Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/dc573d-a3db-41f9-8c3f-867965eb50ca/1/tDiICCC-QG8tiO9Kd2i7bRZhFwU.roa
File: tDiICCC-QG8tiO9Kd2i7bRZhFwU.roa (raw, json)
Hash identifier: 2l7leKW2obX8P1nc19V46aHOReQSMCj6i5L82diL6yw=
Subject key identifier: B4:38:88:08:20:BE:40:6F:2D:88:EF:4A:77:68:BB:6D:16:61:17:05
Certificate issuer: /CN=83b5b4913cc78e40803c00bec6b1a9dc48ff3684
Certificate serial: 018EA078E09FF71E15A1A50372F13A3B4325
Authority key identifier: 83:B5:B4:91:3C:C7:8E:40:80:3C:00:BE:C6:B1:A9:DC:48:FF:36:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g7W0kTzHjkCAPAC-xrGp3Ej_NoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/dc573d-a3db-41f9-8c3f-867965eb50ca/1/tDiICCC-QG8tiO9Kd2i7bRZhFwU.roa
Signing time: Tue 02 Apr 2024 20:21:00 +0000
ROA not before: Tue 02 Apr 2024 20:21:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 185.115.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 05 May 2024 08:10:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:a0:78:e0:9f:f7:1e:15:a1:a5:03:72:f1:3a:3b:43:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83b5b4913cc78e40803c00bec6b1a9dc48ff3684
Validity
Not Before: Apr 2 20:21:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b438880820be406f2d88ef4a7768bb6d16611705
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b8:9d:57:7d:52:15:12:7a:56:99:04:f4:58:
65:1c:7b:13:81:ab:f6:e5:0e:ab:c8:26:fe:a0:5f:
32:81:7d:57:dc:b7:5d:65:ba:8d:9e:46:81:80:10:
9a:63:48:7e:5f:b5:9e:2e:ab:a1:36:bc:f4:93:39:
e7:87:21:8e:c9:8c:65:9d:83:f3:ca:80:9d:85:ef:
e2:83:88:16:e6:d2:d3:e7:6f:ea:b6:d3:5a:00:69:
9a:bf:b5:b7:96:ce:55:45:02:e3:2d:b1:d5:9f:9c:
fd:73:ab:6b:10:a7:71:6a:90:65:69:b1:28:a9:36:
b2:fd:84:dc:38:1d:a9:33:0f:7c:68:3d:62:69:bd:
63:5b:54:9a:8a:e4:6d:ac:f1:3a:04:a7:ec:c8:d0:
8a:eb:0c:ff:b3:85:cf:e7:f5:53:8c:32:af:a3:cf:
6c:24:75:94:2b:2b:cd:b6:b4:89:30:c9:0d:f4:1d:
bb:13:95:79:9b:fa:84:ff:52:42:b7:cc:ee:98:f6:
0d:dc:20:8c:54:22:59:f7:ef:e3:78:a4:18:ef:6b:
11:2d:76:81:55:af:19:5a:3b:ff:7a:02:45:90:47:
71:d5:38:dd:b4:c9:3a:11:ed:6e:34:ef:ca:6d:05:
8c:42:3e:6c:41:cc:f7:6c:fb:83:b0:17:dc:b4:e8:
be:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:38:88:08:20:BE:40:6F:2D:88:EF:4A:77:68:BB:6D:16:61:17:05
X509v3 Authority Key Identifier:
keyid:83:B5:B4:91:3C:C7:8E:40:80:3C:00:BE:C6:B1:A9:DC:48:FF:36:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g7W0kTzHjkCAPAC-xrGp3Ej_NoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dc573d-a3db-41f9-8c3f-867965eb50ca/1/tDiICCC-QG8tiO9Kd2i7bRZhFwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/dc573d-a3db-41f9-8c3f-867965eb50ca/1/g7W0kTzHjkCAPAC-xrGp3Ej_NoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.161.0/24
Signature Algorithm: sha256WithRSAEncryption
75:17:f9:b0:71:dd:c7:46:68:0d:6d:cc:f9:fe:92:90:b5:22:
5d:a5:b3:c0:36:c0:59:b9:ac:37:a5:93:d3:6e:87:c3:50:b9:
df:46:5d:cd:b4:b0:4e:50:4d:6d:54:b4:38:22:aa:b0:27:2b:
5f:dc:9b:26:fa:aa:4f:25:f5:39:df:d5:d8:85:a5:2f:69:d6:
9d:5f:0a:c0:b1:f0:97:cd:55:33:58:5c:ce:ee:11:a6:1f:89:
d4:63:56:45:8f:0e:7e:dc:2c:bf:4c:13:da:d3:3f:08:f0:d8:
18:db:f6:6e:63:6b:cc:bf:c0:6d:d8:43:1a:ad:34:d8:15:ee:
37:c1:3f:37:bd:22:39:a0:d2:87:74:33:b7:b9:e0:24:47:80:
37:2e:6b:af:a0:3d:3c:20:48:e5:9a:b0:51:d1:c9:f7:58:ad:
61:e9:3d:56:69:96:4b:de:57:b2:3c:af:7d:ab:1d:41:c2:03:
9f:43:79:34:e3:1a:64:25:08:e9:02:39:e0:26:b7:e4:88:71:
e4:32:ab:0e:08:50:8a:53:51:b6:79:2c:16:2e:1a:a4:99:5f:
42:ee:60:96:e5:3b:84:49:35:0b:6b:e7:45:6c:96:d4:8c:62:
10:03:3d:f0:89:fd:6f:27:20:0f:c9:83:00:68:f5:73:2a:15:
50:26:87:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:06 2024 by rpki-client on console-fra.rpki-client.org