Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/jF044z0QbZVPD0rDm9MF46h4KE8.roa
File: jF044z0QbZVPD0rDm9MF46h4KE8.roa (raw, json)
Hash identifier: AtfnkLf/38SQzrYvQLwyRC/JLrklOu9Ts/TP4tmv5Uo=
Subject key identifier: 8C:5D:38:E3:3D:10:6D:95:4F:0F:4A:C3:9B:D3:05:E3:A8:78:28:4F
Certificate issuer: /CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Certificate serial: 01857139AFCEC2DEE2851A10D6D496ECB347
Authority key identifier: 7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/jF044z0QbZVPD0rDm9MF46h4KE8.roa
Signing time: Mon 02 Jan 2023 06:44:44 +0000
ROA not before: Mon 02 Jan 2023 06:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8426
IP address blocks: 185.154.148.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:af:ce:c2:de:e2:85:1a:10:d6:d4:96:ec:b3:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7a91b34153da0d5d121cff43259fcd9e3dbfc7d4
Validity
Not Before: Jan 2 06:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c5d38e33d106d954f0f4ac39bd305e3a878284f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a1:21:71:60:6a:81:4a:70:90:42:f2:a2:be:
76:ba:b0:62:6d:37:d7:0f:8d:5e:80:2e:1a:92:6a:
a4:6e:50:fb:bf:6a:34:d2:20:e5:93:f5:e1:d9:b6:
b3:98:d0:1e:4d:da:70:eb:f5:7c:f7:9f:d3:83:b3:
21:3e:55:48:f0:fe:97:ca:a4:ea:3b:52:af:d3:30:
67:d0:0a:f3:b8:43:a5:98:de:c8:f7:ef:dc:b1:4a:
56:97:61:cc:76:ac:e3:e2:da:c1:df:2e:9a:d6:55:
16:38:39:5f:a9:38:bc:15:31:80:01:e1:72:39:4b:
50:40:06:18:6b:86:58:7b:c3:ca:a0:cb:54:10:92:
68:2c:0b:91:8c:b6:5b:2f:61:41:ce:4c:e0:c2:d3:
04:79:3d:a1:cc:22:c2:08:57:c0:01:ec:23:78:0d:
e6:4f:bc:4f:7b:8f:c1:78:90:29:72:5d:84:91:92:
68:70:3d:5d:0c:ce:65:74:00:73:ca:2c:74:c0:14:
d7:89:f7:6c:c0:1f:9b:9a:b2:95:3c:13:7b:6c:34:
9e:35:8b:85:68:4b:63:8e:2d:c8:8e:74:4c:a0:ad:
54:f9:65:a1:79:bc:04:6d:96:d3:0d:d7:28:05:c6:
83:b9:68:e0:90:7b:8a:7a:fe:aa:1f:61:ad:0f:df:
e6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:5D:38:E3:3D:10:6D:95:4F:0F:4A:C3:9B:D3:05:E3:A8:78:28:4F
X509v3 Authority Key Identifier:
keyid:7A:91:B3:41:53:DA:0D:5D:12:1C:FF:43:25:9F:CD:9E:3D:BF:C7:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/jF044z0QbZVPD0rDm9MF46h4KE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/53f652-01b1-42f2-85e9-4dcb23fdb06a/1/epGzQVPaDV0SHP9DJZ_Nnj2_x9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.148.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:93:ed:7b:0f:91:57:84:98:ea:02:bf:16:c3:68:ce:4b:82:
45:1d:6b:7f:80:bc:7b:dc:6d:8d:0c:33:49:70:de:55:ee:a1:
f2:24:b3:66:ca:be:c8:33:28:7c:bf:e3:07:a9:54:e6:a6:c3:
c6:88:71:34:36:36:d6:61:65:5f:ae:5b:99:32:4b:25:73:17:
a6:5a:e3:1b:48:ec:1f:21:b4:10:9e:e9:42:67:79:4d:a9:36:
8a:13:33:6d:b2:f7:97:74:b7:06:0b:24:66:2f:5d:08:8c:25:
20:4a:57:54:f0:c9:dd:f2:bb:e3:19:d2:44:1a:0f:85:5b:d7:
fd:6a:97:23:74:b0:e4:00:49:9b:cf:af:80:eb:9f:1c:56:5e:
cb:a1:9f:e2:5a:d2:36:74:55:2b:04:98:e1:bd:d1:cd:c3:9f:
bd:37:ba:42:20:7f:ad:a5:f2:3c:cc:89:3d:be:8b:b7:27:9d:
94:e2:7c:f5:02:8f:a0:cd:ab:f0:be:3c:84:48:13:e4:a4:e1:
6d:33:ed:6f:fd:9c:88:c1:40:fc:e6:77:4e:10:54:95:83:a1:
b4:e8:f2:9d:ea:ec:e6:3e:96:30:d1:c4:7d:5b:f8:e3:3d:2e:
a3:3d:e1:49:a8:5f:ea:10:38:6f:57:60:15:76:29:f4:6f:57:
7d:b0:8f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:55 2024 by rpki-client on console-ams.rpki-client.org