Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/z18oyNf2gT7Be-WgyjAqOcW3WZg.roa
File: z18oyNf2gT7Be-WgyjAqOcW3WZg.roa (raw, json)
Hash identifier: N34aumoy0jGQhFdwM5xS5LuP1gJnS2IOZNeX1lrVeWo=
Subject key identifier: CF:5F:28:C8:D7:F6:81:3E:C1:7B:E5:A0:CA:30:2A:39:C5:B7:59:98
Certificate issuer: /CN=7b88d4a4ab18a59b664dabafdb3880dc35b22b91
Certificate serial: 01856C780C384D69DC9232AD6A6A59035796
Authority key identifier: 7B:88:D4:A4:AB:18:A5:9B:66:4D:AB:AF:DB:38:80:DC:35:B2:2B:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e4jUpKsYpZtmTauv2ziA3DWyK5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/z18oyNf2gT7Be-WgyjAqOcW3WZg.roa
Signing time: Sun 01 Jan 2023 08:34:44 +0000
ROA not before: Sun 01 Jan 2023 08:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64462
IP address blocks: 195.80.233.0/24 maxlen: 24
185.83.108.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:0c:38:4d:69:dc:92:32:ad:6a:6a:59:03:57:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b88d4a4ab18a59b664dabafdb3880dc35b22b91
Validity
Not Before: Jan 1 08:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf5f28c8d7f6813ec17be5a0ca302a39c5b75998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5a:12:3b:6f:70:b9:b1:c1:5d:eb:e7:17:29:
12:dc:be:90:8e:95:1c:8e:2d:00:2e:48:f6:51:99:
f0:1d:47:16:63:bb:93:8f:2d:77:d2:a8:87:8a:b9:
e6:d8:0d:fa:4b:87:69:55:4e:2f:0f:db:a6:0e:dc:
d0:ff:4f:5b:b5:8d:16:1f:31:61:ee:8e:c2:e6:a3:
f7:66:35:6b:0f:02:bb:2d:f2:93:1a:51:2a:bf:a3:
21:6d:e4:75:af:a0:f0:b8:3c:76:d8:8c:47:39:64:
c5:cc:7e:64:d3:d3:6d:ae:11:72:0c:dc:4f:cc:f5:
69:f6:f0:1b:2c:6c:59:dd:f1:51:8c:01:17:8f:c7:
1f:4a:49:1e:52:23:1e:44:f5:30:ad:27:c0:18:00:
c5:84:1c:79:10:b1:64:19:cc:5a:46:fb:df:ba:41:
04:81:da:d2:8b:0a:b2:d1:fc:cf:3d:0b:6e:4e:fe:
a9:58:d3:c4:b5:f8:33:c2:5e:b1:25:c7:f4:29:fe:
7c:ea:71:07:0c:14:42:d3:0c:36:bf:7c:61:63:66:
98:8a:1c:1e:cc:56:a5:b7:78:5d:88:be:81:6c:ec:
88:70:ef:40:1b:3b:a1:a8:df:4e:d6:81:51:7e:c5:
f7:ae:7a:4f:83:df:63:bd:a0:81:43:c6:ba:50:4d:
7f:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:5F:28:C8:D7:F6:81:3E:C1:7B:E5:A0:CA:30:2A:39:C5:B7:59:98
X509v3 Authority Key Identifier:
keyid:7B:88:D4:A4:AB:18:A5:9B:66:4D:AB:AF:DB:38:80:DC:35:B2:2B:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4jUpKsYpZtmTauv2ziA3DWyK5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/z18oyNf2gT7Be-WgyjAqOcW3WZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2048e4-818c-4601-b023-743765bd0f3e/1/e4jUpKsYpZtmTauv2ziA3DWyK5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.108.0/22
195.80.233.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:3e:e4:fa:ae:79:32:76:06:35:29:b1:16:83:3a:8e:aa:92:
6b:dd:7d:55:c9:d5:5a:9f:16:b8:83:15:c3:14:78:93:6b:db:
db:57:a3:b4:1e:c4:c1:c2:eb:43:f3:83:c8:de:af:41:cf:6c:
1e:5c:6c:08:95:f9:55:86:ef:49:81:b3:d6:f4:13:ea:ae:48:
3f:b5:e6:8a:e1:47:17:e9:46:59:b3:5e:76:70:bd:31:d2:6b:
a0:b8:d7:6b:bb:6a:2f:e4:75:40:c5:d2:a4:f3:51:26:8b:ca:
dc:d9:8a:90:f5:9d:d8:ac:62:ad:41:23:a3:ba:b1:16:cb:44:
98:cb:6b:e5:b5:5e:0b:ee:98:ce:5f:d7:94:f5:6f:d5:26:d3:
e2:af:6b:55:9d:5e:46:09:56:29:97:65:2d:d1:26:79:7f:46:
38:ee:a2:4a:bb:e5:97:b1:38:1e:74:d8:68:38:e6:87:a4:c3:
a6:ad:4a:04:2e:79:39:d9:e2:5e:7d:fd:72:35:9e:7b:dd:a9:
ed:b1:79:53:2c:cc:c8:3e:9f:c0:19:20:d7:9e:b8:e5:6c:40:
c8:dd:91:28:08:9f:5a:f7:4b:8a:6a:da:d2:62:a6:c3:ae:71:
1a:44:a6:d3:1b:6d:a9:d0:c0:56:90:4f:5f:f7:8e:c3:d8:3a:
89:a8:f4:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:52 2024 by rpki-client on console-ams.rpki-client.org