Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/fjJb8iL5WJfqf-SxPaYj4trhM04.roa
File: fjJb8iL5WJfqf-SxPaYj4trhM04.roa (raw, json)
Hash identifier: 9kiMv78kPe/ez7d9+F1o5hNWV39xXTJTfj4t6a1nVpQ=
Subject key identifier: 7E:32:5B:F2:22:F9:58:97:EA:7F:E4:B1:3D:A6:23:E2:DA:E1:33:4E
Certificate issuer: /CN=816d220b2b5a46fbeb27ef2d969fa21dd338c5b3
Certificate serial: 018DD01400C1012D16C98CC8A6E0F63597C7
Authority key identifier: 81:6D:22:0B:2B:5A:46:FB:EB:27:EF:2D:96:9F:A2:1D:D3:38:C5:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gW0iCytaRvvrJ-8tlp-iHdM4xbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/fjJb8iL5WJfqf-SxPaYj4trhM04.roa
Signing time: Thu 22 Feb 2024 09:09:48 +0000
ROA not before: Thu 22 Feb 2024 09:09:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203363
IP address blocks: 185.140.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 28 Feb 2024 14:08:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:d0:14:00:c1:01:2d:16:c9:8c:c8:a6:e0:f6:35:97:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=816d220b2b5a46fbeb27ef2d969fa21dd338c5b3
Validity
Not Before: Feb 22 09:09:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e325bf222f95897ea7fe4b13da623e2dae1334e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:0a:e9:4a:c1:dd:29:73:96:22:5e:0e:50:32:
38:6c:6b:83:c5:76:ae:72:67:e5:96:d1:26:d3:f3:
ec:6e:4b:e2:f2:66:b6:31:41:6e:14:c0:e0:df:60:
d7:c9:a7:04:eb:36:07:95:d0:2a:0f:81:2b:c8:6d:
7d:25:9a:fb:af:25:0b:38:1e:58:86:4a:d1:2b:92:
0f:4c:40:a5:ff:78:f4:18:4b:80:0f:60:e0:cb:af:
6e:c6:2a:df:a0:e0:0f:6b:0d:b5:cc:c1:79:14:6d:
5d:dc:cd:78:9f:35:ab:7f:fa:1f:ad:3e:d4:73:57:
76:29:b7:c6:c6:68:45:f0:73:3c:f7:fd:1e:b7:ec:
4f:7a:17:fe:7f:f3:30:d5:d7:49:93:44:99:b9:da:
7b:4c:df:b9:ff:6e:16:ed:d3:bb:9f:9a:a4:b8:7c:
89:6e:63:74:c8:fb:56:7d:59:ff:73:d8:ae:31:58:
0b:a5:5d:af:2a:71:08:9e:52:67:54:da:3f:36:eb:
64:62:b8:46:1e:97:d4:70:07:b4:be:69:64:79:78:
ba:03:75:bd:20:90:cc:b3:63:4d:6e:1b:59:e2:ed:
00:73:66:73:76:57:84:12:0d:f1:96:1b:33:87:14:
b8:c5:79:58:1f:e6:52:8b:a8:a2:57:9c:6c:e1:63:
c2:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:32:5B:F2:22:F9:58:97:EA:7F:E4:B1:3D:A6:23:E2:DA:E1:33:4E
X509v3 Authority Key Identifier:
keyid:81:6D:22:0B:2B:5A:46:FB:EB:27:EF:2D:96:9F:A2:1D:D3:38:C5:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gW0iCytaRvvrJ-8tlp-iHdM4xbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/fjJb8iL5WJfqf-SxPaYj4trhM04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/971311-f47f-46db-8c57-e9782041cc24/1/gW0iCytaRvvrJ-8tlp-iHdM4xbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.53.0/24
Signature Algorithm: sha256WithRSAEncryption
70:b3:36:96:6f:32:1d:06:43:15:ff:a8:4f:20:af:cb:96:2e:
36:10:29:af:86:5b:27:f2:f0:5a:28:2e:de:d8:02:12:c0:ac:
27:e9:f5:3f:d4:e3:e7:91:ba:11:9a:76:62:04:d4:29:f1:be:
17:82:3a:1c:d9:22:59:9b:d7:c5:1f:79:d9:00:e7:85:05:50:
00:c7:0a:33:82:0c:47:d8:a8:00:fe:92:51:20:79:68:5d:3f:
26:12:1e:0a:35:0d:70:04:6f:cc:da:e1:26:bf:9f:78:a3:51:
e4:67:95:5b:28:85:65:da:94:8a:24:c7:e3:e7:1c:62:3e:c0:
44:a7:6d:3b:88:eb:99:01:e3:f1:28:90:1c:5e:db:53:ee:8f:
c1:d5:4f:01:20:6e:dc:54:01:e9:43:04:36:db:7f:9b:50:6a:
b1:37:33:2e:de:e9:07:76:aa:9d:d8:57:24:a9:d2:d7:d9:56:
4c:91:2e:d4:fc:50:18:56:9e:17:1f:2f:78:70:0f:d9:41:ed:
96:7f:e0:41:83:55:e1:2b:44:90:6c:18:6f:c7:7b:0b:76:4e:
9a:ae:5a:ba:2d:48:b0:f6:18:6a:91:ea:d6:c9:77:ae:d4:23:
f4:10:74:ca:bd:43:e2:b9:af:9c:c7:07:35:ed:cf:c2:86:86:
a6:25:a2:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:45 2024 by rpki-client on console-fra.rpki-client.org