Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/8JKxqi8leLJRwdP6s7Cwv87w1mU.roa
File: 8JKxqi8leLJRwdP6s7Cwv87w1mU.roa (raw, json)
Hash identifier: o8OR/zvOsJPOEfYZ/nKv/cny40ayqlNf80k6SV75b6M=
Subject key identifier: F0:92:B1:AA:2F:25:78:B2:51:C1:D3:FA:B3:B0:B0:BF:CE:F0:D6:65
Certificate issuer: /CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Certificate serial: 01856D13BF9E9C50575F92A29EE114AC582B
Authority key identifier: 47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/8JKxqi8leLJRwdP6s7Cwv87w1mU.roa
Signing time: Sun 01 Jan 2023 11:24:48 +0000
ROA not before: Sun 01 Jan 2023 11:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201935
IP address blocks: 185.23.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:bf:9e:9c:50:57:5f:92:a2:9e:e1:14:ac:58:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e94ccb7b601da0ca09469f60f653640fed8c1c
Validity
Not Before: Jan 1 11:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f092b1aa2f2578b251c1d3fab3b0b0bfcef0d665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:83:b6:3f:61:b7:44:df:07:e9:3a:e5:17:19:
a5:91:a2:44:48:a1:6a:cb:f8:2d:b3:3f:0f:01:4b:
c5:60:68:2a:02:44:b2:33:f1:23:9a:af:d0:6d:e0:
c6:55:e5:1e:8f:f4:f9:f4:b4:04:cf:69:e3:43:d8:
ed:c9:c9:cb:de:e5:4a:92:1c:dd:88:1f:d6:f1:c6:
9e:c7:0b:5b:78:9b:73:54:57:87:24:48:43:15:52:
02:7f:61:8a:fe:d5:09:f5:10:84:88:93:e0:41:5a:
f9:84:ef:53:de:03:13:05:1e:05:72:85:8d:56:35:
2a:1e:a5:7d:c1:b8:bc:57:6d:7d:40:b6:c0:bc:ba:
7b:b4:4a:b0:e6:d9:5e:3d:fb:74:e5:89:48:56:58:
42:a9:20:d2:aa:b5:e3:cb:32:51:34:82:89:38:e4:
17:c1:4c:1f:a1:71:3a:09:d7:7a:45:3c:d0:17:75:
3e:a5:bb:af:79:cf:62:6c:c9:b8:2d:82:74:a2:d3:
20:a9:25:65:84:d4:52:3f:f2:ce:8c:07:1b:35:7d:
e2:79:f5:fd:ab:19:e9:26:17:34:42:9f:a6:75:0f:
c5:66:96:c3:a1:53:42:47:ca:d4:db:d2:e0:80:e4:
bf:29:0c:e2:e6:72:ea:31:bb:e7:94:c2:55:b7:f1:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:92:B1:AA:2F:25:78:B2:51:C1:D3:FA:B3:B0:B0:BF:CE:F0:D6:65
X509v3 Authority Key Identifier:
keyid:47:E9:4C:CB:7B:60:1D:A0:CA:09:46:9F:60:F6:53:64:0F:ED:8C:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-lMy3tgHaDKCUafYPZTZA_tjBw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/8JKxqi8leLJRwdP6s7Cwv87w1mU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/9e29dc-cec9-49e2-bce4-bd90a3f06e16/1/R-lMy3tgHaDKCUafYPZTZA_tjBw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.98.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:50:52:30:6d:c9:80:d1:b0:3a:14:82:31:6d:5e:95:80:81:
8c:44:7d:cd:69:59:b2:8a:3e:2f:a7:9d:d6:42:4a:89:e8:31:
c3:34:54:46:4b:5c:0a:36:53:9b:cf:8d:ff:82:4c:ab:bd:db:
36:e7:4f:4c:1b:64:0e:0b:8f:d6:a3:00:d5:ea:73:87:83:b4:
52:b8:8a:73:4d:2a:18:f6:3d:8d:e7:b9:0f:d1:83:91:2b:d4:
90:75:43:75:6c:2c:2b:3a:ce:28:ac:4e:65:b7:6f:51:af:9b:
43:83:87:95:68:6a:d9:5c:17:87:f7:0d:c2:80:00:9b:40:a3:
0b:2f:c6:0e:94:52:02:1a:8c:f8:cf:e5:2b:52:97:ad:1f:ec:
a5:41:98:a6:96:90:e6:be:2d:22:c8:43:00:cf:43:a2:c1:59:
48:d6:ac:9e:ba:97:91:b6:af:df:00:9a:c8:e6:3c:8b:76:34:
aa:f0:38:34:81:d4:84:1f:0e:9c:00:05:26:ec:8d:82:da:07:
9d:b7:92:6b:42:a0:22:a9:ed:30:b9:11:f8:de:7a:35:44:38:
c9:a4:2d:71:c1:f5:f7:59:c3:8f:e5:09:85:62:f8:ff:3a:8e:
97:e9:3d:1d:ca:48:c4:fe:10:29:19:ae:55:7f:a6:9c:f2:8a:
36:a5:86:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:47 2024 by rpki-client on console-fra.rpki-client.org