Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/7JpbTNaFcx60OV-Dc3ZSZO27Tbc.roa
File: 7JpbTNaFcx60OV-Dc3ZSZO27Tbc.roa (raw, json)
Hash identifier: vbaySiEEmUxmhdLo6LGO/lNTnQY+R0z/Ax5PGq0HMkE=
Subject key identifier: EC:9A:5B:4C:D6:85:73:1E:B4:39:5F:83:73:76:52:64:ED:BB:4D:B7
Certificate issuer: /CN=e1e8b7cab521e88e8022a36424544185538a7b33
Certificate serial: 018D2545DB8CE7C51901723992291649DB7D
Authority key identifier: E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/7JpbTNaFcx60OV-Dc3ZSZO27Tbc.roa
Signing time: Sat 20 Jan 2024 05:09:11 +0000
ROA not before: Sat 20 Jan 2024 05:09:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49981
IP address blocks: 185.154.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Apr 2024 19:03:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:25:45:db:8c:e7:c5:19:01:72:39:92:29:16:49:db:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1e8b7cab521e88e8022a36424544185538a7b33
Validity
Not Before: Jan 20 05:09:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ec9a5b4cd685731eb4395f8373765264edbb4db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f3:ec:da:b3:23:fc:4e:81:e1:01:45:a4:e3:
06:72:8c:a5:1e:66:8a:84:62:60:22:36:a8:00:24:
85:41:65:cc:1b:12:7b:3c:39:c6:b1:84:a0:02:47:
2b:d9:2a:7e:83:e5:7f:24:77:dc:93:4a:3b:b8:ba:
ba:b4:23:cd:b8:fa:fd:30:b6:ab:5d:aa:20:ed:54:
b5:7b:4e:4f:09:f9:f7:3d:fc:d1:54:39:0c:af:3c:
ef:bc:66:b6:fc:33:8e:ee:54:db:91:fd:8d:6c:76:
bb:dd:72:13:7a:96:61:e6:c2:da:c0:f8:53:8d:32:
23:8c:58:94:6c:f7:3e:56:b2:53:71:31:2c:64:2e:
3c:d4:e8:26:29:c5:84:ed:e8:2a:3f:bb:91:d3:18:
30:73:0d:0d:02:b2:f0:60:c5:c0:fd:cc:e5:a8:cc:
e2:7a:90:0a:21:1f:47:ec:07:0e:71:8d:83:95:0c:
22:aa:5f:1d:60:67:43:7b:03:69:0e:42:00:71:46:
10:11:c8:22:9e:4c:a5:37:63:45:c5:2b:c9:ec:74:
db:8c:5f:ea:5a:fa:92:6b:e1:e6:41:ec:51:5d:ab:
b1:42:c9:26:11:fa:d9:50:bd:28:50:97:37:e7:2e:
f5:f7:1d:19:93:f7:6a:aa:e3:fa:17:cb:b8:c7:42:
d7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:9A:5B:4C:D6:85:73:1E:B4:39:5F:83:73:76:52:64:ED:BB:4D:B7
X509v3 Authority Key Identifier:
keyid:E1:E8:B7:CA:B5:21:E8:8E:80:22:A3:64:24:54:41:85:53:8A:7B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4ei3yrUh6I6AIqNkJFRBhVOKezM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/7JpbTNaFcx60OV-Dc3ZSZO27Tbc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/14f2c5-46fe-4670-9dd6-21c58470b8d2/1/4ei3yrUh6I6AIqNkJFRBhVOKezM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.190.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:e6:2e:ea:44:7d:54:9d:1a:4d:bb:4b:b8:68:d7:55:b2:28:
5c:90:7c:bb:b0:80:7e:15:0b:b6:af:16:74:11:2a:17:d6:62:
5e:2f:c0:45:ef:6c:51:45:f5:98:64:05:99:ed:8a:45:2a:47:
1c:8b:46:19:4e:3d:2c:27:d7:16:4c:0a:f1:e1:17:ee:f9:3e:
5d:e6:f0:da:2c:6b:3e:f4:9c:54:d8:a2:29:0b:77:93:fb:e5:
a2:21:74:f1:f3:95:9b:73:00:5d:c0:29:bf:bf:83:d8:fe:d6:
66:87:d0:cd:0b:d9:ee:b5:e0:e9:d4:26:7e:88:d2:88:85:2f:
72:21:2b:f6:ec:4a:0a:49:d3:15:38:c8:98:bd:c4:be:e7:67:
fa:43:68:d8:35:59:70:ce:80:4a:39:0e:a9:50:85:01:a1:7d:
c5:e0:c4:0e:dd:6f:21:e6:dc:b7:7d:55:10:1c:fd:df:1d:46:
04:09:80:53:65:17:08:68:73:10:cb:6c:c9:09:a7:73:4e:4e:
8c:e3:50:1b:af:f4:d8:79:2d:4d:c3:6d:53:b5:70:fa:51:70:
51:53:31:43:1c:f6:f6:bc:88:a1:7a:2c:30:9d:73:7a:3c:24:
37:34:c9:59:c7:ba:d3:6b:73:8a:57:a6:fa:a6:46:dc:99:bb:
04:1d:b8:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 10 20:18:55 2024 by rpki-client on console-ams.rpki-client.org