Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/g7gV9bmB8TTNVYtwU9800oGNKpk.roa
File: g7gV9bmB8TTNVYtwU9800oGNKpk.roa (raw, json)
Hash identifier: Olas46nI7jqa724EVoGVGnuOpgO0rnQ4M75gIZVtv0Y=
Subject key identifier: 83:B8:15:F5:B9:81:F1:34:CD:55:8B:70:53:DF:34:D2:81:8D:2A:99
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 018C8BCAE1F62CB2422622956ED14EB44C5F
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/g7gV9bmB8TTNVYtwU9800oGNKpk.roa
Signing time: Thu 21 Dec 2023 09:52:58 +0000
ROA not before: Thu 21 Dec 2023 09:52:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 147.185.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 21 Dec 2023 12:25:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:8b:ca:e1:f6:2c:b2:42:26:22:95:6e:d1:4e:b4:4c:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Dec 21 09:52:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83b815f5b981f134cd558b7053df34d2818d2a99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1d:3f:37:f5:4f:6f:8e:cd:9f:cd:12:95:d2:
ec:e9:86:51:22:27:79:03:41:91:ec:1e:8b:69:f1:
80:74:b0:ad:04:39:72:35:36:a9:d1:63:01:6d:6c:
9b:4a:59:f6:86:98:1c:ae:94:1f:ed:96:b1:aa:8e:
5a:5f:6c:65:4b:b7:ac:9c:2a:eb:58:5f:93:e0:ba:
cb:75:ee:8b:37:d3:46:d3:9f:7b:e0:47:1c:b1:ca:
30:8d:06:51:a1:5d:71:39:be:14:ba:b6:28:75:14:
6f:50:9b:c6:a7:ac:d4:9b:e1:cb:fb:06:a4:02:15:
52:e4:b9:af:97:11:0d:85:ee:69:83:bf:68:2f:ca:
28:4c:da:b3:d7:59:e2:9e:35:69:dd:2c:ca:ea:36:
04:e6:b3:7e:7e:bf:65:9c:d5:2e:9b:be:c2:04:5e:
fc:93:1e:d7:02:84:71:3a:9d:6c:c9:58:63:84:dd:
f6:13:1c:63:e6:96:0e:a7:23:07:83:94:e2:4e:f1:
d3:8f:c6:87:9d:b0:e0:7c:89:8e:1f:ca:77:68:06:
f3:48:33:67:3a:e5:47:94:99:dc:23:34:b8:88:6d:
8c:1c:67:31:68:b4:a9:46:87:35:4e:4b:f2:b9:59:
0e:39:e4:1f:64:8e:a0:e6:a9:69:9a:14:3a:7e:d7:
79:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B8:15:F5:B9:81:F1:34:CD:55:8B:70:53:DF:34:D2:81:8D:2A:99
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/g7gV9bmB8TTNVYtwU9800oGNKpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.106.0/24
Signature Algorithm: sha256WithRSAEncryption
77:7e:cd:e5:08:6a:93:cc:a2:35:73:2e:f5:7e:b0:20:b4:9e:
f1:a0:46:b5:56:e9:e2:7a:3f:2a:9a:f8:87:ac:ad:26:12:bc:
63:7c:a6:2d:0a:ec:94:5d:cb:70:4b:8b:79:15:22:65:44:a2:
8c:0c:95:7c:32:9b:34:41:16:42:e0:53:53:61:d1:cc:9e:b0:
aa:5b:0b:c1:a8:b2:2f:78:72:82:70:37:6c:08:2a:58:37:29:
1c:b4:1e:d9:b1:13:38:5e:5e:ea:0f:aa:e1:2e:4e:5c:a7:c6:
e0:6e:f4:80:4f:19:95:27:cc:30:50:64:35:1f:21:67:59:b1:
45:d2:ba:03:45:9e:39:f3:9f:2e:59:46:62:96:a7:a6:06:c3:
2e:e9:38:63:ba:01:ba:14:23:4d:f4:d6:85:56:f9:e7:19:bf:
63:70:e2:47:7a:7a:02:7a:22:11:4d:05:ee:2f:bf:a1:11:5a:
11:a8:ac:5c:b4:c6:77:32:58:3b:ba:ad:e1:2d:6d:ea:ae:7f:
86:9b:df:43:8c:aa:66:5f:78:8e:4f:a0:7e:17:fb:67:4d:4f:
e1:de:79:82:55:04:47:81:e8:65:0c:d9:40:4a:41:13:a2:c5:
ca:85:54:d8:36:da:f5:4d:6f:65:ac:99:f0:9f:27:70:7e:4a:
1d:44:b7:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:47 2024 by rpki-client on console-fra.rpki-client.org