Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/e76L3IThamDh1McCq2FmCX9MUq0.roa
File: e76L3IThamDh1McCq2FmCX9MUq0.roa (raw, json)
Hash identifier: iXQzxZYQX8ZlqFt7fZ6T4LXwLE8FB6tGN9eH97zBoZ8=
Subject key identifier: 7B:BE:8B:DC:84:E1:6A:60:E1:D4:C7:02:AB:61:66:09:7F:4C:52:AD
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 01891A58CBEE737218B84B156541A7B4780E
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/e76L3IThamDh1McCq2FmCX9MUq0.roa
Signing time: Mon 03 Jul 2023 06:02:54 +0000
ROA not before: Mon 03 Jul 2023 06:02:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 151326
IP address blocks: 185.215.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1a:58:cb:ee:73:72:18:b8:4b:15:65:41:a7:b4:78:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jul 3 06:02:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bbe8bdc84e16a60e1d4c702ab6166097f4c52ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b3:e4:ba:c1:39:b1:af:f7:48:3a:fe:83:e9:
48:9c:46:52:0b:51:51:ef:cd:9d:6b:64:fb:6b:02:
89:c1:24:22:f6:79:af:5f:c0:86:de:71:64:1c:6d:
74:cf:55:3e:6e:73:5e:f2:d9:97:bb:72:56:c0:6b:
19:b3:4a:47:54:56:10:c0:85:5e:39:17:6d:75:7a:
b1:5d:52:c9:e6:a1:3a:67:9b:1d:f3:4a:c9:49:b2:
a9:be:ee:8e:79:a9:d9:4b:7e:8b:f8:04:b1:b5:de:
98:a7:4d:e8:d3:b3:58:7a:98:39:af:d9:8d:da:ba:
e2:ee:8c:7b:09:c4:0d:4e:87:c1:1d:47:ba:d7:17:
70:39:38:39:14:39:d9:d6:52:6b:0b:88:9c:82:fd:
d9:50:36:c7:af:40:38:07:ce:9e:e7:d8:94:73:13:
13:8d:3d:94:19:23:32:63:e9:36:2e:f7:68:20:4b:
c0:38:73:3f:37:18:d8:13:4c:9f:76:65:93:5d:05:
c3:25:b7:8f:9e:80:d9:82:c6:bf:18:9f:16:d5:6e:
be:ba:e7:80:c7:34:0a:46:80:93:65:92:8c:04:a7:
56:a7:63:e7:bc:b0:24:f4:9f:44:06:93:62:82:de:
04:7f:6c:61:e2:ec:08:68:07:50:0b:5d:1c:61:be:
0c:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BE:8B:DC:84:E1:6A:60:E1:D4:C7:02:AB:61:66:09:7F:4C:52:AD
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/e76L3IThamDh1McCq2FmCX9MUq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.215.245.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:c9:3b:12:60:0b:f7:b1:42:f6:b7:72:92:75:0f:2a:56:6a:
ca:08:e5:8c:a4:bf:d7:e7:c9:64:4c:0e:84:06:36:db:b7:ee:
7e:48:ae:9e:4a:9a:d5:25:7d:26:07:a2:ef:53:5e:b8:80:14:
7c:81:3b:57:93:39:be:d8:de:60:92:a6:f6:96:ff:8a:9c:78:
41:86:d2:29:49:c1:1c:44:76:70:fc:95:cd:00:07:48:f8:0c:
f3:27:99:f7:99:de:83:46:36:fe:c0:3b:98:f9:4a:78:d4:67:
8e:68:1a:d8:15:a2:a9:b5:14:06:b4:2f:bf:3a:bb:8d:5b:de:
82:cc:9b:52:18:96:e7:30:14:fc:d9:29:52:67:aa:49:ba:2a:
31:93:1a:8e:8d:6b:b4:24:7a:53:e3:65:00:42:ef:30:39:08:
28:50:ce:66:c9:c7:de:fe:60:04:04:c6:78:48:62:49:60:27:
f9:9d:fb:d7:f4:9a:d9:65:37:9f:5e:70:b4:49:18:97:36:f8:
23:6c:79:7d:2d:f9:3f:f9:a0:72:47:e1:bc:18:76:b7:a8:bf:
66:72:be:44:d5:b9:b3:20:e6:17:f5:bd:b5:e2:3f:63:67:fc:
2e:ec:b5:b2:81:4e:05:3b:a3:79:0d:c7:7b:b4:70:e8:02:9e:
41:d2:93:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:48 2024 by rpki-client on console-fra.rpki-client.org