Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/8thQmGFT-D4CxVLIlJi_1U7yC68.roa
File: 8thQmGFT-D4CxVLIlJi_1U7yC68.roa (raw, json)
Hash identifier: sP1Hbmlnapiv504VMXC6Uw47MFfDQNO4V9sk/VLotDU=
Subject key identifier: F2:D8:50:98:61:53:F8:3E:02:C5:52:C8:94:98:BF:D5:4E:F2:0B:AF
Certificate issuer: /CN=b40d494333cb4d9e5fd10c846c47cf56445c503a
Certificate serial: 01856C7816359B47AD8B1DA7AC335E821E6F
Authority key identifier: B4:0D:49:43:33:CB:4D:9E:5F:D1:0C:84:6C:47:CF:56:44:5C:50:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tA1JQzPLTZ5f0QyEbEfPVkRcUDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/8thQmGFT-D4CxVLIlJi_1U7yC68.roa
Signing time: Sun 01 Jan 2023 08:34:47 +0000
ROA not before: Sun 01 Jan 2023 08:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.145.178.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:16:35:9b:47:ad:8b:1d:a7:ac:33:5e:82:1e:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40d494333cb4d9e5fd10c846c47cf56445c503a
Validity
Not Before: Jan 1 08:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2d850986153f83e02c552c89498bfd54ef20baf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:59:c9:cf:b4:23:20:92:b1:c5:d4:9c:0e:60:
e2:bf:96:fd:a2:8b:79:d1:e3:1a:4b:86:25:20:5f:
68:aa:99:45:dc:3b:de:3d:75:12:d0:eb:d6:6d:c3:
f6:f9:0c:ca:4b:a8:55:af:9f:84:09:2d:bc:2b:8d:
71:80:0a:fe:70:61:d2:d7:27:ca:77:a1:63:a0:7a:
ab:2d:12:f8:39:52:a0:a1:db:2c:36:13:3d:5e:35:
04:eb:18:83:fa:dc:cb:c2:85:d7:8a:7f:3d:92:c8:
23:88:39:b7:f9:5e:77:41:25:f7:8f:56:7e:69:21:
dc:85:66:ef:f7:1c:4d:6b:6b:e9:1b:fe:75:37:5e:
f5:4d:bf:eb:be:9c:71:1b:71:ee:6a:7d:52:74:33:
dd:5d:b7:33:9a:d7:51:e4:1f:0d:7e:70:83:67:b2:
a5:62:a1:f7:7a:89:42:d8:99:de:26:1c:b5:c8:e4:
16:5e:92:c3:3f:a6:3b:53:89:2b:dc:03:57:77:13:
6f:bc:e3:2c:f3:44:16:26:da:ba:9d:07:bc:8c:1f:
c2:4a:08:2a:69:4a:ac:90:86:2d:8a:5a:2a:e5:92:
99:0d:d4:76:65:8c:96:10:73:7b:65:c2:7f:d2:78:
0e:8f:49:67:e9:90:65:b4:77:b2:72:b7:5d:40:9c:
7a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:D8:50:98:61:53:F8:3E:02:C5:52:C8:94:98:BF:D5:4E:F2:0B:AF
X509v3 Authority Key Identifier:
keyid:B4:0D:49:43:33:CB:4D:9E:5F:D1:0C:84:6C:47:CF:56:44:5C:50:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tA1JQzPLTZ5f0QyEbEfPVkRcUDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/8thQmGFT-D4CxVLIlJi_1U7yC68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/2a7bf4-3454-4d14-9e0c-183f9975fc94/1/tA1JQzPLTZ5f0QyEbEfPVkRcUDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.178.0/24
Signature Algorithm: sha256WithRSAEncryption
11:4f:75:6e:5e:9d:b5:df:a5:a5:b3:31:db:86:18:e2:24:d9:
a7:f1:1c:07:55:0c:45:4a:da:71:39:57:b5:b3:0e:3f:ef:36:
4d:77:1d:9e:b3:94:13:47:a6:bb:31:8a:3d:8f:af:ae:6d:28:
7b:5b:72:5f:be:08:5c:ee:4e:0a:2f:34:ba:5a:67:b5:f4:cb:
fa:3f:cb:94:54:bd:ad:67:c7:d1:33:45:b9:7e:07:de:3c:69:
fc:43:c5:29:88:da:6e:b6:a0:19:c7:83:4a:63:40:c7:57:7c:
b4:1a:4e:0a:4b:44:c9:5a:10:18:0f:fb:6d:7c:00:f9:0a:86:
30:54:41:73:70:07:b2:5f:51:f0:5e:31:d6:a7:ad:2d:8a:ea:
22:79:e2:a0:1d:22:c9:86:36:5d:7e:3a:67:22:45:48:61:8c:
03:96:61:f0:7a:01:39:59:75:30:68:c0:d0:1c:d4:f7:35:b4:
25:af:dd:e6:e6:ad:c8:ea:5d:fc:09:13:bb:b9:22:fd:21:e4:
c4:ed:dc:9f:3b:08:46:cb:68:f9:a0:70:1e:9b:b1:81:9e:dc:
09:ff:ce:99:66:6b:9c:c3:fc:c8:18:2f:75:dc:be:af:63:f1:
c9:3d:ed:fd:57:65:0c:90:3a:c9:da:82:68:b8:c0:39:c0:09:
0e:8f:9e:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:17 2024 by rpki-client on console-fra.rpki-client.org