Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/eRW1IApoIsIEyca-hgXnWgQyziI.roa
File: eRW1IApoIsIEyca-hgXnWgQyziI.roa (raw, json)
Hash identifier: PNfnXbNhL7P/enS4TONAm+M7r4uUwkSxorPRcBonGsg=
Subject key identifier: 79:15:B5:20:0A:68:22:C2:04:C9:C6:BE:86:05:E7:5A:04:32:CE:22
Certificate issuer: /CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Certificate serial: 018E38EAA3FD9770042C05D8D6B0C5E9EE79
Authority key identifier: E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/eRW1IApoIsIEyca-hgXnWgQyziI.roa
Signing time: Wed 13 Mar 2024 17:44:45 +0000
ROA not before: Wed 13 Mar 2024 17:44:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.138.144.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 09:11:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:38:ea:a3:fd:97:70:04:2c:05:d8:d6:b0:c5:e9:ee:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e22d7eae21d8baee9de6940d8ce6b29d92a9031e
Validity
Not Before: Mar 13 17:44:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7915b5200a6822c204c9c6be8605e75a0432ce22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ab:8b:29:c1:a6:0b:7f:19:23:99:00:f1:85:
a2:08:d5:d7:6c:34:76:06:51:e0:55:17:9e:23:8b:
2d:7b:0b:13:27:b3:b5:a7:fa:aa:75:42:37:0e:50:
22:55:b6:2b:6a:65:ae:04:25:d2:1d:4b:09:77:37:
d7:ce:78:bb:38:b4:b3:f0:1a:48:ca:b7:5e:1c:fb:
39:ea:a2:f3:cf:b5:17:bd:c3:1c:50:cd:d5:fd:55:
78:26:33:f4:51:8c:f3:96:f0:59:a8:51:78:2b:89:
a7:39:83:b6:6f:29:ad:b2:54:75:12:4e:5e:71:b3:
4f:ea:6a:ba:8c:be:31:3c:14:56:a2:2e:20:d4:26:
10:9b:e4:94:ce:19:88:51:c6:0b:5e:43:62:39:f0:
82:6e:7f:a1:ca:79:6b:be:f8:bb:b6:3f:34:17:6d:
83:c2:b4:3e:90:b3:97:22:b9:b1:83:61:ac:59:70:
a2:24:f3:86:e5:49:4a:99:7d:93:c2:ee:3e:fe:d9:
ea:65:bf:f3:c2:9b:e6:02:ca:47:a2:81:00:0c:1d:
46:8a:ae:df:4c:df:e6:07:87:1d:9d:72:3f:f7:37:
5b:57:cb:86:9c:38:a2:eb:35:db:a2:0c:15:83:9c:
f0:99:22:98:1a:a3:bf:9f:1a:d5:c3:28:fa:1d:21:
f5:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:15:B5:20:0A:68:22:C2:04:C9:C6:BE:86:05:E7:5A:04:32:CE:22
X509v3 Authority Key Identifier:
keyid:E2:2D:7E:AE:21:D8:BA:EE:9D:E6:94:0D:8C:E6:B2:9D:92:A9:03:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4i1-riHYuu6d5pQNjOaynZKpAx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/eRW1IApoIsIEyca-hgXnWgQyziI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/ab8070-4f58-4634-9a44-387536d03a71/1/4i1-riHYuu6d5pQNjOaynZKpAx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.144.0/22
Signature Algorithm: sha256WithRSAEncryption
07:08:24:36:b0:da:d2:5d:31:39:4f:d7:ab:ec:96:ac:68:fa:
06:af:03:aa:24:b6:31:a6:6e:1a:d3:61:81:c9:1c:76:6a:d2:
ba:81:95:f7:cc:cd:91:77:08:fc:72:4f:b0:5e:b9:0a:32:37:
04:2b:98:91:11:dc:9e:f2:fe:20:6e:f5:90:ee:45:f9:30:be:
2b:84:95:84:ca:55:10:f4:72:8a:41:ce:bf:3a:c1:2f:53:f5:
05:81:ae:3d:d0:63:bc:ed:0b:5b:6f:14:86:08:f0:ef:9d:c3:
b4:b4:8a:88:bd:b8:35:e5:85:42:f2:8f:a9:42:89:fe:ed:1e:
32:6f:b4:a8:06:e7:55:5c:64:e5:db:91:23:96:16:7a:91:5b:
3e:bb:89:ee:26:d4:83:3c:50:80:e4:e1:7d:4c:dd:b0:30:b5:
cb:d1:0c:57:f2:71:39:11:46:7a:d3:6b:48:43:2c:3b:c2:a8:
e9:a8:82:fc:2b:b1:a2:b2:2e:31:b2:95:99:f4:70:b9:24:48:
70:19:56:4a:81:2a:25:47:07:ce:13:8a:09:a4:dc:1d:d9:70:
25:78:b8:b5:cb:49:71:b9:9e:44:0d:8e:db:f8:83:63:13:6a:
09:0f:3b:32:65:e7:fa:89:b3:5f:a5:6e:e8:1b:ca:31:ca:51:
d4:92:f4:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:59 2024 by rpki-client on console-fra.rpki-client.org