Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xx3J6Qy_G5OiK308vIR9Mfk2mEc.roa
File: xx3J6Qy_G5OiK308vIR9Mfk2mEc.roa (raw, json)
Hash identifier: 19irZWEV/naay/Y5NRtLnJKyw+fm8yVdTwXJZ8TvUQI=
Subject key identifier: C7:1D:C9:E9:0C:BF:1B:93:A2:2B:7D:3C:BC:84:7D:31:F9:36:98:47
Certificate issuer: /CN=c42708df93954aac601aef1835bd5d69245fb02f
Certificate serial: 01890120DA53AD56D00ABC751D3C950FE7D6
Authority key identifier: C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xx3J6Qy_G5OiK308vIR9Mfk2mEc.roa
Signing time: Wed 28 Jun 2023 08:31:17 +0000
ROA not before: Wed 28 Jun 2023 08:31:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8648
IP address blocks: 185.117.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Sep 2023 07:10:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:01:20:da:53:ad:56:d0:0a:bc:75:1d:3c:95:0f:e7:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c42708df93954aac601aef1835bd5d69245fb02f
Validity
Not Before: Jun 28 08:31:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c71dc9e90cbf1b93a22b7d3cbc847d31f9369847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:39:bb:d2:12:90:ae:3e:42:50:e2:9c:9f:de:
bf:e8:75:2e:13:26:b7:df:99:f9:c0:c3:79:e3:d6:
3f:8f:44:29:8e:7c:a5:08:2b:33:48:8a:85:fe:07:
97:cc:0c:63:10:f5:de:e0:a1:5a:e7:22:96:ea:7f:
e5:2b:c9:b8:3d:df:17:e0:3e:df:1c:21:76:f9:76:
78:5b:af:9d:42:53:d2:72:61:14:6a:cf:c1:43:fe:
bd:70:be:d6:56:38:d1:94:ac:55:08:ed:bd:88:a4:
bf:0e:b4:c4:23:f9:1a:0a:e8:e8:ef:58:8f:90:0c:
5d:07:c8:82:ed:15:3c:e9:03:89:78:bb:06:5b:25:
a1:c5:96:75:84:14:90:ef:2a:db:5d:4a:b6:0f:fb:
4a:09:b0:01:b1:2f:71:a7:74:45:a1:51:5c:7a:d1:
34:27:c6:de:90:e5:64:67:4b:11:95:ad:4e:65:a8:
5e:11:4e:08:06:05:ad:3d:64:0e:ad:ee:52:21:4d:
2c:7e:0a:75:c8:10:1b:dc:43:86:c6:a2:20:9d:11:
65:17:6e:4d:c9:0d:fb:98:67:7a:43:70:3b:f1:1e:
85:a5:40:ef:dd:1e:4a:a3:bc:52:ba:61:5c:66:a7:
df:c1:fd:60:26:a1:9c:da:7b:2d:69:a8:08:8e:87:
af:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:1D:C9:E9:0C:BF:1B:93:A2:2B:7D:3C:BC:84:7D:31:F9:36:98:47
X509v3 Authority Key Identifier:
keyid:C4:27:08:DF:93:95:4A:AC:60:1A:EF:18:35:BD:5D:69:24:5F:B0:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xCcI35OVSqxgGu8YNb1daSRfsC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xx3J6Qy_G5OiK308vIR9Mfk2mEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f617a5-3240-48c4-b716-741c1d8dea2b/1/xCcI35OVSqxgGu8YNb1daSRfsC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.117.248.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:e1:45:ee:bb:cf:62:f5:d2:ee:a6:6a:02:4a:91:72:00:a0:
83:80:ad:e1:f1:69:a5:d0:5d:2d:1e:a7:3b:22:7c:c7:7c:70:
61:b6:b2:ad:aa:5e:99:2c:59:52:bc:c1:03:b9:e2:d9:c7:7f:
4b:16:f8:4f:f5:7e:6e:9e:72:3f:97:99:e1:42:74:a8:8d:f4:
0c:db:62:84:4e:23:eb:15:d4:82:7e:f9:60:6e:ce:67:3d:a5:
7e:c5:e4:85:61:08:b1:1f:9d:e0:50:12:8b:9c:12:cf:4c:1f:
ea:b7:b7:69:a2:a9:de:07:c0:f7:4a:0f:28:d1:74:91:db:72:
a0:b8:d9:72:e9:d4:fd:9a:ea:51:77:e2:e5:4f:d4:45:ae:30:
a7:fa:81:2c:91:c5:17:79:be:11:6c:d8:e0:53:fb:3a:0b:2c:
f2:45:c9:07:60:9f:09:82:1d:7e:67:45:d8:f3:27:47:e5:55:
f2:61:2f:90:ba:63:2a:06:67:a5:c0:0a:9e:2d:6d:a2:1d:37:
18:08:db:6a:5e:a1:26:3d:c0:2e:d5:bc:2a:d9:37:ca:64:c3:
a5:61:4c:09:b5:7c:12:ae:a6:5e:ab:6b:48:3a:70:c5:cc:66:
72:b3:4c:40:ef:f7:76:34:7b:b4:60:eb:3b:aa:b9:8a:35:0b:
f6:6c:c7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:44 2024 by rpki-client on console-ams.rpki-client.org