Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/xpp6AlE2ltgFf5EABisJWvGkXgM.roa
File: xpp6AlE2ltgFf5EABisJWvGkXgM.roa (raw, json)
Hash identifier: VCTtAjYOOUyWodzmlBL8xoiYJq50/hWfppMf9Gkysyk=
Subject key identifier: C6:9A:7A:02:51:36:96:D8:05:7F:91:00:06:2B:09:5A:F1:A4:5E:03
Certificate issuer: /CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Certificate serial: 01857042AC8269F8260063AD44BFBC14C782
Authority key identifier: 69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/xpp6AlE2ltgFf5EABisJWvGkXgM.roa
Signing time: Mon 02 Jan 2023 02:14:55 +0000
ROA not before: Mon 02 Jan 2023 02:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.143.239.0/24 maxlen: 24
185.143.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:ac:82:69:f8:26:00:63:ad:44:bf:bc:14:c7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6974808bae27da3c69eedaf440fc3ed9fd893988
Validity
Not Before: Jan 2 02:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c69a7a02513696d8057f9100062b095af1a45e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:da:1d:a3:25:bd:ab:c3:74:25:d9:2b:09:fa:
f0:42:48:ae:31:a4:d4:7e:6d:7e:b8:ee:2e:3a:02:
ff:2b:f6:b4:be:8c:87:4d:6a:da:5f:26:56:87:b5:
32:e7:f6:b9:37:f2:96:0a:9c:86:bf:0c:7d:a4:29:
d4:7a:cb:b9:dc:85:98:96:dc:19:68:69:6d:83:ae:
3b:94:b2:c8:db:aa:07:d2:5a:7c:36:ed:dc:04:32:
5b:93:6c:75:a7:7f:9a:ca:ba:5d:8c:6a:8b:8e:cf:
75:1e:cc:35:cf:84:6b:09:08:78:f2:72:6f:76:2f:
93:b7:1f:4f:38:46:3c:2d:0a:d9:87:78:f4:0a:30:
f3:b9:db:33:8c:dd:4b:e6:ae:54:22:20:b2:ac:f2:
fe:d6:84:69:6d:5c:29:d4:a6:1b:3c:ea:ac:de:0c:
d7:61:dd:b5:06:fd:9e:d1:47:f2:ac:8c:7a:b6:d1:
d1:92:be:5c:3e:aa:c8:f4:c4:e2:97:c8:30:ac:ea:
24:7d:fe:4f:5b:01:8e:ff:1b:0c:7f:0e:46:61:e1:
bf:82:97:37:01:d0:4e:d9:4b:e4:aa:3e:40:3a:45:
78:2f:35:c8:31:56:3e:64:34:39:92:f8:95:ea:7e:
48:8d:85:b9:00:13:7f:5f:f3:ec:71:ae:17:de:1a:
39:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:9A:7A:02:51:36:96:D8:05:7F:91:00:06:2B:09:5A:F1:A4:5E:03
X509v3 Authority Key Identifier:
keyid:69:74:80:8B:AE:27:DA:3C:69:EE:DA:F4:40:FC:3E:D9:FD:89:39:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aXSAi64n2jxp7tr0QPw-2f2JOYg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/xpp6AlE2ltgFf5EABisJWvGkXgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b9a470-2ba1-4893-aa25-721ccbfef077/1/aXSAi64n2jxp7tr0QPw-2f2JOYg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.236.0/24
185.143.239.0/24
Signature Algorithm: sha256WithRSAEncryption
40:a8:8e:06:86:e4:ad:26:74:21:61:1a:b8:ff:33:3c:85:47:
22:36:e1:06:10:c0:82:51:b6:39:8c:2a:d9:29:0e:82:d6:97:
95:e4:2a:aa:bc:36:97:75:d9:a7:1d:35:9c:cf:40:23:46:bc:
9a:69:12:f2:5b:09:18:d6:f0:7f:f4:4d:f9:5f:35:68:55:5e:
d0:a3:3a:9c:ec:22:4d:e5:9f:29:21:c5:65:e7:6a:f5:6c:6e:
15:bf:02:d3:52:df:fa:7c:30:d1:d6:fd:0e:e7:22:f0:fe:1c:
af:40:03:f2:9a:47:57:37:fc:4c:cf:06:3f:a9:f7:ec:7e:5b:
5a:95:14:8f:9a:f7:f2:0c:0a:72:34:c6:3d:6f:dd:7c:71:2b:
ea:8c:20:28:62:c8:83:2a:39:ad:40:85:06:9e:47:c6:b4:35:
2d:a0:8f:72:e1:0c:c2:f8:52:0a:10:01:cc:4b:02:82:9a:fc:
c1:0c:8e:23:09:f8:fe:51:2e:42:fa:49:23:4a:3f:1c:4f:66:
67:51:83:fc:53:9f:d0:33:dd:c9:4f:b4:bc:bc:b4:48:20:c0:
8f:c3:8c:f2:59:8d:38:68:2a:53:27:45:b5:a4:b6:43:8f:f1:
7a:99:5f:e1:6d:85:28:e4:e8:40:8e:9c:7b:ce:c0:25:5c:e3:
f1:2c:f2:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org