Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/KF2uD2yppcvkk30KcJ0M3L6JVI8.roa
File: KF2uD2yppcvkk30KcJ0M3L6JVI8.roa (raw, json)
Hash identifier: sPRLXGL6s8eh4SPacenY1NQXY8AhC54i/I7TVZGx19Y=
Subject key identifier: 28:5D:AE:0F:6C:A9:A5:CB:E4:93:7D:0A:70:9D:0C:DC:BE:89:54:8F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018867795AAF6884DD8E668DFE4212212C24
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/KF2uD2yppcvkk30KcJ0M3L6JVI8.roa
Signing time: Mon 29 May 2023 12:26:26 +0000
ROA not before: Mon 29 May 2023 12:26:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1
IP address blocks: 185.221.64.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:67:79:5a:af:68:84:dd:8e:66:8d:fe:42:12:21:2c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: May 29 12:26:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=285dae0f6ca9a5cbe4937d0a709d0cdcbe89548f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4f:af:a1:23:89:46:d8:0b:87:ee:79:09:92:
98:82:41:2a:14:8c:d7:14:33:b7:5f:6b:01:b1:c1:
a7:f9:8b:8c:1d:f7:76:95:16:96:42:6c:d2:24:d9:
f4:b4:0c:c8:00:e2:95:b0:f2:42:ad:42:ca:2c:c3:
e8:3b:5e:ca:f2:87:a7:f9:2b:b6:38:4d:89:c4:d4:
13:46:ca:f7:95:71:fe:cc:ec:8d:44:37:c4:5b:33:
f7:26:89:c8:59:b7:de:ea:90:38:d6:a2:dc:91:25:
92:d4:dd:28:ce:94:b2:7b:b7:70:22:e1:dc:20:fa:
32:59:24:b0:c5:7a:5a:c4:16:15:a4:ee:2c:e8:6d:
15:ad:a5:ce:23:a2:bb:7b:aa:4f:b2:73:3c:6f:0b:
08:ea:10:df:ce:8e:93:8d:8d:ef:f1:f4:c1:b8:ae:
6f:07:91:a1:68:42:55:b3:d5:4c:b0:c8:9b:07:b7:
e8:80:a6:71:24:14:32:88:45:3d:12:dd:aa:25:34:
65:f3:b9:c9:8c:4b:b6:7a:44:a6:6d:4a:67:9a:6f:
23:af:8a:2d:fb:c8:ce:32:b3:22:ab:0c:fe:12:42:
14:9d:66:21:2f:d9:a8:47:42:9f:c5:4d:0f:40:ac:
f9:cf:9b:df:1c:c6:d0:4b:d6:97:4a:41:bc:f9:c9:
a1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:5D:AE:0F:6C:A9:A5:CB:E4:93:7D:0A:70:9D:0C:DC:BE:89:54:8F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/KF2uD2yppcvkk30KcJ0M3L6JVI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.64.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d9:12:48:49:b7:80:2b:c3:62:33:75:b6:09:0b:b7:ef:6f:
f6:81:fd:b7:5e:20:6c:a0:ac:05:1a:f5:cd:cd:30:97:dc:bd:
63:c6:ef:c2:97:18:55:db:66:34:c9:01:a4:df:b7:2c:18:ea:
6e:a2:fa:dd:8a:b6:20:85:e6:a8:f4:3a:bc:46:77:31:6b:7e:
26:b1:59:33:ea:d8:a1:12:39:ba:fd:b1:8e:32:32:cb:2c:ae:
56:65:d7:f4:16:32:5f:c7:bb:84:79:6f:5d:ad:e2:0e:c7:23:
32:f8:52:a5:a4:36:82:3e:22:70:fc:32:f8:2c:c0:da:7c:ea:
06:19:97:12:0e:89:fa:3d:da:0f:a0:3b:88:0e:a7:77:3e:01:
5f:f6:f2:cf:be:bb:3c:11:bc:74:bf:41:e5:5a:70:58:fd:b1:
7d:aa:7d:93:7d:c4:0b:82:57:01:93:b7:3b:84:77:4b:47:d6:
0d:7b:fb:57:5d:84:cb:07:20:a0:e6:30:ba:2c:13:78:8c:b5:
96:9d:94:a5:77:ea:a1:df:5e:4d:54:be:66:2a:2b:f9:fe:85:
f5:68:42:22:1c:b5:56:f6:1d:93:d8:bd:18:b4:8b:84:64:29:
a3:86:7d:4b:72:2a:39:2a:96:3a:ed:62:bb:37:1d:53:b2:87:
17:87:8e:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:41 2023 by rpki-client on console-fra.rpki-client.org