Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/2JjLJSXfIi9a1ER6DLF07eLucUE.roa
File: 2JjLJSXfIi9a1ER6DLF07eLucUE.roa (raw, json)
Hash identifier: s0gdPXDSY+uacvk3O6LsmBmAkoDjUqd5dC9ScONaaSw=
Subject key identifier: D8:98:CB:25:25:DF:22:2F:5A:D4:44:7A:0C:B1:74:ED:E2:EE:71:41
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018DBDDA12716D1FE38BB9949AB0204F7FC2
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/2JjLJSXfIi9a1ER6DLF07eLucUE.roa
Signing time: Sun 18 Feb 2024 20:13:21 +0000
ROA not before: Sun 18 Feb 2024 20:13:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 185.227.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 12:23:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:bd:da:12:71:6d:1f:e3:8b:b9:94:9a:b0:20:4f:7f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Feb 18 20:13:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d898cb2525df222f5ad4447a0cb174ede2ee7141
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cc:c0:1f:26:97:d5:6a:30:c0:68:f8:82:56:
5c:67:13:82:64:21:4e:5c:5a:27:1a:3b:c2:3a:81:
cc:e0:df:d2:5c:08:a9:ff:ed:2c:03:75:89:bf:f1:
a0:fd:39:78:97:1c:f8:e5:bb:2d:61:a1:81:ac:47:
c4:ce:24:7b:f5:6c:a1:d2:ab:9b:de:6c:82:94:99:
40:14:68:4b:c1:15:1c:8e:1d:3d:f0:68:7d:4b:80:
8f:5f:88:d1:8e:90:43:59:56:3e:be:ca:00:c8:3c:
26:27:3a:b9:28:95:c7:f6:ff:1e:e7:fc:07:de:08:
77:9e:27:91:64:bb:9f:d0:50:ad:3f:d4:81:40:21:
9e:14:40:7b:15:9c:9e:a8:50:48:a2:e2:28:74:63:
57:7e:56:3b:6d:e0:d8:25:53:a0:6a:ac:6a:0c:f8:
52:d8:6f:b6:88:6e:b6:fa:f3:d0:f7:dc:2c:71:d2:
48:44:67:d4:48:1d:89:72:7d:49:b3:96:ba:ef:f4:
cf:38:48:82:82:24:af:68:39:8e:24:35:86:66:c7:
03:92:13:e9:50:e8:9d:79:43:42:c9:d0:66:24:25:
bc:cc:a2:0e:93:f5:6a:d5:e5:12:ba:7f:e5:cc:d1:
15:3c:f4:12:b2:05:60:db:a1:6f:c7:4f:4e:cf:4e:
7b:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:98:CB:25:25:DF:22:2F:5A:D4:44:7A:0C:B1:74:ED:E2:EE:71:41
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/2JjLJSXfIi9a1ER6DLF07eLucUE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.7.0/24
Signature Algorithm: sha256WithRSAEncryption
60:0e:65:0d:45:10:94:b0:09:3b:6b:fa:ea:fe:68:dc:8a:88:
e9:bc:6c:49:9f:07:96:5f:cd:a7:2d:f3:a9:38:10:85:02:99:
b9:6b:19:2f:c3:29:c2:ae:62:0f:c7:4a:68:a8:5c:13:c8:8e:
94:c9:15:50:56:41:b5:a4:71:59:34:8d:13:b3:8a:03:9d:c7:
87:a9:6a:19:22:9c:dd:4b:d7:a6:8c:ab:4e:cf:a5:7c:5a:99:
63:55:4e:94:17:c4:61:81:15:c9:c3:2b:ee:75:03:46:8c:9a:
e7:ac:95:c6:a2:3e:e9:2f:ed:23:16:52:5e:69:d3:b7:03:4b:
22:88:f5:27:0e:84:ce:08:d3:8a:76:c1:57:3a:9d:d7:92:2a:
fb:0e:9d:9d:f9:c7:3d:d2:5a:5a:e1:37:8c:5e:41:a7:84:6f:
e2:ed:ce:a9:78:e4:65:f9:0d:44:ee:60:50:f0:b3:04:a1:1b:
73:b2:53:cf:61:1a:df:0c:d8:22:19:4e:78:49:21:7c:84:57:
ad:4f:3b:4f:f9:c4:12:7a:bc:47:fc:87:7f:6c:3b:e8:84:9b:
31:51:ee:08:fc:6a:83:8a:38:58:07:a7:7d:7f:c7:83:b0:47:
bc:08:45:d2:6e:41:39:2e:2e:ea:db:1f:6e:d4:dd:c6:28:cf:
bc:d1:d7:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:05 2024 by rpki-client on console-fra.rpki-client.org