Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/SpJG0sQ211BeA8OSjFwnn-cD6zw.roa
File: SpJG0sQ211BeA8OSjFwnn-cD6zw.roa (raw, json)
Hash identifier: XBFLCrp1+EDUDO+eqwXS3gf6/MpRRHAvR/AHfjyFdco=
Subject key identifier: 4A:92:46:D2:C4:36:D7:50:5E:03:C3:92:8C:5C:27:9F:E7:03:EB:3C
Certificate issuer: /CN=b262bf21de51385859416c4c608001e2025a5d25
Certificate serial: 01856B257F890FD04554C90CD76CD285B98A
Authority key identifier: B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/SpJG0sQ211BeA8OSjFwnn-cD6zw.roa
Signing time: Sun 01 Jan 2023 02:24:57 +0000
ROA not before: Sun 01 Jan 2023 02:24:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198722
IP address blocks: 185.19.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:25:7f:89:0f:d0:45:54:c9:0c:d7:6c:d2:85:b9:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b262bf21de51385859416c4c608001e2025a5d25
Validity
Not Before: Jan 1 02:24:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a9246d2c436d7505e03c3928c5c279fe703eb3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ef:54:4c:c0:6d:18:40:3d:55:8a:54:e1:74:
d1:36:ae:1a:44:47:d1:42:a8:fc:06:3c:5d:d1:dc:
a9:f3:61:65:48:65:26:7e:22:14:e9:73:85:08:4f:
6e:8a:9c:f5:0e:18:1d:eb:98:46:f3:2f:c1:f0:3e:
97:62:fe:05:43:2f:a1:c4:4d:79:f6:a2:6e:1c:11:
c4:36:51:4a:e6:35:63:2b:f3:27:b8:53:c2:7a:e9:
2d:4a:fa:0c:a3:70:e5:53:6f:3e:31:48:42:0c:3a:
a0:12:68:b6:cf:0d:8d:cb:c8:10:5c:7c:41:94:f9:
0e:15:35:56:fa:d4:c5:79:1e:54:28:f2:f8:4c:fe:
d9:a3:f6:08:91:20:28:0e:30:9b:79:c8:3b:b4:bb:
d6:66:30:62:33:b0:1b:74:2d:cf:a8:6d:a7:90:af:
b8:70:51:b7:60:bb:7e:ca:f5:32:0d:76:ae:de:7e:
cc:f8:f6:03:65:6d:31:f6:fb:3b:06:fc:c3:28:9a:
c7:7b:b0:c1:ff:d2:70:8d:39:1f:40:bc:db:9c:6b:
8b:57:2b:3a:78:e3:0e:47:e8:7c:40:6a:bf:17:95:
49:3a:20:76:f5:9c:d0:d0:73:5c:69:ec:76:a9:5e:
7d:84:db:1f:b8:fb:1e:cd:37:81:98:f6:bd:6f:2c:
7e:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:92:46:D2:C4:36:D7:50:5E:03:C3:92:8C:5C:27:9F:E7:03:EB:3C
X509v3 Authority Key Identifier:
keyid:B2:62:BF:21:DE:51:38:58:59:41:6C:4C:60:80:01:E2:02:5A:5D:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smK_Id5ROFhZQWxMYIAB4gJaXSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/SpJG0sQ211BeA8OSjFwnn-cD6zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/863093-5ed6-43b2-bbda-14c6c5055f88/1/smK_Id5ROFhZQWxMYIAB4gJaXSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.150.0/24
Signature Algorithm: sha256WithRSAEncryption
64:81:0e:e0:d6:23:db:db:bf:48:93:83:83:a7:ba:bf:54:f9:
8b:9d:57:78:ee:35:3e:08:4e:65:de:92:03:9a:9b:c8:50:62:
86:b8:3e:9d:9a:29:2c:7d:08:01:93:46:27:42:d7:cf:4a:e3:
f0:c4:fe:04:7e:d9:c2:1f:9f:11:6d:33:78:e3:40:f0:27:cb:
b2:ee:2f:0e:fc:1d:23:2d:92:8d:02:b7:d5:22:d7:b4:7d:74:
44:79:24:fe:67:e5:c7:be:d2:cf:e9:19:b8:1b:7f:f1:39:2f:
7f:99:63:b6:26:61:60:15:9e:db:5e:bc:50:94:10:4c:bf:8f:
cd:fd:2d:35:69:d8:b9:db:a6:ff:2b:25:ff:6d:69:57:ff:6b:
25:83:e6:d3:d0:db:65:8f:76:23:78:a0:da:0f:2a:bc:13:d2:
d7:24:cb:d6:f1:81:4f:35:35:87:99:fe:3a:73:76:4a:65:15:
56:0e:f1:df:9b:67:c7:83:eb:ed:15:cd:d4:47:aa:20:47:91:
87:4f:4c:a0:e4:dd:a2:63:02:d5:32:7b:75:58:0e:16:97:38:
d3:09:95:17:67:a0:8e:f9:44:aa:f7:0c:5e:5e:ee:3b:09:ab:
24:97:1f:f3:44:cc:84:9b:b5:d0:dc:a0:04:1f:7d:77:19:55:
08:df:43:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:03 2024 by rpki-client on console-fra.rpki-client.org