Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/8-RDF1kChRUX35KZFjnJ1z-yers.roa
File: 8-RDF1kChRUX35KZFjnJ1z-yers.roa (raw, json)
Hash identifier: ocKX/pEvoVoiP243o9MUc4RORZN75R1cBLmvai+QE1g=
Subject key identifier: F3:E4:43:17:59:02:85:15:17:DF:92:99:16:39:C9:D7:3F:B2:7A:BB
Certificate issuer: /CN=e1c838891b51e067ea2ebf9a44d9680148562e96
Certificate serial: 01857094E2F332E2619DB5526B3E0657B16A
Authority key identifier: E1:C8:38:89:1B:51:E0:67:EA:2E:BF:9A:44:D9:68:01:48:56:2E:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4cg4iRtR4GfqLr-aRNloAUhWLpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/8-RDF1kChRUX35KZFjnJ1z-yers.roa
Signing time: Mon 02 Jan 2023 03:44:43 +0000
ROA not before: Mon 02 Jan 2023 03:44:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31087
IP address blocks: 185.97.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:94:e2:f3:32:e2:61:9d:b5:52:6b:3e:06:57:b1:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1c838891b51e067ea2ebf9a44d9680148562e96
Validity
Not Before: Jan 2 03:44:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3e443175902851517df92991639c9d73fb27abb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e8:fd:31:6c:76:53:e2:d9:3a:1a:fb:71:d3:
6d:3d:9c:2d:4d:31:08:0e:09:a4:3f:02:40:ca:72:
12:73:36:32:d0:c2:75:20:5b:e1:8f:3b:b8:aa:c0:
b3:a1:81:ed:a1:55:40:ac:a2:4a:f7:69:f4:a8:f9:
a1:5e:66:3b:7f:9d:b3:84:34:40:bc:c1:e0:59:c9:
67:bd:6c:b4:d0:33:32:49:39:ef:c3:f9:32:dc:9e:
ce:dc:dd:7b:ba:aa:64:ec:6b:92:87:63:64:cd:24:
3d:e7:cc:c1:57:54:45:eb:67:f1:0e:5f:fd:79:bc:
ab:91:21:c9:13:26:73:15:d9:21:d3:29:cd:68:86:
8d:27:e9:39:28:75:68:00:6d:b0:7a:bf:ab:0b:77:
eb:a3:4a:4c:ed:16:77:52:df:84:23:af:3f:fc:cc:
c1:2f:e7:30:cd:68:08:31:eb:86:cb:da:da:ae:65:
55:23:1d:7f:71:3d:e5:30:eb:57:00:91:a4:19:19:
f8:63:82:95:af:30:1c:24:ec:01:49:1d:8e:b1:8f:
13:de:7e:cd:d6:64:6b:72:9d:82:5d:b2:7f:ef:4d:
23:89:24:88:28:63:ce:00:f0:90:d8:95:14:15:a5:
a5:ab:9e:ad:e8:b2:f3:a5:82:02:e9:19:41:5e:55:
1f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E4:43:17:59:02:85:15:17:DF:92:99:16:39:C9:D7:3F:B2:7A:BB
X509v3 Authority Key Identifier:
keyid:E1:C8:38:89:1B:51:E0:67:EA:2E:BF:9A:44:D9:68:01:48:56:2E:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4cg4iRtR4GfqLr-aRNloAUhWLpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/8-RDF1kChRUX35KZFjnJ1z-yers.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/45d3f3-7eca-4c14-aaf7-15b39134c41e/1/4cg4iRtR4GfqLr-aRNloAUhWLpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.220.0/22
Signature Algorithm: sha256WithRSAEncryption
87:a6:0d:d5:c4:e6:64:bf:2d:b3:fa:87:7e:c1:1f:50:f6:5c:
d1:bc:d7:b1:05:ee:02:e5:7e:6b:de:42:45:89:6a:3a:c0:b1:
df:ef:2d:af:75:a4:b6:66:25:6e:dd:97:9d:7e:c0:dc:9c:6f:
a8:83:e7:e2:43:61:fd:9b:fb:b1:34:06:36:74:0a:a7:7d:00:
8c:2e:e1:70:3b:4b:02:21:27:c5:4d:14:1c:8a:3a:13:3d:fd:
3a:e9:50:74:50:30:85:13:52:65:ba:05:31:1a:f0:5f:ad:65:
9e:7b:38:42:9c:59:35:2f:ee:80:80:0c:b1:f2:01:e9:47:51:
54:8e:00:98:e0:48:12:f5:da:ed:50:da:f9:54:fc:b8:9e:53:
af:c2:1b:54:0f:13:d5:70:d2:7e:19:51:04:8b:b0:eb:99:65:
5f:50:12:4f:fa:96:81:e7:31:42:f1:b7:d0:3d:f4:34:ee:53:
b1:c3:d0:57:80:84:ac:d6:d5:ab:0d:94:c5:ea:d3:ee:24:dc:
91:99:8b:36:b7:4b:65:97:72:0c:05:c1:30:31:0d:ca:dd:05:
98:05:e0:b3:3f:71:c1:18:e6:0c:a4:54:ed:c5:95:2f:cb:cf:
a7:2e:15:e6:49:9e:4a:5b:e1:76:bc:98:dc:b3:3c:7d:0a:a0:
12:19:16:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:04 2024 by rpki-client on console-ams.rpki-client.org