Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/bKguIiIJc9z-qAWExt44bbkDX8U.roa
File: bKguIiIJc9z-qAWExt44bbkDX8U.roa (raw, json)
Hash identifier: iEVeqaY+nCD4+grt+XuvXhEZL/E71pApXR4W1LDoUFs=
Subject key identifier: 6C:A8:2E:22:22:09:73:DC:FE:A8:05:84:C6:DE:38:6D:B9:03:5F:C5
Certificate issuer: /CN=f7a58d1b12aeb5583328dda525d0698674bb1def
Certificate serial: 018CCA2A7E4A89246FECAC9483B71156655F
Authority key identifier: F7:A5:8D:1B:12:AE:B5:58:33:28:DD:A5:25:D0:69:86:74:BB:1D:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/96WNGxKutVgzKN2lJdBphnS7He8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/bKguIiIJc9z-qAWExt44bbkDX8U.roa
Signing time: Tue 02 Jan 2024 12:33:51 +0000
ROA not before: Tue 02 Jan 2024 12:33:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201117
IP address blocks: 185.245.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Mar 2024 22:47:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:7e:4a:89:24:6f:ec:ac:94:83:b7:11:56:65:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7a58d1b12aeb5583328dda525d0698674bb1def
Validity
Not Before: Jan 2 12:33:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ca82e22220973dcfea80584c6de386db9035fc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:20:26:d0:d9:39:c4:5a:d0:8e:77:c7:06:9c:
66:a6:41:fb:67:36:87:15:5f:ab:54:48:b2:81:71:
26:ce:bb:3b:76:02:a1:fa:f0:ca:a1:8c:d1:f8:cd:
d2:42:f1:95:27:2f:25:ae:e3:95:62:32:dc:3e:8e:
5d:3d:a6:47:d3:a4:00:bf:ae:95:04:4a:81:a0:ae:
41:8a:9c:f1:57:c9:74:1a:76:8c:ac:11:94:a1:10:
bf:85:1f:76:bb:0b:0c:f8:a3:45:c7:c9:cf:2f:6f:
1d:6a:d9:14:56:5c:ab:1e:4d:12:60:72:9f:0f:7b:
a2:b1:7c:fa:57:94:90:a5:81:1b:fc:89:ef:e0:77:
87:6a:d2:0e:22:47:19:5b:bd:b8:61:56:6a:b5:a0:
e4:9a:10:2a:55:1d:89:5a:be:80:27:90:f4:5e:35:
62:fb:c4:a1:11:4a:47:82:0b:97:75:13:69:5d:4e:
a8:84:e8:94:21:0c:72:38:76:7c:76:a5:86:da:e7:
b6:82:bb:21:f3:d0:65:36:02:e6:bb:61:a0:2f:85:
2b:65:da:e8:0b:c3:95:96:7c:2c:54:74:7c:94:bd:
21:a6:35:e7:b0:14:13:e1:d5:85:fb:92:45:44:1a:
1c:97:2a:3d:2f:aa:51:de:f9:f1:3b:ba:4c:44:f7:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:A8:2E:22:22:09:73:DC:FE:A8:05:84:C6:DE:38:6D:B9:03:5F:C5
X509v3 Authority Key Identifier:
keyid:F7:A5:8D:1B:12:AE:B5:58:33:28:DD:A5:25:D0:69:86:74:BB:1D:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/96WNGxKutVgzKN2lJdBphnS7He8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/bKguIiIJc9z-qAWExt44bbkDX8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/23e07b-e9e4-42a5-b8e0-a8d3838052d0/1/96WNGxKutVgzKN2lJdBphnS7He8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.156.0/24
Signature Algorithm: sha256WithRSAEncryption
89:ff:7b:c9:22:3e:72:1c:fc:a5:ee:96:c6:c0:65:4f:c2:44:
af:14:4f:b4:f5:d6:b5:90:eb:70:92:f5:46:bf:34:a9:9f:d7:
36:6c:64:e5:b5:e0:e7:10:95:d4:18:cc:a9:8c:4a:ce:48:ea:
f0:3e:f8:c6:ff:4d:7b:39:99:2b:9a:bb:8e:c1:88:20:14:6f:
28:d4:69:d4:22:cd:3b:b1:f1:99:5b:eb:f6:79:58:4b:b0:1f:
15:1a:75:17:ee:19:9b:98:9f:b8:5b:b0:e3:15:3f:47:b4:85:
ee:ce:23:52:d8:ae:f4:c8:34:9a:fc:2a:72:7a:0a:5b:f8:8d:
d5:00:e6:ae:58:3d:18:2d:d2:bf:0c:97:47:28:4b:a2:85:64:
a4:9c:8c:d9:18:66:76:d1:08:82:1a:c7:75:d9:d4:55:c4:6c:
6c:a5:ea:72:7c:a9:9f:fd:26:25:6b:bb:d4:f6:0e:94:e2:09:
4b:02:53:5c:d6:d8:b7:c9:d9:46:f5:d9:71:a2:a2:21:76:48:
0d:de:e7:71:e2:03:82:ef:b1:8c:cf:d0:4e:e6:95:c7:73:e4:
58:a7:9d:d7:29:09:73:0c:7d:a5:d6:e7:c4:05:68:8b:75:c3:
81:21:2c:c6:b3:c0:28:40:6a:b5:80:df:3d:07:21:ad:85:86:
40:af:00:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 29 01:36:11 2024 by rpki-client on console-ams.rpki-client.org