Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/n8qVaCsVaTa6P4XNQtQhu8TAE_c.roa
File: n8qVaCsVaTa6P4XNQtQhu8TAE_c.roa (raw, json)
Hash identifier: j0H2xptTAuwSyeDo+TzlcpG/sB9wIlrsdD1TMLELBBw=
Subject key identifier: 9F:CA:95:68:2B:15:69:36:BA:3F:85:CD:42:D4:21:BB:C4:C0:13:F7
Certificate issuer: /CN=5af1d525d9e1c8fee7f51c929984321912fff34c
Certificate serial: 018570E752A49352B91F96AABA1F284DA02A
Authority key identifier: 5A:F1:D5:25:D9:E1:C8:FE:E7:F5:1C:92:99:84:32:19:12:FF:F3:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WvHVJdnhyP7n9RySmYQyGRL_80w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/n8qVaCsVaTa6P4XNQtQhu8TAE_c.roa
Signing time: Mon 02 Jan 2023 05:14:46 +0000
ROA not before: Mon 02 Jan 2023 05:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47866
IP address blocks: 185.85.244.0/24 maxlen: 24
185.85.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:52:a4:93:52:b9:1f:96:aa:ba:1f:28:4d:a0:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5af1d525d9e1c8fee7f51c929984321912fff34c
Validity
Not Before: Jan 2 05:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fca95682b156936ba3f85cd42d421bbc4c013f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:72:ea:f0:dc:1e:d0:46:77:ad:18:7e:cd:6c:
30:46:98:e6:b5:7a:13:86:e1:5b:3d:87:24:9b:49:
30:8a:c3:34:56:86:92:d6:ac:f9:77:59:28:44:a6:
55:d9:a6:bb:91:e1:99:e3:68:80:9b:50:94:3a:8f:
4f:ec:9a:d4:93:2a:ba:89:30:ef:c5:70:21:ac:d0:
09:68:f2:64:94:1c:8a:f0:4a:b7:95:a4:8c:77:93:
68:20:6b:73:e0:8f:31:cf:8b:ea:1b:a5:21:0b:e5:
a0:27:0d:31:b7:4a:de:28:31:6b:0a:c9:e7:73:a5:
8b:0b:69:2a:ea:3c:5a:cd:85:e9:3b:b5:72:91:04:
e1:5b:a0:70:fb:dd:50:c3:42:cc:55:0b:a5:73:c1:
66:6d:10:0f:c1:a3:77:34:3d:61:f6:93:24:be:7e:
73:e4:93:12:bb:01:fb:d7:c7:bd:37:05:0d:e3:c0:
d1:05:c9:97:02:19:29:3b:ce:e8:50:e0:ea:7c:3e:
b3:d9:c3:f3:bd:f8:af:3d:c2:f4:24:fe:27:76:0e:
06:99:ac:0c:92:a6:5b:6e:62:b1:c0:6f:37:2f:51:
69:17:49:8c:c5:c5:ea:0f:d9:7b:0a:2e:08:07:01:
10:f8:28:42:28:41:0f:19:2b:04:d0:03:d2:da:e2:
1e:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:CA:95:68:2B:15:69:36:BA:3F:85:CD:42:D4:21:BB:C4:C0:13:F7
X509v3 Authority Key Identifier:
keyid:5A:F1:D5:25:D9:E1:C8:FE:E7:F5:1C:92:99:84:32:19:12:FF:F3:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WvHVJdnhyP7n9RySmYQyGRL_80w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/n8qVaCsVaTa6P4XNQtQhu8TAE_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d0fea6-22a1-4aa5-b50d-a114939cdaa5/1/WvHVJdnhyP7n9RySmYQyGRL_80w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.85.244.0/22
Signature Algorithm: sha256WithRSAEncryption
37:bf:15:0b:38:87:c4:06:3c:72:77:1b:2b:ea:2c:4b:89:a3:
a5:fa:9b:52:01:78:f3:0c:79:1b:c0:30:f4:40:5f:2c:9a:cc:
b4:ae:d1:67:f0:ba:c5:4a:b4:cd:d1:9d:19:3d:80:ef:46:3f:
7f:0c:27:7a:07:3e:ee:f7:3f:25:3d:8a:c2:e2:f7:dd:8b:bd:
38:86:09:26:ca:5c:2b:1a:95:27:b4:90:38:a9:05:fd:fb:ed:
52:70:7b:a6:c6:8c:6a:61:be:05:80:9f:ec:9e:d0:54:98:e5:
9f:ec:44:09:5a:02:78:6d:40:5f:e5:51:db:ec:d3:d9:b0:09:
73:d2:03:5c:65:28:a6:4e:50:29:44:5e:55:06:4d:b5:c1:55:
94:7b:1a:69:f0:c8:1d:61:7b:e8:a8:e0:06:51:fe:26:db:1a:
1d:34:2b:90:c5:1d:f2:62:85:59:fa:8d:75:42:fc:d4:f6:8f:
b3:62:f2:55:42:07:a8:4b:7b:9c:f0:93:23:3c:c2:62:1d:c2:
b5:14:a0:65:56:97:cc:16:93:c5:c0:a4:3b:6d:ad:35:0a:f1:
d0:3e:97:90:c0:39:1a:b9:49:d2:c3:4e:3c:cd:92:97:da:27:
cc:b3:40:b2:48:43:89:2d:67:57:50:a6:70:12:79:30:08:23:
fe:1b:e0:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org