Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ros6I_b-LBAqDBnmdDAwlzIser8.roa
File: ros6I_b-LBAqDBnmdDAwlzIser8.roa (raw, json)
Hash identifier: RvgX/MSTsgt0jQ8nFRgAOh6CCyG3pwo3MRN0PS5yoA8=
Subject key identifier: AE:8B:3A:23:F6:FE:2C:10:2A:0C:19:E6:74:30:30:97:32:2C:7A:BF
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 0190D00D1DF9258F896D759A9C1F1E2782C1
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ros6I_b-LBAqDBnmdDAwlzIser8.roa
Signing time: Sat 20 Jul 2024 12:10:38 +0000
ROA not before: Sat 20 Jul 2024 12:10:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 185.143.72.0/24 maxlen: 24
212.80.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 19 Aug 2024 12:54:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d0:0d:1d:f9:25:8f:89:6d:75:9a:9c:1f:1e:27:82:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jul 20 12:10:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ae8b3a23f6fe2c102a0c19e674303097322c7abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:93:a4:4c:c3:d2:e8:61:f0:b9:06:b7:03:5a:
3c:8e:fe:52:3f:29:4f:20:08:b4:ab:77:fc:dd:19:
c3:4c:3b:f0:78:70:6a:f9:ec:de:a3:96:1a:21:44:
a7:a6:e2:7d:01:40:83:93:2f:a1:35:e9:22:6e:18:
82:46:72:d2:c7:26:2b:cd:5b:f0:cf:77:64:e1:da:
11:44:3b:54:33:4b:2b:21:ef:5f:71:9d:91:d5:5e:
70:dd:40:cd:e9:8e:4a:83:ed:a2:5d:2b:9c:e4:e7:
3a:66:3e:15:6d:69:da:9e:a2:85:15:e5:2f:35:ee:
14:7a:8f:45:69:5a:49:d6:8a:64:e5:31:ce:3c:a1:
8f:c7:33:ec:23:96:26:21:ac:68:49:3e:d8:c4:1f:
a8:7e:26:de:0d:37:6a:a2:4b:6c:75:e3:23:0c:d8:
8a:c0:62:95:d4:a5:92:5a:a5:eb:09:49:eb:50:6a:
73:4a:ab:31:40:d3:eb:e9:e5:8f:13:8f:cc:68:21:
f6:0d:cd:2d:ee:4a:89:55:85:14:ab:78:32:98:fa:
87:f1:0a:f2:84:64:8b:e7:45:f8:65:a7:34:53:2a:
78:5a:38:2c:29:ed:18:16:26:51:79:5d:2b:84:b6:
ba:56:04:6b:ff:ad:a5:07:4d:5b:58:95:88:b1:29:
a7:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:8B:3A:23:F6:FE:2C:10:2A:0C:19:E6:74:30:30:97:32:2C:7A:BF
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/ros6I_b-LBAqDBnmdDAwlzIser8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.72.0/24
212.80.0.0/24
Signature Algorithm: sha256WithRSAEncryption
75:28:f6:80:fd:35:6b:1d:aa:1d:6f:6b:9f:50:dc:65:7c:f0:
b7:bc:8b:54:e0:ea:be:00:ef:aa:6e:2e:d2:92:43:03:82:e4:
5a:a1:f8:7e:4e:45:fb:e6:62:b0:72:26:0a:c9:e9:37:3b:58:
4f:d0:24:f8:78:16:1f:cd:2e:8c:b5:ec:62:4a:71:a9:22:fd:
57:7d:06:89:cb:31:c4:d2:64:56:6b:12:2d:bc:29:b3:c6:2c:
5c:29:f5:1d:1f:ad:4a:76:cb:66:45:22:37:f1:fa:8b:a9:b4:
f2:25:e2:d7:47:b3:1f:af:bc:f4:9a:5c:2d:9f:c7:f5:c2:1f:
27:f5:02:a9:b6:e3:e5:63:cb:b2:79:d9:91:ad:9d:c0:53:35:
67:5f:2d:c3:b7:4f:03:0e:c5:f1:0d:09:ee:22:78:b8:0e:f6:
41:3e:56:00:5d:92:01:77:a6:ab:12:e8:be:e0:34:64:c7:cc:
22:04:71:58:ab:79:50:ce:d1:2f:80:ec:6e:c0:31:fa:30:1f:
69:58:fe:b8:77:47:35:79:70:0b:52:57:93:11:48:0a:b0:63:
39:11:13:a8:d4:11:de:4d:72:98:23:f3:42:c5:2f:92:b6:48:
6f:04:76:e5:49:08:7a:1c:8f:c6:7c:d7:54:17:bb:11:6a:a6:
d8:e1:34:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 19 17:20:31 2024 by rpki-client on console-fra.rpki-client.org