Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/T8MPAM54mhrgPeN7JGlEuuUuZ_4.roa
File: T8MPAM54mhrgPeN7JGlEuuUuZ_4.roa (raw, json)
Hash identifier: npbKSNmWOBmcAknYeMd44LVYH6ei2HtRj1OyiJ3DnSA=
Subject key identifier: 4F:C3:0F:00:CE:78:9A:1A:E0:3D:E3:7B:24:69:44:BA:E5:2E:67:FE
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018CCA29B88E2673EA5A835540680B8BDA06
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/T8MPAM54mhrgPeN7JGlEuuUuZ_4.roa
Signing time: Tue 02 Jan 2024 12:33:00 +0000
ROA not before: Tue 02 Jan 2024 12:33:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 147.185.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jan 2024 11:49:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:b8:8e:26:73:ea:5a:83:55:40:68:0b:8b:da:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jan 2 12:33:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fc30f00ce789a1ae03de37b246944bae52e67fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:93:65:1d:34:10:73:53:11:c6:fe:2e:6c:5b:
a6:01:3e:5e:d1:3d:c0:fb:cb:69:9b:b2:02:0f:1a:
36:9a:99:02:1b:0e:84:0b:95:02:b9:e7:19:06:f8:
e3:a6:27:d9:95:5f:97:64:6a:22:e4:bf:2d:5f:ab:
05:14:3a:18:55:3d:42:ec:0d:24:fc:1d:48:40:ef:
e5:af:87:e6:0b:d8:66:a4:73:52:f1:ca:ed:77:36:
73:71:d3:80:7f:a8:ae:81:42:7f:6e:79:32:0b:f3:
72:15:88:29:bb:8c:84:7c:3e:ca:1b:dc:d1:c9:4e:
72:f6:45:05:dc:e0:c5:d6:4e:02:72:d6:ba:1e:73:
a6:ea:b0:e6:c3:9d:5f:58:f3:8c:3d:f3:6d:8f:d6:
1f:11:f1:c0:63:58:88:43:e0:be:76:cf:22:e3:97:
f4:9d:6d:e8:37:a9:fa:c0:5e:0f:72:3f:dd:2d:96:
07:56:ea:b1:c0:da:d0:f5:10:60:0b:d6:e4:b0:ba:
15:c8:b9:20:a0:39:32:8c:bf:96:19:81:50:de:c9:
f0:ee:3b:c6:c8:52:98:e2:e3:47:7f:c5:c2:02:33:
bf:d6:cf:7c:81:62:8b:d6:7d:74:20:d3:a1:93:00:
20:bd:3a:f3:4b:ec:af:9e:a0:7a:d7:79:d4:0b:15:
25:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:C3:0F:00:CE:78:9A:1A:E0:3D:E3:7B:24:69:44:BA:E5:2E:67:FE
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/T8MPAM54mhrgPeN7JGlEuuUuZ_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.106.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:b8:cf:86:26:20:1b:03:10:f0:38:68:13:58:a1:22:8e:f2:
31:77:e0:66:6d:e7:48:88:3b:fc:76:d5:ad:64:72:d0:05:d0:
c9:7a:da:7d:f1:7b:ed:16:6a:45:78:5f:33:77:08:c2:4f:7d:
9e:64:dc:9b:89:ba:3d:82:ef:1f:ef:7e:55:ee:87:0b:8f:70:
7c:c4:e4:1c:f6:d9:15:25:0e:af:40:19:ee:3d:fb:59:c4:37:
b5:9e:f9:6d:ec:00:1c:4c:8d:86:98:41:8f:54:f1:9e:14:a3:
ed:d7:11:96:69:f3:61:34:f0:ad:50:46:07:29:5d:8a:cc:79:
bd:2c:40:b9:4b:f4:9e:17:65:6f:13:dc:e0:80:10:d6:e6:42:
71:09:68:a8:6b:b9:34:68:3c:f0:41:f9:82:74:21:43:b2:3d:
ed:bb:66:4e:c1:e4:11:88:78:0a:5e:7f:f1:9c:2a:fb:5e:a6:
31:e3:53:46:df:df:f1:90:22:c5:1c:8f:91:d1:05:ae:65:4e:
4e:e3:4f:bd:f1:19:d3:c1:9a:c8:36:f0:99:ab:96:79:9e:43:
cc:68:40:18:3f:2d:90:d0:c0:42:10:bd:4d:08:17:1a:4d:1b:
2a:82:32:eb:39:7d:4a:1d:03:88:3f:5d:fa:e6:48:51:a3:68:
54:84:fa:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:47 2024 by rpki-client on console-fra.rpki-client.org