Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/P8rZjTksy8dvm3ylj7kncTEqud8.roa
File: P8rZjTksy8dvm3ylj7kncTEqud8.roa (raw, json)
Hash identifier: W9Zm7qYvRADP6zrU7lOCEGPkVuQChuF3YWxdq9+unV4=
Subject key identifier: 3F:CA:D9:8D:39:2C:CB:C7:6F:9B:7C:A5:8F:B9:27:71:31:2A:B9:DF
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 01857139C61879A0C06B6C34F257D68AFF20
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/P8rZjTksy8dvm3ylj7kncTEqud8.roa
Signing time: Mon 02 Jan 2023 06:44:49 +0000
ROA not before: Mon 02 Jan 2023 06:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.255.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 20 Jul 2023 11:58:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:c6:18:79:a0:c0:6b:6c:34:f2:57:d6:8a:ff:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Jan 2 06:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3fcad98d392ccbc76f9b7ca58fb92771312ab9df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:61:a6:e8:d4:2e:fc:70:d2:ab:81:85:35:4a:
f8:a0:96:94:bc:2b:e1:e7:2d:70:a9:a3:7d:45:8b:
ed:3c:97:c5:ce:4f:9a:a5:3b:af:79:c6:c4:76:18:
21:41:57:07:f3:36:d6:50:81:a1:82:67:6d:48:57:
b2:93:7f:c2:30:66:cb:60:3e:15:6d:39:1a:b4:e3:
63:4c:ad:ba:eb:f0:41:47:e4:1c:f9:59:74:e4:58:
13:a7:ad:89:83:9b:9c:1d:54:38:34:b8:2d:68:19:
0b:31:cd:68:e3:b5:43:86:25:ba:ad:47:da:7e:c4:
20:a3:53:55:92:18:b1:f6:59:88:2a:9f:ee:76:18:
52:83:83:01:b2:f3:17:2c:02:05:6e:33:51:37:c6:
c4:a2:52:f4:53:34:b7:ca:31:a5:99:04:e5:d5:46:
2c:e1:0e:48:55:10:44:68:97:30:4d:a2:ee:a9:02:
6d:8e:ae:c9:19:a7:aa:4b:a2:d1:c8:72:72:f9:ff:
ce:5f:39:db:16:94:a8:eb:81:a0:5f:d5:aa:8e:ce:
93:37:df:ff:c7:c3:8d:26:d1:f3:1c:45:ff:5f:5b:
b1:cc:be:37:4d:3f:7e:bc:99:a9:15:1a:07:f3:cc:
4d:ac:5d:73:9a:76:54:12:15:d5:9c:40:88:38:ae:
59:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:CA:D9:8D:39:2C:CB:C7:6F:9B:7C:A5:8F:B9:27:71:31:2A:B9:DF
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/P8rZjTksy8dvm3ylj7kncTEqud8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.7.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:da:10:75:e4:c1:37:45:7a:25:ca:c8:ef:35:18:a1:c6:e8:
2a:96:5f:4b:02:d3:bc:5f:72:04:2c:5a:8f:0d:56:85:61:29:
4b:be:33:a1:7e:5c:e0:47:98:92:42:2f:2c:b3:0b:d5:0f:a3:
3d:fe:b7:e3:5f:65:f8:cd:4b:94:85:fc:6b:f2:d2:5d:c4:b3:
69:34:b1:5d:bf:05:a9:51:5c:b0:5f:b6:00:9e:df:a2:e5:24:
a4:67:3e:af:3f:f1:5b:68:be:bb:5f:71:f9:40:29:b0:24:28:
26:03:4a:a4:0a:0d:fc:fa:d5:fa:e0:ec:98:0f:63:7c:3c:cf:
1b:ab:9c:5a:ca:f2:8e:46:49:52:1f:98:11:6f:b1:25:a9:24:
22:af:06:3c:e0:cd:d3:a3:55:74:2b:42:be:27:c4:4f:a6:c4:
eb:eb:8d:d3:91:9f:7d:ce:7a:dc:4a:a0:d5:d9:fc:c8:e3:6c:
84:ed:59:06:97:cb:99:38:85:79:87:8d:ee:a2:40:69:85:d5:
97:e2:05:07:dd:cf:cb:48:45:93:c0:93:65:28:0b:47:ff:31:
ff:a6:f8:f3:39:71:08:92:90:19:bb:88:c9:69:68:79:a7:0b:
49:9a:14:64:fa:32:83:d1:d4:45:5d:70:02:30:4e:e8:9f:c7:
a9:14:80:5b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxOcYYeaDAa2w08lfWiv8gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGRmZjI0NzI2ZGYzZTc3ZjZmNGM4ZTA0MzY2MTNiMzUxMTBl
ZWFmMzgwHhcNMjMwMTAyMDY0NDQ5WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzZmNhZDk4ZDM5MmNjYmM3NmY5YjdjYTU4ZmI5Mjc3MTMxMmFiOWRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWGm6NQu/HDSq4GFNUr4oJaUvCvh
5y1wqaN9RYvtPJfFzk+apTuvecbEdhghQVcH8zbWUIGhgmdtSFeyk3/CMGbLYD4V
bTkatONjTK266/BBR+Qc+Vl05FgTp62Jg5ucHVQ4NLgtaBkLMc1o47VDhiW6rUfa
fsQgo1NVkhix9lmIKp/udhhSg4MBsvMXLAIFbjNRN8bEolL0UzS3yjGlmQTl1UYs
4Q5IVRBEaJcwTaLuqQJtjq7JGaeqS6LRyHJy+f/OXznbFpSo64GgX9Wqjs6TN9//
x8ONJtHzHEX/X1uxzL43TT9+vJmpFRoH88xNrF1zmnZUEhXVnECIOK5ZoQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFD/K2Y05LMvHb5t8pY+5J3ExKrnfMB8GA1UdIwQY
MBaAFN/yRybfPnf29MjgQ2YTs1EQ7q84MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzct
NjJiYjZkNjNlNTlkLzEvUDhyWmpUa3N5OGR2bTN5bGo3a25jVEVxdWQ4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jOC9hOTYwMjQtNjU1NS00ZThkLWFmMzctNjJiYjZkNjNlNTlk
LzEvM19KSEp0OC1kX2IweU9CRFpoT3pVUkR1cnpnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAuf8HMA0G
CSqGSIb3DQEBCwUAA4IBAQC82hB15ME3RXolysjvNRihxugqll9LAtO8X3IELFqP
DVaFYSlLvjOhflzgR5iSQi8sswvVD6M9/rfjX2X4zUuUhfxr8tJdxLNpNLFdvwWp
UVywX7YAnt+i5SSkZz6vP/FbaL67X3H5QCmwJCgmA0qkCg38+tX64OyYD2N8PM8b
q5xayvKORklSH5gRb7ElqSQirwY84M3To1V0K0K+J8RPpsTr643TkZ99znrcSqDV
2fzI42yE7VkGl8uZOIV5h43uokBphdWX4gUH3c/LSEWTwJNlKAtH/zH/pvjzOXEI
kpAZu4jJaWh5pwtJmhRk+jKD0dRFXXACME7on8epFIBb
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org