Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/15v7sCrIIE2mcLqb7KiYIsbFkw8.roa
File: 15v7sCrIIE2mcLqb7KiYIsbFkw8.roa (raw, json)
Hash identifier: D+kih48jf8VZN6EetrAyNh/6y0dzwmwSQfpgDT3qxzw=
Subject key identifier: D7:9B:FB:B0:2A:C8:20:4D:A6:70:BA:9B:EC:A8:98:22:C6:C5:93:0F
Certificate issuer: /CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Certificate serial: 01856FDDE39D2209893A68CD1A64474368CB
Authority key identifier: 52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/15v7sCrIIE2mcLqb7KiYIsbFkw8.roa
Signing time: Mon 02 Jan 2023 00:24:50 +0000
ROA not before: Mon 02 Jan 2023 00:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207713
IP address blocks: 185.143.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:dd:e3:9d:22:09:89:3a:68:cd:1a:64:47:43:68:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a165dc3aafbe2c62e265ff104327a3e675f89f
Validity
Not Before: Jan 2 00:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d79bfbb02ac8204da670ba9beca89822c6c5930f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1e:71:25:75:07:63:cb:d6:bf:48:2f:31:46:
00:49:5f:aa:ed:c3:a0:6d:49:02:3e:1e:a1:d5:4f:
2b:45:cb:31:66:d2:60:53:e1:03:61:2d:ab:47:59:
87:40:66:0c:11:01:c7:dd:41:c7:67:6d:3c:93:a2:
d7:e1:0c:b9:13:fb:2d:98:88:de:5e:6a:f5:c7:39:
49:f6:78:61:40:1d:fb:62:67:7d:b8:76:44:29:2d:
59:7f:49:c9:a4:51:2b:c4:b4:63:16:86:3c:d2:f5:
69:b4:f1:54:a9:84:7c:da:18:ca:5b:15:02:66:97:
dc:4b:c6:11:b1:00:1a:85:4e:04:dc:f3:3f:eb:d5:
98:38:c4:a5:5b:c0:d4:8d:60:1d:74:7d:64:5c:4c:
d5:b5:11:93:6d:32:47:9e:fe:3c:76:35:3f:8c:4a:
30:db:5c:12:3d:f3:df:ae:6f:30:82:e5:e4:04:9b:
ec:88:61:3a:1c:7e:41:40:bb:a7:00:7d:8f:d4:89:
19:f3:ba:ca:75:69:0f:9c:5d:8e:16:14:14:01:9a:
fb:10:f5:a4:78:0e:05:03:4f:e8:81:24:19:a1:11:
f1:92:62:9d:fa:93:d3:37:29:f8:05:61:18:49:ac:
cc:90:f8:48:29:43:05:92:0a:43:83:ae:25:e3:d6:
63:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:9B:FB:B0:2A:C8:20:4D:A6:70:BA:9B:EC:A8:98:22:C6:C5:93:0F
X509v3 Authority Key Identifier:
keyid:52:A1:65:DC:3A:AF:BE:2C:62:E2:65:FF:10:43:27:A3:E6:75:F8:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqFl3Dqvvixi4mX_EEMno-Z1-J8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/15v7sCrIIE2mcLqb7KiYIsbFkw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/80aceb-50e2-40c0-a852-e298b41b6c81/1/UqFl3Dqvvixi4mX_EEMno-Z1-J8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.223.0/24
Signature Algorithm: sha256WithRSAEncryption
cd:e0:23:9f:8b:2f:0b:23:b4:0d:4a:98:76:51:97:c4:38:dc:
df:a0:34:a8:b1:2a:d6:e8:22:74:6a:08:16:c6:e8:0e:d4:22:
3d:cf:53:09:ec:8f:c6:97:cc:92:43:bd:56:9f:92:97:0f:97:
93:99:7c:95:6a:eb:34:f2:64:de:10:04:27:4b:01:c5:60:04:
60:97:76:25:c5:18:66:10:24:21:08:96:9f:2a:a4:65:75:bc:
38:7f:9c:8c:98:38:4a:eb:e7:99:39:a3:cb:ba:11:5b:ff:b1:
be:e4:3d:53:31:78:be:8e:0e:81:17:05:db:a9:95:ed:94:84:
5a:85:8a:bd:ac:7e:2a:d0:4e:91:f6:bd:75:91:ef:bb:2c:21:
23:38:d9:a2:78:26:2e:7c:6f:88:82:40:5a:20:d9:03:2f:07:
46:4c:d5:ae:bb:f8:01:a2:19:e4:36:05:ad:82:38:f8:4c:83:
8f:14:c9:e9:2f:fa:ea:19:66:8a:fe:66:0d:a8:4a:57:fc:d1:
42:72:e6:df:03:71:38:78:ed:e4:fa:54:ff:e5:a6:4e:77:e9:
61:ef:77:a5:4e:72:ce:27:d3:59:e9:97:f8:93:a7:5b:90:bb:
d6:8b:50:c2:14:8d:04:f7:17:8c:df:b1:e0:f3:0e:d2:0f:1a:
35:e1:49:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:23 2024 by rpki-client on console-fra.rpki-client.org