Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/19SHYf6u9bOt-E64s1IeR9yZx3Q.roa
File: 19SHYf6u9bOt-E64s1IeR9yZx3Q.roa (raw, json)
Hash identifier: vLKWfL+SV+CcbSgvlQ9kP8iapZt9AErFNM3oSlNzqvY=
Subject key identifier: D7:D4:87:61:FE:AE:F5:B3:AD:F8:4E:B8:B3:52:1E:47:DC:99:C7:74
Certificate issuer: /CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Certificate serial: 01857042AD2351A0F206F93F031A93BA1DD9
Authority key identifier: 69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/19SHYf6u9bOt-E64s1IeR9yZx3Q.roa
Signing time: Mon 02 Jan 2023 02:14:55 +0000
ROA not before: Mon 02 Jan 2023 02:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.143.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:ad:23:51:a0:f2:06:f9:3f:03:1a:93:ba:1d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Validity
Not Before: Jan 2 02:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7d48761feaef5b3adf84eb8b3521e47dc99c774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cb:ff:29:25:24:12:42:84:b3:6d:ea:1d:1d:
91:a2:23:cf:6e:aa:1c:d0:2e:02:cb:a4:ed:5d:7f:
88:ac:4e:04:d0:21:af:30:42:d8:cc:c5:f4:52:f1:
12:a4:7b:a6:65:24:f6:70:5c:8a:4f:05:0b:38:92:
c6:0c:a3:2f:c5:eb:9f:d2:cc:57:27:1c:8a:75:55:
f0:a9:00:07:3a:14:14:41:fb:ca:20:11:16:c0:cc:
6e:20:55:ae:91:9c:7d:bb:ad:6c:30:a5:dd:39:5a:
5e:01:36:ad:ef:24:e0:9e:22:34:43:37:ed:3b:18:
ef:b8:7d:ee:16:f6:7c:6d:68:76:2f:cd:0d:95:9f:
f9:16:3d:a0:75:a5:9a:4d:b1:f4:34:c1:91:ca:cf:
38:f8:e7:a7:42:34:22:1c:ea:7f:b6:83:99:af:71:
a9:92:41:d1:0a:6d:24:09:75:88:38:4c:28:16:09:
5a:3a:fd:f8:fd:a0:54:a7:8b:37:01:f1:5f:df:01:
4d:31:3f:fc:f3:f3:b8:ac:a2:69:ad:da:a4:6d:c1:
ff:3c:61:f3:63:c2:93:01:53:21:36:b1:fa:a9:f0:
85:b9:da:93:f3:81:10:ea:04:86:f7:23:af:93:3e:
3d:33:b3:42:30:4c:be:57:5a:9c:2a:67:ca:c3:9e:
a9:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D4:87:61:FE:AE:F5:B3:AD:F8:4E:B8:B3:52:1E:47:DC:99:C7:74
X509v3 Authority Key Identifier:
keyid:69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/19SHYf6u9bOt-E64s1IeR9yZx3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/aXSAi64n2jxp7tr0QPw-2f2JOYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.238.0/24
Signature Algorithm: sha256WithRSAEncryption
46:78:b9:47:2e:9a:4f:b6:ce:78:ba:8c:42:ec:c8:a8:dc:2f:
68:2e:5e:39:33:42:7c:9f:34:f2:90:37:b6:57:a4:07:62:37:
bb:47:b7:e2:22:04:61:08:5b:7e:af:8c:02:e3:61:c4:cc:08:
ca:8b:71:3c:19:77:93:4d:6f:5e:b6:19:13:90:42:e9:e6:ea:
75:58:00:f0:b3:c2:dc:37:6b:c6:ed:f2:81:82:22:e5:16:43:
f9:54:f2:99:64:6d:9f:41:db:ff:54:6c:26:4a:74:3f:22:b5:
d9:1a:b2:be:08:19:36:2b:b2:f9:51:d8:cb:54:fc:48:02:55:
54:67:d6:59:ca:6a:af:31:8e:60:1a:a3:b3:e4:7f:84:45:7a:
b7:13:75:85:fe:18:0e:d5:40:7e:b0:16:53:35:4a:c3:d7:c4:
3b:23:ed:dc:db:7c:f3:2e:3b:a4:78:e7:8f:e8:eb:61:90:c2:
26:88:1a:af:25:c9:29:7e:2e:86:ec:bc:79:4b:b4:32:0b:f1:
fe:ef:ab:11:01:90:b9:1e:37:73:1c:6a:26:c1:5f:fd:6c:df:
e0:9c:01:e0:d5:98:ca:f5:12:00:82:04:80:0c:17:18:41:ed:
94:67:d8:f0:ae:be:33:ad:e8:78:ca:f0:c1:a5:fb:cb:3a:f5:
58:48:d9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:27 2024 by rpki-client on console-ams.rpki-client.org