Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/f--T-bBdLYl8EdiDoWTTHczoNmo.roa
File: f--T-bBdLYl8EdiDoWTTHczoNmo.roa (raw, json)
Hash identifier: 1t/INKvUCYGLpwjgVTFL5/Qy9f6rSSGoZeBN9K6A14I=
Subject key identifier: 7F:EF:93:F9:B0:5D:2D:89:7C:11:D8:83:A1:64:D3:1D:CC:E8:36:6A
Certificate issuer: /CN=9e441e9e705ada3f9c1e827cd276dbd097487608
Certificate serial: 0189DA9E85C214842817ED463689C11B2DCF
Authority key identifier: 9E:44:1E:9E:70:5A:DA:3F:9C:1E:82:7C:D2:76:DB:D0:97:48:76:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkQennBa2j-cHoJ80nbb0JdIdgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/f--T-bBdLYl8EdiDoWTTHczoNmo.roa
Signing time: Wed 09 Aug 2023 14:06:09 +0000
ROA not before: Wed 09 Aug 2023 14:06:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28889
IP address blocks: 85.255.146.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:da:9e:85:c2:14:84:28:17:ed:46:36:89:c1:1b:2d:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e441e9e705ada3f9c1e827cd276dbd097487608
Validity
Not Before: Aug 9 14:06:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fef93f9b05d2d897c11d883a164d31dcce8366a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1b:a1:fe:54:ee:f0:94:24:92:74:8f:ac:93:
78:ea:e4:48:79:66:28:77:18:85:f8:86:76:6d:ab:
4f:e5:96:59:c7:31:de:fe:a8:36:4f:5c:c7:1d:09:
be:65:76:85:f1:73:a9:b1:c5:9a:57:58:53:e1:4f:
ac:fd:a7:8b:3e:c2:6b:5c:5e:ec:f9:44:5d:0c:17:
31:24:cd:00:58:fa:e4:7f:9d:0e:81:2a:f7:60:22:
e0:84:6c:95:cd:99:e2:b8:6c:db:7f:6f:f1:1d:bb:
85:b6:14:92:92:3b:8b:1c:ce:cd:fd:71:4d:ce:52:
69:06:a4:0e:ed:e4:3f:64:41:2f:e7:8d:9b:0f:0c:
51:ac:00:fa:6b:04:b9:27:9f:06:94:93:96:0a:3e:
18:27:ea:bf:ae:3b:66:da:4e:37:6a:c7:81:3c:b0:
42:fa:79:bf:2e:80:cf:96:f5:8c:a6:b0:1a:e5:22:
6f:62:1a:8b:ee:e0:3d:0e:43:46:12:d0:57:89:be:
30:c0:8a:3c:e8:59:0b:84:00:bd:11:fb:5b:31:7e:
0d:d6:85:7c:52:59:cd:6a:62:5b:59:1b:18:7e:4a:
e5:e1:a3:69:bf:a2:e6:12:c1:c0:58:e6:06:cf:31:
fa:00:7c:c6:86:f4:c4:3b:f3:4f:3e:a9:dd:3a:98:
3d:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EF:93:F9:B0:5D:2D:89:7C:11:D8:83:A1:64:D3:1D:CC:E8:36:6A
X509v3 Authority Key Identifier:
keyid:9E:44:1E:9E:70:5A:DA:3F:9C:1E:82:7C:D2:76:DB:D0:97:48:76:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkQennBa2j-cHoJ80nbb0JdIdgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/f--T-bBdLYl8EdiDoWTTHczoNmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ce16f7-b868-4b4c-9d9b-932d16b08df0/1/nkQennBa2j-cHoJ80nbb0JdIdgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.146.0/23
Signature Algorithm: sha256WithRSAEncryption
18:b4:91:5e:86:51:0e:1b:a5:59:90:03:54:31:e8:2c:e3:6e:
84:10:58:4d:db:0e:2c:01:53:06:f9:7f:eb:64:aa:db:d2:60:
9c:6b:98:53:16:0e:71:93:ad:f2:0b:f7:96:ac:01:60:41:e1:
a4:2c:07:75:af:b4:de:c7:b3:55:e1:a8:cd:71:37:e7:1c:b3:
88:f1:e2:0b:35:f0:51:bf:b0:df:16:61:28:96:a0:f4:c0:a1:
b1:cb:b7:6c:57:0b:27:79:b2:12:c0:56:6d:35:3b:b3:42:45:
80:47:a3:21:3a:55:d8:fd:86:b0:c5:d0:53:ec:b1:ae:03:82:
f2:d6:70:02:1f:af:3e:14:32:29:50:bf:48:1d:ba:ed:e6:4e:
ef:4b:60:b2:b6:91:a1:96:e9:e5:af:42:aa:b8:57:fa:17:18:
d9:71:f0:27:8b:45:79:df:6e:ad:c4:75:93:a9:95:bc:1a:c5:
df:c2:3e:b5:99:c4:6f:c0:c6:e0:73:27:22:d4:fb:25:f7:c6:
ca:75:1b:d3:15:14:a5:ba:22:89:7d:f6:38:6c:47:42:09:ef:
9d:45:07:e5:0c:3b:9c:dd:87:e5:cb:05:bc:ad:c1:ce:47:e4:
82:03:3a:c5:16:68:ec:41:77:de:69:b0:96:6d:fd:ca:54:fd:
65:b7:54:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:44 2024 by rpki-client on console-ams.rpki-client.org