Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c7dd35-ef0f-4c5e-9ba6-0086a0c4e18c/1/Wc8y5G2gX08elVTBb-8ddnP-5aI.roa
File: Wc8y5G2gX08elVTBb-8ddnP-5aI.roa (raw, json)
Hash identifier: Pc0JWgTpQqxqBy3qbWfLob0d14kxmCDVQZcO2BpagQo=
Subject key identifier: 59:CF:32:E4:6D:A0:5F:4F:1E:95:54:C1:6F:EF:1D:76:73:FE:E5:A2
Certificate issuer: /CN=b8d701af43fd7f86cb3e04ce3ab542e559c6d4b7
Certificate serial: 018572F11F160F76323E31C1000B87AECF7D
Authority key identifier: B8:D7:01:AF:43:FD:7F:86:CB:3E:04:CE:3A:B5:42:E5:59:C6:D4:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uNcBr0P9f4bLPgTOOrVC5VnG1Lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c7dd35-ef0f-4c5e-9ba6-0086a0c4e18c/1/Wc8y5G2gX08elVTBb-8ddnP-5aI.roa
Signing time: Mon 02 Jan 2023 14:44:42 +0000
ROA not before: Mon 02 Jan 2023 14:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39307
IP address blocks: 185.222.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:1f:16:0f:76:32:3e:31:c1:00:0b:87:ae:cf:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8d701af43fd7f86cb3e04ce3ab542e559c6d4b7
Validity
Not Before: Jan 2 14:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=59cf32e46da05f4f1e9554c16fef1d7673fee5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:9a:82:5b:2c:20:22:39:a9:23:f6:ad:16:d1:
9b:76:eb:c6:85:5b:60:53:6f:91:80:3e:2b:f9:74:
8e:3e:0b:da:12:6d:02:28:98:22:93:ef:d2:2b:7f:
2f:d2:86:57:68:c6:10:77:ad:f1:bb:d2:5e:ad:51:
5c:cf:d6:72:30:f6:b2:4f:1b:2b:59:36:ea:bf:99:
c0:da:17:95:6f:91:05:10:81:20:ef:d5:19:cc:f7:
76:ce:a5:97:6e:3e:e0:96:93:41:5f:83:bb:3c:97:
b1:d9:8b:47:b5:12:b4:f8:39:50:2a:b1:71:67:9b:
1f:84:54:aa:a3:bc:22:d5:71:0c:ea:55:15:1b:ab:
e4:40:dc:9b:7f:ff:3c:70:0c:39:65:c6:85:78:1d:
98:0d:71:b3:e9:b6:5e:76:2c:eb:e1:b1:8c:f9:05:
16:c0:bf:2f:12:94:f0:d7:1e:c7:53:2a:8a:50:24:
15:19:9a:89:ff:ad:52:27:31:2f:ee:14:71:27:f8:
c9:69:2a:66:28:70:15:5a:a8:87:f0:b4:0c:d6:4d:
e0:0b:56:51:92:6d:f0:a1:05:ab:38:9a:3b:7a:58:
6c:ff:64:f8:02:bd:61:6f:e9:36:f6:19:d6:f9:b2:
68:9a:a6:37:f2:5d:34:d7:54:ec:1b:53:c0:96:3d:
1b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:CF:32:E4:6D:A0:5F:4F:1E:95:54:C1:6F:EF:1D:76:73:FE:E5:A2
X509v3 Authority Key Identifier:
keyid:B8:D7:01:AF:43:FD:7F:86:CB:3E:04:CE:3A:B5:42:E5:59:C6:D4:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uNcBr0P9f4bLPgTOOrVC5VnG1Lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c7dd35-ef0f-4c5e-9ba6-0086a0c4e18c/1/Wc8y5G2gX08elVTBb-8ddnP-5aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c7dd35-ef0f-4c5e-9ba6-0086a0c4e18c/1/uNcBr0P9f4bLPgTOOrVC5VnG1Lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.23.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:a3:e3:58:08:55:a4:0c:e0:c2:27:4e:88:31:d1:a9:a3:0f:
6b:33:5c:dc:66:b8:c2:c0:d3:9b:cf:84:22:16:37:e9:dc:3d:
6f:f7:73:c5:07:5f:76:42:0d:11:61:de:f9:7e:69:1a:be:09:
89:4d:4d:06:dd:0b:9f:a3:8e:40:44:84:4f:93:de:63:8f:dd:
ba:5e:b6:60:03:b6:bb:99:92:50:05:37:91:b9:4a:0f:4a:66:
74:1a:24:74:10:46:cc:b5:0e:50:f7:73:56:d0:fa:c8:d8:37:
f7:0d:f7:3e:61:71:03:11:4f:36:df:8b:6c:01:0e:e5:e6:91:
00:67:44:4d:ef:38:9b:50:ed:22:bc:93:33:b8:9b:2e:b5:a1:
3d:f1:67:34:5a:a7:3c:64:86:58:c9:db:f2:79:27:47:1e:8a:
db:95:b7:82:63:51:35:1b:ae:e8:5a:7b:ca:af:01:c5:f9:cf:
91:f7:49:2b:b4:cf:a4:29:d9:7b:22:c6:88:7f:62:2a:ae:b8:
30:29:1b:a1:01:d4:f4:42:83:f5:25:28:08:dd:bc:56:d6:df:
fc:0d:eb:fc:18:e1:b2:53:d5:8a:96:90:d8:ed:97:e5:51:74:
b8:f1:79:fa:7b:6a:f2:24:42:18:c6:c8:41:f0:08:7b:1f:e3:
0f:66:88:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:01 2024 by rpki-client on console-fra.rpki-client.org