Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/jahj1BSLHm9_LHq2sT9BkynVsi4.roa
File: jahj1BSLHm9_LHq2sT9BkynVsi4.roa (raw, json)
Hash identifier: Hg1uu2Pq2cfaXWtwSxRG9Ycrgj2u2OU6gGlq+i43BnA=
Subject key identifier: 8D:A8:63:D4:14:8B:1E:6F:7F:2C:7A:B6:B1:3F:41:93:29:D5:B2:2E
Certificate issuer: /CN=3aba1172472ea80265d12982967de0a8b0bc5901
Certificate serial: 0191FFB21E4B435DD6BBF37EE73AAC378563
Authority key identifier: 3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/jahj1BSLHm9_LHq2sT9BkynVsi4.roa
Signing time: Tue 17 Sep 2024 11:15:48 +0000
ROA not before: Tue 17 Sep 2024 11:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 185.243.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 16:28:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:ff:b2:1e:4b:43:5d:d6:bb:f3:7e:e7:3a:ac:37:85:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3aba1172472ea80265d12982967de0a8b0bc5901
Validity
Not Before: Sep 17 11:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8da863d4148b1e6f7f2c7ab6b13f419329d5b22e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:6d:87:73:7d:ac:86:66:48:dc:86:e5:06:a7:
41:b8:fe:40:7d:23:5f:67:52:15:69:a0:b3:3b:2b:
8d:03:29:53:6a:8e:f6:a2:4d:bd:8e:cb:69:c5:b1:
4d:ed:29:54:de:2c:47:f9:c8:74:c2:66:7c:5d:32:
47:25:9a:29:23:44:8b:66:f6:d5:fc:f8:29:91:d9:
e5:f6:23:22:b4:f6:b1:4e:47:5b:32:3b:1f:75:f3:
ab:35:28:60:2e:1a:6f:5b:fa:4f:b1:4a:54:28:50:
70:36:40:18:9a:98:0e:06:16:eb:40:1b:b1:bd:d8:
48:2d:0f:11:eb:58:d4:54:8d:38:8e:2d:77:cb:02:
1f:44:db:5b:7f:db:35:8a:79:b6:0b:3a:0f:76:b7:
1e:a3:3f:26:00:9f:4c:69:2e:03:03:a8:f6:f8:8d:
dd:6a:82:81:da:20:4e:0c:65:72:88:dc:70:a7:7b:
f0:18:f3:87:3f:f8:fc:b8:da:54:8c:88:74:02:40:
b9:46:b0:10:d5:f4:de:03:40:16:80:15:32:ea:33:
15:71:ce:b1:3a:27:51:b2:34:d9:97:f7:68:c1:47:
72:8e:13:26:10:49:c3:90:96:56:6c:f4:c3:47:b4:
19:18:be:60:40:c8:1e:f4:1f:4e:49:b4:4f:aa:f7:
f4:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:A8:63:D4:14:8B:1E:6F:7F:2C:7A:B6:B1:3F:41:93:29:D5:B2:2E
X509v3 Authority Key Identifier:
keyid:3A:BA:11:72:47:2E:A8:02:65:D1:29:82:96:7D:E0:A8:B0:BC:59:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OroRckcuqAJl0SmCln3gqLC8WQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/jahj1BSLHm9_LHq2sT9BkynVsi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/7b1c55-ddd0-4281-8378-4dd04346abc3/1/OroRckcuqAJl0SmCln3gqLC8WQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.152.0/24
Signature Algorithm: sha256WithRSAEncryption
02:dd:bb:03:5c:c9:f9:55:b0:09:a9:3a:ab:90:70:e7:e9:f6:
7b:75:a6:73:8f:14:18:3a:86:44:8a:91:3a:3a:ee:32:9e:c8:
39:6e:44:95:78:45:85:2b:93:8d:dc:6c:a3:28:f1:26:25:cb:
d3:96:12:64:6b:b2:e8:91:8a:1f:a5:79:dd:fd:7d:9f:81:db:
48:ff:db:e4:9f:7c:b1:52:58:d2:e0:db:c9:84:c3:34:f8:f5:
70:dc:a1:6b:03:31:17:4c:16:83:88:d1:fd:97:9d:2a:62:92:
1f:cc:f7:1c:6f:3a:98:f6:c0:1a:71:d9:4c:c6:bf:ef:b9:39:
9f:f3:3f:8b:59:64:88:10:c0:4d:12:7f:57:f9:49:28:3b:81:
ac:d8:42:dc:d5:49:a9:ab:eb:fc:e8:2f:4a:f0:9c:f3:6a:7f:
dd:4a:a1:dd:e4:1c:4a:7e:0a:9c:72:34:00:9a:7e:da:8b:2f:
e6:3c:2f:42:f6:1a:1c:99:bf:d8:97:6f:a0:22:57:be:f1:d2:
94:b0:f1:4f:42:48:76:7e:a9:28:06:6e:a2:0e:d5:3f:75:7f:
52:13:e7:c5:04:f3:c2:ef:4d:c1:5c:7d:73:dd:10:41:84:8e:
40:c1:7c:df:2f:10:f7:bc:01:41:a7:d1:46:b6:a8:af:5c:3d:
76:36:52:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 18 20:49:38 2024 by rpki-client on console-fra.rpki-client.org