Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wIA35v2vtW4oHTvGhVjvwOVx-zw.roa
File: wIA35v2vtW4oHTvGhVjvwOVx-zw.roa (raw, json)
Hash identifier: SdX2Jgg9Grt37wPpWp/hBpXadTyDTr7ksXJXdfnV9no=
Subject key identifier: C0:80:37:E6:FD:AF:B5:6E:28:1D:3B:C6:85:58:EF:C0:E5:71:FB:3C
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 018D897580264D1D15E313743978E4AFCA54
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wIA35v2vtW4oHTvGhVjvwOVx-zw.roa
Signing time: Thu 08 Feb 2024 16:03:15 +0000
ROA not before: Thu 08 Feb 2024 16:03:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201021
IP address blocks: 185.143.74.0/24 maxlen: 24
185.143.75.0/24 maxlen: 24
212.16.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Feb 2024 17:38:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:89:75:80:26:4d:1d:15:e3:13:74:39:78:e4:af:ca:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Feb 8 16:03:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c08037e6fdafb56e281d3bc68558efc0e571fb3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:7d:73:c7:d0:ee:97:0e:d3:39:60:f5:6e:36:
c2:ce:d1:18:74:c6:3e:f1:50:70:4b:44:dd:1e:2b:
e9:58:43:e3:fa:c0:a1:21:2c:f9:1e:0f:db:6d:a9:
52:46:f8:a6:af:32:35:45:2c:a5:ee:ee:58:bb:97:
dc:30:3b:18:f8:ba:3c:ef:26:aa:b8:fd:9d:0c:e8:
43:2e:51:0d:2e:16:82:bd:78:c8:d8:af:35:b7:b7:
95:8c:41:54:4a:0b:66:80:cf:6d:3c:e2:8d:75:ba:
23:fa:37:03:8a:72:1e:a1:be:5c:46:30:d3:27:87:
94:34:f4:a8:22:f7:d8:58:b0:c3:a6:84:1f:58:0c:
d0:c2:fd:66:b0:8e:46:9e:09:a0:7e:b7:6f:85:c5:
5a:51:68:2c:ad:c2:1f:1c:91:a0:a7:16:9c:bc:f4:
d9:28:fe:30:2d:78:9d:70:cc:f1:82:c2:fa:36:b2:
bd:2b:70:27:79:b9:f4:e2:ee:2d:45:dd:47:24:6b:
ae:56:fe:88:df:28:22:a1:ab:70:a8:ee:97:87:fd:
b8:ac:a5:b5:5b:ab:ab:d4:f2:9b:76:ba:36:54:08:
4c:b7:3d:24:e5:cc:b7:18:b6:73:ae:37:ce:76:05:
dc:cf:0c:b0:35:96:bf:78:e3:4e:bf:a2:14:dc:64:
3e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:80:37:E6:FD:AF:B5:6E:28:1D:3B:C6:85:58:EF:C0:E5:71:FB:3C
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/wIA35v2vtW4oHTvGhVjvwOVx-zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.74.0/23
212.16.85.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:9a:6b:ea:2f:62:e7:ae:70:67:e3:a4:b2:f5:a0:bc:8a:70:
03:58:d9:89:a4:17:e7:e2:8c:84:60:13:62:39:1c:ad:9f:c5:
90:3d:6d:52:7e:49:62:1a:ff:88:b2:58:cc:1b:0d:29:eb:bd:
89:80:30:cc:c2:a8:82:56:2c:38:76:a8:e8:36:13:75:dd:a0:
f0:bb:dd:09:cf:cb:f8:a1:20:70:c4:52:dc:6a:8b:ec:70:c8:
ee:55:98:2a:51:e5:ee:51:56:16:4d:69:5c:89:92:17:4f:78:
16:69:59:ed:18:4f:95:77:bf:58:8b:71:6b:bc:57:01:02:af:
44:80:c9:87:4a:4f:47:59:63:0a:df:ce:c8:95:41:5e:40:59:
92:d6:6e:ee:0d:67:4a:98:57:33:b4:a4:3f:c6:48:d2:96:cb:
8f:ee:18:ed:d9:46:15:6f:fd:d3:7c:1b:ec:c1:79:f2:cc:26:
ee:20:69:2f:f0:1f:08:3e:da:05:b9:55:24:db:bc:13:49:41:
6e:9b:b5:3f:48:36:14:e9:7d:56:21:d3:f3:da:52:88:b8:9d:
52:9a:76:05:23:8a:ed:23:f7:d9:13:5f:91:13:68:dc:98:93:
ee:33:e8:8b:41:42:c0:17:f3:be:87:3f:d5:f1:4f:99:9a:17:
10:2a:0c:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:07 2024 by rpki-client on console-ams.rpki-client.org