Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/InbqRm9DDtGOuS3p1JQojz-f_8U.roa
File: InbqRm9DDtGOuS3p1JQojz-f_8U.roa (raw, json)
Hash identifier: yYJOGwTf0GfxthpmCV9GkdEwQMle5/chm8QHgRZy2xw=
Subject key identifier: 22:76:EA:46:6F:43:0E:D1:8E:B9:2D:E9:D4:94:28:8F:3F:9F:FF:C5
Certificate issuer: /CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Certificate serial: 01856F2FFBA3D183408945CFBA942661C4EA
Authority key identifier: D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/InbqRm9DDtGOuS3p1JQojz-f_8U.roa
Signing time: Sun 01 Jan 2023 21:14:53 +0000
ROA not before: Sun 01 Jan 2023 21:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201011
IP address blocks: 185.205.132.0/23 maxlen: 23
185.205.134.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:2f:fb:a3:d1:83:40:89:45:cf:ba:94:26:61:c4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8915609656f08f7a28d24b7c4ba9b639ca0b009
Validity
Not Before: Jan 1 21:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2276ea466f430ed18eb92de9d494288f3f9fffc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:95:b2:ca:8d:64:2a:83:e5:f3:6d:40:b3:43:
14:3a:56:66:aa:69:36:35:a4:bc:8e:c6:d4:20:0f:
14:3a:d4:1f:df:f5:cc:3f:05:bf:bd:20:aa:89:26:
d4:8d:8d:c1:eb:06:1a:f1:62:9b:2b:a1:7a:3f:bf:
07:e1:d2:45:55:ff:bb:85:b8:d0:28:aa:b1:c8:52:
1f:d2:7e:6e:fc:06:4f:34:53:9f:c2:2a:50:d6:2e:
90:cd:ab:d8:a4:bf:a6:93:69:49:ad:79:93:53:9a:
17:b9:cb:2d:cf:c4:ef:33:77:81:d5:72:e6:4e:63:
45:e1:48:81:d4:52:2d:71:79:0e:40:e8:86:a5:25:
cc:71:2b:30:6a:ab:b1:0a:43:b7:cd:32:f5:8e:fb:
03:2e:62:8d:82:ef:53:40:0e:a9:61:f4:74:d3:5f:
8a:c9:da:be:31:dc:91:20:5a:1c:4c:9f:a0:8f:ee:
ea:3f:b4:ef:88:e1:a3:b2:16:ed:f7:38:66:94:a6:
94:f3:06:cd:62:9c:a1:1e:c5:f0:df:36:d1:ea:b8:
be:6f:38:d8:cc:99:13:2f:f0:64:52:59:8f:93:92:
0d:23:1d:a3:bf:fc:af:1c:03:f9:69:b9:a2:40:02:
72:0d:25:0c:9c:2c:d6:f7:94:d9:27:6e:ee:44:c0:
b8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:76:EA:46:6F:43:0E:D1:8E:B9:2D:E9:D4:94:28:8F:3F:9F:FF:C5
X509v3 Authority Key Identifier:
keyid:D8:91:56:09:65:6F:08:F7:A2:8D:24:B7:C4:BA:9B:63:9C:A0:B0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JFWCWVvCPeijSS3xLqbY5ygsAk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/InbqRm9DDtGOuS3p1JQojz-f_8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/20e8e0-68d3-489e-bcf3-fe4b5e346840/1/2JFWCWVvCPeijSS3xLqbY5ygsAk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.205.132.0/22
Signature Algorithm: sha256WithRSAEncryption
82:27:31:99:91:8f:7d:ef:e8:7c:f4:33:f0:9f:bd:7e:66:75:
61:71:82:1d:b6:04:6d:66:fe:97:7e:05:b3:a8:5b:a2:f8:e7:
42:f9:de:4b:eb:35:dc:3d:29:80:bd:8d:b8:89:5b:1e:9c:8d:
b9:2b:cd:7b:49:a2:d6:1a:03:c9:1e:3c:e0:5c:54:77:43:5b:
2e:89:92:6f:84:cc:aa:66:9f:ff:1e:ca:da:38:76:bb:d8:a1:
c4:fa:5c:06:88:c0:21:ef:62:f7:8b:ac:86:9a:b2:88:e8:e1:
56:a1:fe:63:ed:8c:07:2a:d3:9d:7c:2a:6e:fe:d7:7a:a2:36:
d2:18:0b:5c:77:2b:37:7d:e7:79:08:27:ed:a3:61:6f:54:da:
fd:c8:9a:45:07:4e:3a:64:ed:22:8d:f2:9b:8e:b7:01:02:19:
fb:d5:69:8d:65:19:19:d5:c5:3f:5c:cf:fa:28:68:fa:70:21:
fc:51:25:61:af:f3:41:ef:f5:23:9a:e5:72:2c:f3:56:2f:7a:
12:3a:0e:76:d2:5b:1a:23:77:ce:e4:3b:37:92:d1:f6:bd:0d:
23:40:d4:16:d3:5b:10:bb:a5:75:94:08:48:55:46:49:19:8f:
7c:30:d9:b0:4d:3e:64:c1:84:cb:d0:91:ff:e4:ec:d6:23:22:
74:0a:09:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:35 2023 by rpki-client on console-fra.rpki-client.org