Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/GeJKYgz7w1xqBQN0VsItBcqsIew.roa
File: GeJKYgz7w1xqBQN0VsItBcqsIew.roa (raw, json)
Hash identifier: jUR0eFcQdtg1DeAjnv9WS/gFXjOYCpu0KF+RUiBHveY=
Subject key identifier: 19:E2:4A:62:0C:FB:C3:5C:6A:05:03:74:56:C2:2D:05:CA:AC:21:EC
Certificate issuer: /CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Certificate serial: 018D40862D655BE8CD9ECFEE291CA3DF8CBD
Authority key identifier: 8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/GeJKYgz7w1xqBQN0VsItBcqsIew.roa
Signing time: Thu 25 Jan 2024 12:09:11 +0000
ROA not before: Thu 25 Jan 2024 12:09:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202302
IP address blocks: 185.143.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Apr 2024 11:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:40:86:2d:65:5b:e8:cd:9e:cf:ee:29:1c:a3:df:8c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8eb441dadbbecb6965d4ea1f046cc5c8e28817fc
Validity
Not Before: Jan 25 12:09:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=19e24a620cfbc35c6a05037456c22d05caac21ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:07:6c:94:9d:91:03:66:e9:54:dc:29:1b:35:
81:06:5b:76:1c:45:b2:71:b0:cb:13:70:4b:b3:17:
12:cd:25:d4:b7:bc:ae:1f:cb:1f:a9:26:92:90:46:
42:09:3b:03:f6:93:44:27:d7:c4:6c:aa:f5:b5:46:
d3:96:b5:aa:41:66:5c:ca:ce:21:60:a3:29:18:a8:
50:99:cb:21:e8:9a:b5:c2:e5:fa:15:61:e6:71:a0:
f8:ea:26:5e:93:15:d5:d8:9a:6e:ba:30:6a:96:9f:
e3:eb:fb:25:70:ca:b7:9a:0a:67:45:7b:c8:dc:73:
02:b0:22:49:f8:03:c1:e9:fd:c0:26:3c:c8:4a:1e:
ec:4d:ca:ba:cd:71:ef:03:28:b2:51:50:df:c4:dc:
ab:b6:66:22:e3:fa:60:b7:ff:e4:d9:c9:2d:28:a7:
91:b6:d6:0f:31:9c:97:fa:e7:52:47:87:fb:18:50:
4f:e0:5c:a5:8b:d6:8d:14:93:66:ef:ef:6e:dd:a0:
ec:00:a7:37:85:4b:97:93:77:52:67:9d:28:f5:1e:
be:ea:93:4b:9b:9f:f1:aa:b5:b8:6d:a3:ab:5b:44:
57:67:c8:8a:2b:74:07:dc:f3:13:fd:82:1d:65:85:
02:e9:e8:3c:ad:c9:50:a0:54:65:35:ae:8e:d8:60:
06:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:E2:4A:62:0C:FB:C3:5C:6A:05:03:74:56:C2:2D:05:CA:AC:21:EC
X509v3 Authority Key Identifier:
keyid:8E:B4:41:DA:DB:BE:CB:69:65:D4:EA:1F:04:6C:C5:C8:E2:88:17:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jrRB2tu-y2ll1OofBGzFyOKIF_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/GeJKYgz7w1xqBQN0VsItBcqsIew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/978d0f-9297-4c71-9cfb-46b949092cbe/1/jrRB2tu-y2ll1OofBGzFyOKIF_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.145.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:82:6e:d1:e1:58:fd:ca:c1:9e:b8:f4:10:69:b7:40:e8:3f:
57:dc:c1:a7:5b:df:c0:8d:36:58:a5:66:97:4e:1a:f5:52:dc:
76:7c:a1:cc:80:1f:58:da:40:e5:30:bc:45:1c:02:06:2d:06:
fd:cc:04:cd:a5:1e:b3:ac:03:bc:0f:cc:e9:5c:86:c5:4d:f2:
df:0d:f5:cd:1d:30:61:bb:10:a8:60:41:ae:24:70:95:d0:58:
10:27:b1:d2:85:48:5d:71:09:2b:de:bf:a6:f3:d7:d5:f2:ea:
7a:73:83:df:76:00:d8:49:81:d6:eb:46:c6:54:e5:a9:40:34:
f3:47:50:5d:3b:b8:2d:5a:21:bd:19:08:e8:a5:93:69:15:ef:
a6:69:a6:79:e0:8b:d0:da:97:43:3c:3f:8a:35:22:03:dd:f4:
c1:c0:6b:cd:71:20:7a:23:cb:c8:dc:20:16:40:9f:43:21:84:
6c:be:36:91:07:bc:f9:d0:3c:1c:5c:9b:95:c2:77:21:39:3a:
db:fb:45:c7:b2:24:44:d7:8b:77:b7:cf:1d:3a:0b:9f:72:39:
44:d5:39:92:59:39:92:e4:5f:f7:07:30:09:ad:f2:0c:20:26:
fb:b2:40:77:5b:b7:5f:41:ef:13:f6:7d:7b:1c:93:f3:13:10:
f7:4f:54:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:15 2024 by rpki-client on console-fra.rpki-client.org