Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/07oTSK4OJRSfepZs9uEiTi_SCvw.roa
File: 07oTSK4OJRSfepZs9uEiTi_SCvw.roa (raw, json)
Hash identifier: 950lp5hv1kO2vd38irAFHQJToZvHBDxXLNXLema3M3Y=
Subject key identifier: D3:BA:13:48:AE:0E:25:14:9F:7A:96:6C:F6:E1:22:4E:2F:D2:0A:FC
Certificate issuer: /CN=71cec269f84d5641ff63a63d1f3997c8cfd4fe28
Certificate serial: 01856D53FE3193BB596CA12BB5FF7BE749E3
Authority key identifier: 71:CE:C2:69:F8:4D:56:41:FF:63:A6:3D:1F:39:97:C8:CF:D4:FE:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cc7CafhNVkH_Y6Y9HzmXyM_U_ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/07oTSK4OJRSfepZs9uEiTi_SCvw.roa
Signing time: Sun 01 Jan 2023 12:34:59 +0000
ROA not before: Sun 01 Jan 2023 12:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 185.228.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:53:fe:31:93:bb:59:6c:a1:2b:b5:ff:7b:e7:49:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71cec269f84d5641ff63a63d1f3997c8cfd4fe28
Validity
Not Before: Jan 1 12:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3ba1348ae0e25149f7a966cf6e1224e2fd20afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:32:20:dc:ff:02:f0:2e:0a:22:57:ee:5f:34:
ba:a6:c3:a6:15:37:94:62:bd:ca:47:b8:e8:ca:e8:
db:96:32:90:33:a8:24:06:0f:c1:2f:8a:29:bb:ca:
df:5e:79:b7:a7:a1:56:45:b3:4c:95:d5:4e:63:aa:
45:82:ad:33:fe:e3:56:03:76:b4:96:f8:32:9e:fc:
f4:b8:af:e2:30:e6:29:5c:64:63:0d:68:d2:06:43:
50:45:36:aa:16:01:50:79:64:f0:41:32:6a:88:c9:
a5:df:4d:65:51:d2:87:79:bc:1a:0c:0c:97:c4:89:
4c:df:9b:3c:c9:c3:17:74:8b:9b:bb:22:b9:46:bf:
d0:d2:46:fb:27:e3:5f:ef:f3:e7:8a:64:69:f7:cc:
63:6e:39:85:5e:2d:7e:6c:c6:06:a8:7e:d3:a8:6a:
47:9d:50:3c:2a:d2:23:b5:9c:2c:98:6c:e5:ff:f6:
96:9e:5c:fa:6f:8f:7c:f6:86:ca:05:6a:d9:b5:38:
d8:f5:c2:54:ca:3c:d7:40:34:58:0c:4e:0c:01:7d:
c4:fe:51:42:73:7d:dc:57:b3:4f:bb:23:ea:e4:7f:
e4:54:b1:db:33:25:0e:e0:15:f8:7c:b6:c9:8b:3e:
15:ef:14:49:0e:f6:2c:71:4c:0e:fb:84:38:67:02:
3a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BA:13:48:AE:0E:25:14:9F:7A:96:6C:F6:E1:22:4E:2F:D2:0A:FC
X509v3 Authority Key Identifier:
keyid:71:CE:C2:69:F8:4D:56:41:FF:63:A6:3D:1F:39:97:C8:CF:D4:FE:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc7CafhNVkH_Y6Y9HzmXyM_U_ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/07oTSK4OJRSfepZs9uEiTi_SCvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/8f551f-2425-434d-afb5-a762e9c0dd32/1/cc7CafhNVkH_Y6Y9HzmXyM_U_ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.192.0/22
Signature Algorithm: sha256WithRSAEncryption
39:b4:0a:6e:0c:09:80:65:cf:f1:bc:63:76:5e:a9:35:5d:3c:
d8:6d:a3:79:99:9d:ee:92:37:79:66:e8:5a:b4:96:af:dc:59:
20:46:94:68:5b:0e:20:8f:04:a5:92:e5:93:e0:aa:8d:1a:9e:
50:5e:37:66:8a:5c:89:53:a7:26:1b:bc:d3:40:7a:a7:11:63:
b4:5d:ec:fe:3c:34:c7:80:09:79:f9:ae:31:9c:35:8b:a5:52:
84:78:4e:46:75:fa:43:0d:cd:bd:45:3d:2b:b0:dd:81:f4:06:
34:b8:50:42:97:30:b0:65:cb:3f:c7:be:71:87:0f:08:26:b1:
0c:84:c6:2d:7d:c5:3d:68:64:7f:32:60:8d:17:32:76:9b:76:
6c:92:6f:f2:9d:17:ca:76:2f:8d:e1:a4:9c:c9:47:46:d4:7f:
ce:54:3c:93:2e:46:b6:19:da:2b:2a:36:de:9c:bc:4c:e3:9b:
04:8d:ea:83:c8:c4:8c:85:76:e4:7e:b7:19:ff:84:31:85:42:
7b:ee:bf:22:35:3b:c6:f3:24:d5:d1:43:66:54:e9:8a:dd:4d:
1b:8a:04:82:e4:02:72:ea:9d:47:55:b2:1d:15:88:ec:3e:0f:
83:5a:ee:54:a0:b5:fb:11:99:5c:04:1a:53:54:a6:03:4d:fd:
8f:df:b6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:59 2024 by rpki-client on console-ams.rpki-client.org