:31:fa:cf:a2:
cf:98:56:cc:36:fc:e6:53:44:6f:54:c0:41:00:4d:
53:04:b7:84:d3:f1:42:04:8c:18:57:49:7c:1d:4c:
c0:36:b4:e1:b9:42:b9:4c:74:cd:d6:6e:3a:ce:ef:
12:c2:33:fd:c0:a8:fc:a4:d5:e3:31:4a:8c:9f:dd:
ab:bd:8a:15:48:47:2f:b3:c2:e6:64:fb:a6:0e:1b:
0d:6c:2f:41:64:79:dc:a7:c1:0e:38:53:0c:de:5f:
56:a9:7d:7e:c2:24:3b:53:3d:89:30:a5:fb:02:fb:
be:18:ad:60:84:2a:33:64:2e:c7:97:8a:8d:2e:42:
9e:fd:1e:c3:35:c3:3b:e4:14:46:40:ad:c5:46:10:
07:e5:c8:38:ca:81:b1:12:5d:cb:a7:b9:79:7d:57:
a8:aa:ef:38:c9:38:c3:91:f1:5d:ff:e9:ad:65:19:
17:14:83:d0:bc:b4:cf:8e:46:4e:3c:01:3d:d2:34:
92:20:c7:46:b0:ba:06:ee:0f:3d:de:2d:a1:d9:55:
9d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7E:37:B6:57:96:24:2C:EF:55:5D:50:66:61:06:1E:63:7E:B9:43
X509v3 Authority Key Identifier:
keyid:A3:E6:E8:23:F6:DD:A6:7D:28:3A:9F:41:A7:29:09:90:6A:C9:A8:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-boI_bdpn0oOp9BpykJkGrJqDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/tH43tleWJCzvVV1QZmEGHmN-uUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/18a1bc-967c-4931-85b5-00f00af1c8d7/1/o-boI_bdpn0oOp9BpykJkGrJqDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.0.0/22
185.189.136.0/22
Signature Algorithm: sha256WithRSAEncryption
97:2b:c8:25:01:89:eb:40:79:b3:8d:1a:33:ee:30:df:26:bc:
a2:14:6b:3a:45:d9:36:f5:ab:93:aa:30:6b:7d:b1:25:fe:d4:
13:1a:07:16:5a:5a:44:18:a6:97:75:0f:a9:92:1d:9f:9b:d5:
81:48:86:36:b9:ce:da:40:6f:4f:1a:fe:34:f8:ce:da:d7:aa:
6b:75:16:6c:4e:9f:6d:26:bf:3e:57:f7:cd:3a:7b:c2:77:e4:
23:02:be:2a:a2:31:6c:bc:a6:76:3d:51:db:90:87:60:0c:72:
05:aa:bd:9a:d3:80:a2:4f:3d:e7:7f:03:2d:ca:26:54:d3:ce:
de:0d:22:b6:f2:10:0f:bb:81:1c:25:ce:87:66:b2:b9:5a:5c:
33:6f:85:d2:02:f5:b4:63:23:a7:aa:54:3a:b2:51:6c:b8:1e:
39:76:59:46:e5:83:40:af:e4:1c:09:73:06:40:ab:1c:36:f9:
4f:70:0c:96:56:85:22:79:23:46:0d:25:7c:d4:ad:c3:1a:68:
1f:d8:f2:e5:13:51:a5:ca:15:07:c5:0d:0b:e7:5b:ce:d2:a7:
38:75:4d:84:4d:e8:c3:c9:57:7f:a8:f3:fb:03:42:51:e2:b6:
26:0f:96:29:b5:c5:00:d2:21:48:94:ee:98:fe:13:dd:dc:05:
0d:d4:12:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:37 2024 by rpki-client on console-fra.rpki-client.org