Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bkdFtIsL1UOx_anopKj5RSUH02A.roa
File: bkdFtIsL1UOx_anopKj5RSUH02A.roa (raw, json)
Hash identifier: 4Z+c5Ypa+oZFcjB+Cz8KKfF+ShuUTs6fWed6S0CeP3o=
Subject key identifier: 6E:47:45:B4:8B:0B:D5:43:B1:FD:A9:E8:A4:A8:F9:45:25:07:D3:60
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0191354A42B2F4FD2DE432866377B847D15B
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bkdFtIsL1UOx_anopKj5RSUH02A.roa
Signing time: Fri 09 Aug 2024 03:59:04 +0000
ROA not before: Fri 09 Aug 2024 03:59:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215224
IP address blocks: 185.141.218.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 15 Aug 2024 22:28:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:35:4a:42:b2:f4:fd:2d:e4:32:86:63:77:b8:47:d1:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 9 03:59:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6e4745b48b0bd543b1fda9e8a4a8f9452507d360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fc:fa:62:f9:42:2f:40:59:63:56:a3:aa:76:
56:b6:b6:8b:99:f6:ff:92:14:4f:b3:ad:67:df:e0:
03:a5:84:16:50:28:3c:c2:2a:64:f7:21:65:ad:d5:
b4:7a:02:3b:ff:62:57:7f:22:ea:89:3b:0b:d7:7f:
b0:1a:fb:00:11:27:46:73:51:ef:a6:3d:16:e8:7a:
79:e3:1f:a9:43:40:59:c6:e5:84:7e:94:82:b9:fc:
f1:3d:0f:ef:bb:25:5a:67:df:87:cb:d0:07:67:46:
81:d9:9a:f9:6c:9b:89:10:ee:b0:23:53:41:30:ec:
69:21:ec:67:53:9c:c9:79:84:37:51:9b:d7:43:53:
3c:ff:83:f7:64:aa:b0:5d:7b:37:63:5b:c3:d0:8d:
7a:78:b2:c3:95:2c:3b:3c:46:c7:b3:cd:f9:da:38:
90:a3:32:c8:94:67:a2:fb:8c:d9:c5:d9:97:29:26:
08:f6:a3:cc:e1:3e:30:22:d8:86:de:b6:7d:ae:3b:
27:a2:35:11:4f:40:71:fc:2e:b7:0f:ff:a5:ee:f2:
0c:c4:8f:0b:23:8a:2c:8c:aa:a2:39:be:9d:e6:a5:
4a:c9:2a:d0:51:a5:fa:48:16:0d:0f:51:79:e8:81:
7f:ec:7a:3d:8b:b2:60:0c:30:3c:ac:8a:11:75:7c:
80:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:47:45:B4:8B:0B:D5:43:B1:FD:A9:E8:A4:A8:F9:45:25:07:D3:60
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bkdFtIsL1UOx_anopKj5RSUH02A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.218.0/24
185.198.235.0/24
Signature Algorithm: sha256WithRSAEncryption
52:31:34:46:62:10:03:ac:b7:9f:45:e8:9b:79:a8:3d:eb:e1:
6c:e1:b2:30:e1:8d:67:b2:41:46:4e:f3:bf:bc:be:fd:22:e9:
8d:b3:71:75:c7:52:ce:0e:3d:16:56:77:ab:a6:a6:42:19:25:
b3:5d:b3:e4:a1:ce:09:cd:15:e5:11:23:55:5f:0d:41:9a:75:
c2:ec:35:eb:63:98:dd:c9:c0:4d:b3:8e:41:7d:7c:14:b5:b4:
91:da:f7:ff:4a:6f:2c:3d:23:97:db:4f:b9:48:2e:91:7d:b7:
29:fc:02:15:01:bf:bc:be:d5:b1:3f:87:56:b0:4d:02:dc:43:
97:40:3a:2e:1d:fe:0d:d4:05:1f:2d:c0:28:6e:1d:a1:ea:83:
2a:96:27:be:7d:7d:e8:cb:8e:23:91:e6:31:85:be:77:eb:5f:
15:db:2b:85:d2:1f:06:4b:d9:7e:44:a4:2d:43:56:9c:a4:e8:
71:12:4c:99:49:c3:7a:b2:56:8d:62:30:a6:2e:53:41:ac:29:
6d:a7:d8:9f:66:f2:06:84:9f:56:39:36:f7:96:50:45:43:79:
f3:ff:5a:5c:14:9e:f6:9f:a1:4a:47:e1:2c:fc:28:74:f4:c3:
c4:95:bf:00:dd:19:f3:70:33:57:08:c8:ba:7f:68:bd:91:db:
76:a2:50:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 16 00:38:03 2024 by rpki-client on console-fra.rpki-client.org