Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/kOJRKqXQdPc4cYF2SeF6CJTy4ic.roa
File: kOJRKqXQdPc4cYF2SeF6CJTy4ic.roa (raw, json)
Hash identifier: fQMQbreFOoTdguQ2JxrBXFTUyWAXJhN3Q8HHAlxXUGc=
Subject key identifier: 90:E2:51:2A:A5:D0:74:F7:38:71:81:76:49:E1:7A:08:94:F2:E2:27
Certificate issuer: /CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Certificate serial: 0187F596FAC7B6E9BF1AC9100A3C64F3E0F4
Authority key identifier: 1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/kOJRKqXQdPc4cYF2SeF6CJTy4ic.roa
Signing time: Sun 07 May 2023 09:42:05 +0000
ROA not before: Sun 07 May 2023 09:42:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209342
IP address blocks: 185.54.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:f5:96:fa:c7:b6:e9:bf:1a:c9:10:0a:3c:64:f3:e0:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e8d205c798ed78f3c44ca0c8f2852e8bec8eaa2
Validity
Not Before: May 7 09:42:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=90e2512aa5d074f73871817649e17a0894f2e227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:c5:09:ef:a1:e6:e2:8c:f2:7b:82:98:1c:
54:f3:af:c4:c9:00:84:c9:65:62:9b:1f:e3:48:4c:
82:51:98:54:d2:f1:3b:ff:66:15:cd:2a:bf:c5:bd:
20:99:b5:8b:21:48:9c:0d:60:fc:b4:b1:23:ff:63:
0f:7a:74:3d:d4:ce:31:e1:2d:e8:51:c8:33:2d:09:
f2:f1:04:83:dd:37:11:7b:42:11:37:52:49:b6:9b:
7c:0c:41:3b:d0:00:8b:02:40:e1:8f:88:9a:28:da:
bf:dc:55:5e:75:4e:7f:76:63:7a:7f:86:bd:7f:18:
42:55:22:4e:bf:5b:91:e0:82:6c:ad:38:7b:ae:30:
d7:ac:a1:16:c9:aa:0a:8d:c9:e5:f0:ab:e2:fa:97:
69:d6:2c:1d:67:45:61:41:97:8c:15:05:ed:44:c4:
41:96:0f:bb:6b:b4:da:7b:7c:5a:5a:e0:55:30:11:
75:db:d5:43:31:4d:25:fc:23:a7:39:1b:95:41:f4:
79:42:2b:ad:18:0c:da:6a:8f:44:98:13:60:b4:4f:
a6:cd:6c:4a:32:79:04:ab:9f:d0:87:56:45:6d:45:
3d:13:15:06:1c:ab:ff:ad:81:13:76:4e:fd:6f:78:
fc:05:6b:4a:a0:a9:64:d2:3b:39:d0:9b:ef:87:6e:
8e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E2:51:2A:A5:D0:74:F7:38:71:81:76:49:E1:7A:08:94:F2:E2:27
X509v3 Authority Key Identifier:
keyid:1E:8D:20:5C:79:8E:D7:8F:3C:44:CA:0C:8F:28:52:E8:BE:C8:EA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ho0gXHmO1488RMoMjyhS6L7I6qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/kOJRKqXQdPc4cYF2SeF6CJTy4ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/298898-7454-402b-81e9-ee1bd344f015/1/Ho0gXHmO1488RMoMjyhS6L7I6qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.145.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d5:82:a9:d2:3b:98:93:eb:97:41:10:66:3e:0c:b6:ad:e2:
4f:c4:97:27:c8:e0:cf:30:93:7f:62:ea:ad:f4:16:89:4f:f2:
13:d7:2e:f8:d0:ad:38:66:cc:a3:d5:c0:f0:d2:58:c9:b7:e5:
2e:a3:55:03:62:77:a7:72:ec:df:ca:94:4c:47:42:da:4c:0c:
6c:59:4d:9d:63:55:1b:ab:03:29:f9:c1:85:dd:31:66:df:ad:
d5:1c:15:fc:65:c0:e4:34:ab:e4:aa:a1:0d:4a:fb:5c:15:e9:
be:21:50:c1:66:a1:e1:8a:db:c1:3a:3f:7b:4d:18:bf:f5:a5:
e3:26:c0:94:63:56:cb:a1:1c:ee:51:ed:6c:0b:31:70:3a:60:
3d:8d:cc:12:af:df:f4:b0:55:47:76:2b:68:ae:e7:d5:79:de:
c7:69:09:73:a4:9a:68:65:c3:01:7a:d0:f1:86:7f:c4:bd:7d:
ee:2c:b3:9d:86:44:fa:6c:2c:6a:08:52:3b:b3:57:a0:88:66:
15:39:2c:02:b4:38:da:1e:a9:68:37:3f:d1:8b:1e:91:a0:5d:
9f:e4:40:ab:fa:db:04:32:a8:02:02:fe:ab:fe:2f:11:70:cf:
9a:b2:70:64:17:1a:5a:c6:73:c4:9d:fb:f3:8a:19:45:7b:90:
23:ee:55:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:39 2024 by rpki-client on console-fra.rpki-client.org