Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/SozV1u3-Xp0axAPOODgOqR2WSQQ.roa
File: SozV1u3-Xp0axAPOODgOqR2WSQQ.roa (raw, json)
Hash identifier: 83gG0kRwlYtSfyMxWGkN3CfP46l4aWDZiVlQ+xdq0VI=
Subject key identifier: 4A:8C:D5:D6:ED:FE:5E:9D:1A:C4:03:CE:38:38:0E:A9:1D:96:49:04
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018D174414A7815ADEDD1552BAD00D2F36C6
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/SozV1u3-Xp0axAPOODgOqR2WSQQ.roa
Signing time: Wed 17 Jan 2024 11:52:34 +0000
ROA not before: Wed 17 Jan 2024 11:52:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208485
IP address blocks: 185.143.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 14:55:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:44:14:a7:81:5a:de:dd:15:52:ba:d0:0d:2f:36:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 17 11:52:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4a8cd5d6edfe5e9d1ac403ce38380ea91d964904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f6:e2:f5:76:83:89:10:37:44:14:57:54:62:
14:e2:42:ad:57:26:ec:76:16:d4:76:10:c2:76:5b:
71:8a:94:1a:39:28:00:e7:65:e5:24:5c:42:1d:34:
5f:77:eb:34:89:56:23:bc:24:57:6b:b7:8a:37:8d:
b2:8e:c2:f5:11:03:79:78:14:3b:93:c4:f8:65:81:
b3:3c:e0:99:f7:81:66:fc:f2:4c:b1:53:ff:d7:5d:
6d:9b:64:6d:e7:b6:88:4f:a7:9d:96:33:71:88:c3:
ee:4b:ce:a7:e3:de:51:5b:02:81:3b:d3:cc:91:9b:
a8:a7:c4:5e:15:27:57:58:a1:7a:8f:95:a4:eb:85:
81:26:bd:af:1a:03:e8:de:6a:38:3d:70:00:ad:f7:
95:40:3c:53:1a:56:94:9a:99:4a:3d:ca:26:27:8c:
8b:e8:4e:45:88:ca:29:6b:58:81:15:db:e9:6c:f5:
78:94:37:5e:01:8b:9f:83:60:e7:38:85:fc:12:cb:
3f:18:d1:07:40:f7:86:60:74:40:c7:20:78:9f:fe:
d1:6b:65:c1:c2:40:85:8a:f1:7c:b2:9f:88:e4:b7:
ab:be:57:b8:0a:4b:40:73:3e:91:d7:2e:fd:f4:7e:
83:ec:eb:39:0f:3f:ab:87:8b:67:69:1d:f9:a7:90:
de:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:8C:D5:D6:ED:FE:5E:9D:1A:C4:03:CE:38:38:0E:A9:1D:96:49:04
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/SozV1u3-Xp0axAPOODgOqR2WSQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.56.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:f3:5f:35:3f:c4:50:e4:9a:22:28:ca:8a:0a:b4:6a:0b:e5:
a8:fe:d5:de:fe:1d:cd:60:05:a7:82:b9:0c:c5:ad:f3:68:9f:
11:8b:20:0f:2b:bc:be:8c:7f:5f:9f:e4:d1:17:b4:96:42:e9:
94:08:e7:36:d5:4d:e1:63:2a:2f:cd:84:33:2b:ae:78:c2:25:
74:af:5a:34:be:14:8b:9e:4e:70:e1:08:be:33:7e:2a:11:3b:
45:27:5a:29:8c:17:92:ea:fe:07:cd:f7:f4:54:32:f0:29:20:
ba:46:1c:89:e1:f4:5c:82:2a:04:99:64:ed:d9:af:d2:70:78:
34:2c:2e:2d:47:1e:d2:35:30:02:4b:8d:5a:40:6b:a4:b6:7a:
fe:6c:93:83:b8:49:8f:4e:23:32:99:97:e4:ee:32:9e:d2:63:
ae:7e:04:b8:1e:45:80:f6:05:39:33:07:1c:94:9f:09:db:9e:
1e:e6:80:63:1b:9f:9f:36:f1:9b:fa:9b:e0:54:de:70:0f:c7:
dd:09:b8:52:2c:28:34:c6:8e:69:ec:24:8d:f8:0d:6a:98:2f:
e8:4a:e8:e0:e2:e0:5f:ad:f4:b7:25:e4:cc:d2:03:a7:56:2a:
11:9a:11:c7:1a:10:9d:5c:a4:b4:f2:4c:19:d1:39:0e:7d:ad:
a2:8d:c4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:42 2024 by rpki-client on console-fra.rpki-client.org