Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lBsH6RM58VOjEkWL76wn9m52H0c.roa
File: lBsH6RM58VOjEkWL76wn9m52H0c.roa (raw, json)
Hash identifier: g0gH7A3YsBqCRfyCHxF5X98mchFfWlrnjZWxjmH6LXs=
Subject key identifier: 94:1B:07:E9:13:39:F1:53:A3:12:45:8B:EF:AC:27:F6:6E:76:1F:47
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01915828946D8B202BC6EAD4C0B4E0879EAB
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lBsH6RM58VOjEkWL76wn9m52H0c.roa
Signing time: Thu 15 Aug 2024 22:28:59 +0000
ROA not before: Thu 15 Aug 2024 22:28:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215224
IP address blocks: 185.141.218.0/24 maxlen: 24
185.198.235.0/24 maxlen: 24
188.241.136.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Sep 2024 03:56:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:58:28:94:6d:8b:20:2b:c6:ea:d4:c0:b4:e0:87:9e:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Aug 15 22:28:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=941b07e91339f153a312458befac27f66e761f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:26:65:5a:09:47:a6:d2:6d:65:f8:4a:18:bc:
78:fb:6d:90:8e:b5:78:48:3d:93:56:74:23:ee:de:
58:6d:b2:7f:ea:03:dd:6e:7c:2a:a8:29:5e:6d:ea:
88:cd:5a:62:a4:89:2a:98:ee:39:21:09:88:99:f4:
e8:39:2d:44:bb:83:b6:13:86:be:76:c9:62:0d:1e:
2f:24:0c:bc:44:af:0e:62:62:6d:5e:c6:ed:bb:f3:
ea:dd:a3:71:e7:f5:40:12:4d:3f:ac:3b:fe:1a:fb:
4b:f3:a2:08:9f:13:36:91:f5:6d:15:69:73:e1:7e:
80:c5:90:42:e2:70:cf:70:1c:fc:32:e5:44:fc:d2:
7f:32:76:b5:a7:46:96:50:55:1f:65:b4:77:7a:43:
a9:ec:fe:34:83:e0:b4:8d:27:52:1d:98:57:2f:93:
4b:eb:da:2a:e9:64:d3:ac:8a:b9:3e:33:48:2a:3c:
8b:33:ba:ac:6c:4c:39:98:fa:00:20:2b:30:89:3a:
be:6d:0a:25:e9:17:33:5d:78:f8:50:1d:3e:cf:4d:
ba:54:71:80:3c:76:cc:99:b1:af:42:51:c4:13:4e:
4f:48:8e:05:28:47:f6:2d:7f:17:5f:41:6e:40:a9:
55:6d:ea:68:45:ac:22:01:06:c9:da:7a:c7:c1:7f:
c2:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1B:07:E9:13:39:F1:53:A3:12:45:8B:EF:AC:27:F6:6E:76:1F:47
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/lBsH6RM58VOjEkWL76wn9m52H0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.218.0/24
185.198.235.0/24
188.241.136.0/24
Signature Algorithm: sha256WithRSAEncryption
44:92:e9:b5:de:9d:6f:52:63:bb:be:9d:e0:1d:38:be:da:b4:
a5:0f:94:95:24:13:24:db:e8:55:d5:c0:95:57:1b:40:06:a6:
8f:87:ff:16:bc:df:4a:f3:81:27:b8:18:d3:e9:d9:b7:66:a1:
73:49:f8:d7:56:c3:23:76:b9:f8:b8:f0:43:06:d1:fb:b5:0c:
38:88:71:f7:df:fc:8f:8d:f7:d7:7d:a7:c4:4a:c2:64:85:5b:
eb:85:ff:1c:59:75:d6:98:83:dc:c1:5d:4e:d0:99:6d:4c:34:
a6:78:15:bb:ad:e1:66:ed:72:83:d8:83:a0:3e:3e:7c:04:90:
8b:39:21:71:72:a3:0a:e9:dc:30:aa:95:4f:27:ce:03:81:ce:
60:33:3b:34:2f:65:89:67:4f:39:5d:d1:12:d9:43:91:85:08:
5a:a7:91:07:5d:72:8f:c8:86:74:ae:c4:f9:1b:69:1c:57:4c:
0f:21:a2:f0:87:9e:71:ac:a1:d3:f4:42:56:b0:49:71:06:12:
d4:93:9a:1a:45:34:f7:c1:2e:95:d0:13:1d:32:51:af:69:a6:
e6:70:7f:e3:1a:38:ca:04:af:eb:da:ab:53:05:9e:29:ae:66:
ea:47:13:13:32:95:e3:62:69:1f:68:83:5d:30:34:44:6c:c0:
f5:b8:60:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 06:04:20 2024 by rpki-client on console-fra.rpki-client.org