Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/rVbFoPOzmEvUQMLcYsKzCT5aHpg.roa
File: rVbFoPOzmEvUQMLcYsKzCT5aHpg.roa (raw, json)
Hash identifier: RkJM172FKw5ExkuPu30PXjphRER41B3qc1YQTlAe8Y0=
Subject key identifier: AD:56:C5:A0:F3:B3:98:4B:D4:40:C2:DC:62:C2:B3:09:3E:5A:1E:98
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 018AE0D4D8064E55B60D6F4E9203853225C2
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/rVbFoPOzmEvUQMLcYsKzCT5aHpg.roa
Signing time: Fri 29 Sep 2023 12:05:59 +0000
ROA not before: Fri 29 Sep 2023 12:05:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.143.56.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 30 Sep 2023 19:16:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:e0:d4:d8:06:4e:55:b6:0d:6f:4e:92:03:85:32:25:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Sep 29 12:05:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad56c5a0f3b3984bd440c2dc62c2b3093e5a1e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2e:9e:ab:d6:a4:3f:2f:39:a2:2d:9a:ae:08:
41:8a:33:2c:28:7b:30:e7:5d:16:77:23:9e:d1:3a:
37:49:d5:42:9d:c6:cb:a2:d8:45:d6:28:98:2f:24:
5d:08:28:3b:2e:c7:6e:70:92:21:1b:4e:23:e5:48:
a5:54:4d:c5:c7:66:51:93:aa:94:50:45:75:c2:bb:
10:e6:32:0b:c5:e4:40:57:a7:bd:d6:ef:58:7d:74:
6a:6a:88:69:af:55:12:f5:68:0f:05:f1:1b:94:e3:
ce:4c:a4:d5:e9:16:11:ed:18:d3:2f:16:1c:de:a1:
a0:6f:25:7f:c3:97:f2:8b:13:3c:e0:a6:ee:c1:6d:
09:92:b1:60:16:ef:04:9d:ff:8c:33:f1:47:4a:df:
5c:80:56:1b:82:39:3a:e8:1c:e9:68:41:0a:87:20:
b7:ad:13:b0:f4:ab:5c:93:be:fe:37:00:7e:d5:ba:
76:54:8a:16:8d:6a:23:d9:43:2d:27:a8:8e:7e:48:
2d:5f:f5:2e:16:9a:ce:02:5a:7f:f3:2b:a5:c8:a6:
dd:7f:ac:7f:00:23:b8:a5:4e:07:88:d7:a0:7f:af:
fb:84:a0:ef:d9:29:85:74:89:f7:69:21:58:31:1c:
e0:15:e5:ee:f5:f4:e9:8e:92:18:33:79:7f:ba:f7:
ce:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:56:C5:A0:F3:B3:98:4B:D4:40:C2:DC:62:C2:B3:09:3E:5A:1E:98
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/rVbFoPOzmEvUQMLcYsKzCT5aHpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.56.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:dd:33:b9:48:4e:70:98:3c:7c:92:3b:92:f3:75:fb:13:46:
72:f7:78:b6:13:6e:c8:e2:45:d9:f5:f1:09:cd:08:68:ba:24:
ea:93:60:c1:24:1d:6a:53:b0:8d:29:26:73:d6:c8:1f:7d:0b:
93:e4:4b:01:29:7c:28:c3:33:06:f9:23:8b:b4:bb:89:10:4e:
51:d7:93:d7:00:7d:ef:da:94:70:e0:d2:86:3c:ed:ac:ca:c0:
36:ce:61:25:ad:37:fe:4f:a4:56:e9:4e:0e:46:66:90:9f:37:
a3:66:77:11:66:19:c2:0d:4c:91:e6:ac:7d:18:3f:9d:3b:2f:
39:8a:bb:41:34:1a:54:d2:7f:f8:24:f1:6a:1d:c5:72:8e:dc:
86:51:f7:b5:29:cd:f0:87:ee:b8:24:1c:c0:8a:54:1e:a1:f7:
9b:aa:94:b6:d5:d6:ac:56:2f:ce:42:c5:bb:43:37:a2:02:8f:
e7:9f:79:43:7d:f5:ed:a1:9a:8b:4c:58:0e:f0:61:58:02:3b:
f4:77:41:de:a4:ae:18:42:55:bc:d5:b5:6d:3b:ac:a6:1c:2f:
fc:40:b2:57:db:16:7b:c2:36:e8:f1:ff:bb:e4:44:04:84:22:
b2:bb:93:21:86:45:83:37:5f:8d:06:b9:72:4b:58:5f:66:df:
28:3a:5e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:43 2024 by rpki-client on console-fra.rpki-client.org