Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/jehjCmLCwD_UKhpWX0TzTrNZSJo.roa
File: jehjCmLCwD_UKhpWX0TzTrNZSJo.roa (raw, json)
Hash identifier: ITvF1bcK4PQUia5QvtgPu9HfLwVoJoFxRvurinCot/c=
Subject key identifier: 8D:E8:63:0A:62:C2:C0:3F:D4:2A:1A:56:5F:44:F3:4E:B3:59:48:9A
Certificate issuer: /CN=94948e5f2fa04b222a6e96883b840f7124531556
Certificate serial: 018D883D82C07D33B33247D5A445751EA7D7
Authority key identifier: 94:94:8E:5F:2F:A0:4B:22:2A:6E:96:88:3B:84:0F:71:24:53:15:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lJSOXy-gSyIqbpaIO4QPcSRTFVY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/jehjCmLCwD_UKhpWX0TzTrNZSJo.roa
Signing time: Thu 08 Feb 2024 10:22:29 +0000
ROA not before: Thu 08 Feb 2024 10:22:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215758
IP address blocks: 185.141.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Mar 2024 08:15:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:88:3d:82:c0:7d:33:b3:32:47:d5:a4:45:75:1e:a7:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94948e5f2fa04b222a6e96883b840f7124531556
Validity
Not Before: Feb 8 10:22:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8de8630a62c2c03fd42a1a565f44f34eb359489a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:df:da:d6:43:76:99:a6:9b:6c:c6:1b:9c:87:
23:46:d8:25:46:ee:cf:87:0e:9f:ef:16:0d:0c:a4:
8e:66:2d:66:69:ad:73:36:c5:b4:a5:ef:30:21:ec:
d3:9a:ca:cd:93:25:e6:19:c8:d9:eb:f0:70:e3:ec:
32:85:cc:de:13:be:58:e7:73:45:1b:c6:43:01:67:
11:0d:e7:1e:09:a4:3b:0d:67:84:78:95:d5:fb:85:
7b:f5:28:36:f4:5b:51:a8:8a:f8:d8:7a:50:0f:61:
46:f1:b1:59:b6:e1:7d:9a:8e:bf:6e:5e:3f:d5:e8:
05:04:12:e5:84:5a:25:d4:47:05:cf:8a:13:63:42:
3d:69:ab:e7:ea:8b:f0:f0:d4:df:e4:c3:5e:e6:c0:
ca:35:50:5a:01:7a:ad:6f:9f:7c:ec:9f:4c:6c:c6:
85:8f:2e:bf:30:8f:b6:fa:6c:b2:81:f2:7e:de:48:
63:f1:e8:84:41:41:51:61:1f:77:9a:cf:1d:fe:e8:
44:63:94:e7:59:2e:81:89:d6:fb:f0:89:06:15:7f:
24:41:34:d5:78:40:aa:4e:62:04:0a:20:76:d8:e4:
fb:83:3f:7a:0d:a7:65:59:d7:68:fb:11:fb:7b:3b:
18:6f:cf:78:a6:79:7f:5e:44:be:b3:a3:12:f6:db:
f7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E8:63:0A:62:C2:C0:3F:D4:2A:1A:56:5F:44:F3:4E:B3:59:48:9A
X509v3 Authority Key Identifier:
keyid:94:94:8E:5F:2F:A0:4B:22:2A:6E:96:88:3B:84:0F:71:24:53:15:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lJSOXy-gSyIqbpaIO4QPcSRTFVY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/jehjCmLCwD_UKhpWX0TzTrNZSJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ec48be-9250-4f7c-9c87-641b8e60d3e2/1/lJSOXy-gSyIqbpaIO4QPcSRTFVY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.25.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:39:09:b5:40:a0:3c:04:7d:a7:55:0d:f6:99:9f:33:be:81:
e2:57:90:db:68:39:19:c6:ad:1a:34:ef:90:3e:c3:51:63:1b:
f6:e7:71:30:48:30:63:9b:ba:7c:af:ef:52:63:88:c4:2b:42:
22:30:40:3b:ff:a6:34:2a:35:06:81:56:8b:63:c7:70:6e:60:
aa:10:d6:3e:1f:d5:21:af:88:22:54:ba:71:77:7a:2f:6d:a8:
ef:40:d2:c8:19:2f:41:b5:c1:e4:66:f1:6f:96:93:f2:a9:8f:
81:9b:82:b9:b5:82:d8:86:61:cf:5b:a1:82:b9:fc:2f:83:fd:
0b:65:97:8b:10:19:63:f0:8d:9d:8f:ba:af:dd:7c:37:4f:ba:
3e:e3:44:71:20:20:48:dd:2c:5e:f5:9d:da:17:10:19:2f:af:
01:4c:18:ed:3f:03:a5:64:3d:87:04:c5:2c:ff:d7:38:45:3c:
a8:f8:f6:79:84:00:54:89:ea:eb:42:ff:a4:9f:98:47:eb:35:
82:b8:fc:8e:85:ad:9e:c5:e8:68:b3:77:ea:0d:44:45:78:f3:
f2:86:aa:74:8d:78:f9:6d:d6:c5:8c:0f:ee:55:80:06:10:15:
e1:80:a0:05:9d:0d:0b:dc:0d:36:27:7e:5f:1b:97:f3:12:f7:
cd:72:d7:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 8 11:11:57 2024 by rpki-client on console-fra.rpki-client.org