Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/_V6Cs9D9nrbn60KUGFWOaagA2HQ.roa
File: _V6Cs9D9nrbn60KUGFWOaagA2HQ.roa (raw, json)
Hash identifier: kimQzzRhl+skhKB2BpJjMf0z9mbhy01ahEU+zTtbfIU=
Subject key identifier: FD:5E:82:B3:D0:FD:9E:B6:E7:EB:42:94:18:55:8E:69:A8:00:D8:74
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 018CC6B872A03BFA87279FCC3036D81F37D7
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/_V6Cs9D9nrbn60KUGFWOaagA2HQ.roa
Signing time: Mon 01 Jan 2024 20:30:25 +0000
ROA not before: Mon 01 Jan 2024 20:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8426
IP address blocks: 185.154.148.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 16 Feb 2024 14:19:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:72:a0:3b:fa:87:27:9f:cc:30:36:d8:1f:37:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Jan 1 20:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fd5e82b3d0fd9eb6e7eb429418558e69a800d874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:19:29:7d:07:1e:3d:64:f1:a5:f0:f8:91:3a:
8f:c0:9f:46:65:9f:6e:f3:f9:51:76:22:25:52:f5:
81:63:b7:90:32:2b:02:8c:fb:a8:a5:06:34:82:83:
eb:78:9d:ff:6d:b7:ad:2f:d1:81:fa:96:03:4b:93:
33:19:64:a4:a7:c1:ca:9c:ae:86:75:75:04:1c:a1:
34:41:62:86:24:4d:ac:7c:1d:e3:38:8c:0d:19:bc:
28:76:33:bb:7d:4f:54:22:12:4e:0d:d5:c3:ca:8c:
c3:98:2d:40:e8:7e:11:4e:fd:53:32:ee:f5:be:63:
2d:32:08:57:e4:e7:14:f2:f0:29:41:d8:40:05:2d:
97:f3:0d:01:a9:79:eb:81:89:e1:93:22:72:d5:da:
0a:3d:ff:6d:68:99:7d:a7:5f:40:4f:b2:3b:83:0e:
e9:88:8d:f4:a0:77:4e:7a:e1:9a:f0:cb:95:26:b7:
0f:ed:c5:4d:84:15:47:dc:68:48:14:7a:d6:04:20:
ec:76:62:f8:2e:6d:13:d7:db:92:82:52:3b:c0:f1:
36:0a:31:2d:a2:3e:59:97:1d:84:62:87:2b:44:d8:
e6:91:c8:8c:d4:5e:ba:e1:39:73:76:3b:61:7a:7c:
f2:6f:69:51:ae:da:86:db:b2:b9:44:3e:0a:8f:b8:
53:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:5E:82:B3:D0:FD:9E:B6:E7:EB:42:94:18:55:8E:69:A8:00:D8:74
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/_V6Cs9D9nrbn60KUGFWOaagA2HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.148.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:16:48:08:3a:d3:cc:ea:53:16:17:15:df:71:b3:15:46:d3:
3f:dd:04:79:a2:ba:6b:a1:78:5a:d0:9e:74:f5:28:17:ea:c3:
41:af:2e:f4:76:55:43:03:3c:ad:3b:d9:88:88:46:3c:36:43:
16:d0:ce:ec:19:e3:1d:07:25:3b:d3:50:65:da:3c:d3:c9:d5:
86:c0:ea:c4:26:53:4f:c3:85:35:d5:c5:89:19:5f:59:aa:fc:
9e:99:10:70:e4:ad:9e:c5:eb:b1:8c:7b:b7:ff:b2:cb:71:c4:
2c:fe:2f:7b:85:42:b3:fd:9b:94:d0:39:0b:46:7e:3e:c6:f1:
17:b3:e7:17:db:7e:4a:19:73:21:55:01:e1:6b:e0:c6:76:fb:
64:9a:0a:95:50:9b:9b:03:98:0c:ef:ee:4c:74:0b:e9:75:09:
59:a8:0a:0e:62:53:cb:fc:b5:3f:57:63:d9:85:bd:eb:0a:8b:
9a:dd:90:21:78:4c:bf:2e:9d:fc:ae:94:cf:97:a0:9d:7f:ce:
91:9c:8c:05:cf:e4:32:ff:c6:fd:03:d8:aa:4c:59:3c:ad:47:
d8:d8:01:67:b5:ca:c2:48:94:c0:a2:75:b0:26:7e:83:9e:9a:
19:26:8b:b3:53:80:16:1a:aa:15:a2:7c:db:bd:7e:2d:4b:b2:
9b:82:04:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org