Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/e32494-84e5-4d7e-b793-9d130d48be34/1/8FSxYe8abgCkkCcWnhOJn31Ap18.roa
File: 8FSxYe8abgCkkCcWnhOJn31Ap18.roa (raw, json)
Hash identifier: l2Dy3f6XAyFTBbzvltlQ2AePD3CynoezS1ELcu5RLdk=
Subject key identifier: F0:54:B1:61:EF:1A:6E:00:A4:90:27:16:9E:13:89:9F:7D:40:A7:5F
Certificate issuer: /CN=a4fd7836d71308c42d0f9d168ffd4c5816714459
Certificate serial: 0185728346FE289009044A860AA74ECF26D1
Authority key identifier: A4:FD:78:36:D7:13:08:C4:2D:0F:9D:16:8F:FD:4C:58:16:71:44:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pP14NtcTCMQtD50Wj_1MWBZxRFk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/e32494-84e5-4d7e-b793-9d130d48be34/1/8FSxYe8abgCkkCcWnhOJn31Ap18.roa
Signing time: Mon 02 Jan 2023 12:44:44 +0000
ROA not before: Mon 02 Jan 2023 12:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207202
IP address blocks: 185.163.12.0/24 maxlen: 24
2a0a:6800::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:46:fe:28:90:09:04:4a:86:0a:a7:4e:cf:26:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4fd7836d71308c42d0f9d168ffd4c5816714459
Validity
Not Before: Jan 2 12:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f054b161ef1a6e00a49027169e13899f7d40a75f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8c:57:52:e0:76:f1:e8:4b:8f:6a:a4:fb:9b:
b5:23:8c:60:e4:91:24:9e:20:2f:55:55:e9:22:6b:
d0:32:b7:6d:58:2d:d7:2a:74:eb:99:1c:18:97:59:
25:c4:78:f7:6d:49:10:75:49:9b:56:fa:5e:41:a8:
25:45:05:0c:15:e1:a4:30:37:03:42:da:9a:dd:44:
47:61:0c:eb:ee:f7:9a:32:47:23:97:3c:6f:a5:0d:
00:58:89:b3:36:a3:2c:84:a6:26:39:ba:29:a4:db:
bd:60:78:b7:57:42:0b:2f:45:ee:3c:90:aa:d6:dd:
dd:f9:8b:ef:1b:07:d8:88:d9:12:e5:62:e2:0d:65:
70:15:0b:f9:35:c1:97:70:8d:8e:ba:da:8d:52:0e:
e3:10:51:62:bc:19:d3:27:96:03:43:3c:62:eb:23:
59:7c:1d:cb:8c:e6:ad:e4:df:40:fe:2a:60:c7:5f:
47:da:1f:f8:e9:2d:6c:cf:35:0e:d5:83:27:7b:60:
40:d8:2b:37:f7:34:c6:b2:52:de:40:90:10:51:36:
e4:f3:31:a0:1c:45:c9:f0:01:cc:ab:12:30:1e:f5:
86:d5:84:24:6b:3a:d6:26:8d:24:5d:f5:84:53:85:
a3:8f:78:0a:cd:15:6d:37:70:d1:26:6b:91:94:bb:
1e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:54:B1:61:EF:1A:6E:00:A4:90:27:16:9E:13:89:9F:7D:40:A7:5F
X509v3 Authority Key Identifier:
keyid:A4:FD:78:36:D7:13:08:C4:2D:0F:9D:16:8F:FD:4C:58:16:71:44:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pP14NtcTCMQtD50Wj_1MWBZxRFk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e32494-84e5-4d7e-b793-9d130d48be34/1/8FSxYe8abgCkkCcWnhOJn31Ap18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/e32494-84e5-4d7e-b793-9d130d48be34/1/pP14NtcTCMQtD50Wj_1MWBZxRFk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.163.12.0/24
IPv6:
2a0a:6800::/29
Signature Algorithm: sha256WithRSAEncryption
6d:b8:fc:09:a6:0b:a5:28:98:1b:5c:ef:5b:34:c1:43:8d:36:
9d:80:43:a3:f4:ed:78:29:93:28:2c:09:8a:b4:b6:47:06:20:
64:3a:f0:83:cd:ac:df:3e:cf:54:c1:db:27:0e:9f:a0:b8:59:
c9:1a:5a:cd:92:c1:cc:b6:d1:55:18:83:1b:ea:d2:1e:4d:2e:
15:3a:e8:d9:e5:ce:6a:4b:70:5f:04:05:6f:96:cd:ad:42:48:
74:1f:da:4e:0a:c3:3f:b7:0e:8f:b6:77:ce:d7:c7:34:30:c4:
e9:73:a4:df:05:87:88:07:4d:d6:44:c4:51:62:49:6f:df:ba:
e0:de:3e:af:7a:9f:74:84:6e:21:8c:b0:43:3a:28:62:52:7a:
c9:6b:54:48:e0:6c:1a:cb:9f:e5:57:b5:ee:56:6d:52:65:a0:
83:9b:58:b6:70:03:37:ff:40:9b:7b:72:48:71:ba:9d:a8:9e:
2e:48:5c:4f:95:35:15:5e:4a:96:0b:81:94:a8:11:a4:f4:91:
5d:56:5c:d9:33:86:ec:c5:6d:16:36:9c:62:3b:ee:fb:a9:3e:
54:96:a7:b6:bd:f5:43:31:55:fc:20:7e:8b:8a:8f:86:22:7c:
1d:8c:db:b9:49:1d:47:7d:b2:67:4b:71:bc:2e:bb:27:d1:72:
db:f6:6f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:53 2024 by rpki-client on console-ams.rpki-client.org