Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gv8ZNAImq8vPncFLkZBObKK00w8.roa
File: gv8ZNAImq8vPncFLkZBObKK00w8.roa (raw, json)
Hash identifier: IgfDZGL46DZH6B/Rotr/iOwmH95L2djCoHnF0QCrn5Y=
Subject key identifier: 82:FF:19:34:02:26:AB:CB:CF:9D:C1:4B:91:90:4E:6C:A2:B4:D3:0F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0186FEE81261F39D9ED34BA90C0A111E61C4
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gv8ZNAImq8vPncFLkZBObKK00w8.roa
Signing time: Mon 20 Mar 2023 12:04:27 +0000
ROA not before: Mon 20 Mar 2023 12:04:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200400
IP address blocks: 85.208.138.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:fe:e8:12:61:f3:9d:9e:d3:4b:a9:0c:0a:11:1e:61:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 20 12:04:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82ff19340226abcbcf9dc14b91904e6ca2b4d30f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:43:90:c8:c0:25:69:50:92:97:ff:3d:08:a3:
62:dc:c6:60:63:1a:86:53:0a:93:16:02:f2:19:98:
85:13:ff:0b:ff:7d:a5:bf:39:c5:a6:4d:96:1f:2c:
8e:10:eb:23:49:2c:0a:97:ce:c0:a1:ab:5c:69:67:
1c:40:c3:ff:66:91:b4:2c:d7:48:a9:94:d4:c9:29:
ea:a0:41:43:b8:97:78:f1:0f:68:b0:9f:af:5a:18:
8c:d0:b1:a1:5f:83:5c:09:93:91:a3:61:b2:fa:ca:
f3:19:19:02:31:56:8c:0b:8e:b2:81:63:fd:64:2a:
98:4b:0c:12:fc:d9:ec:b4:09:a4:a9:03:c1:5e:3f:
c4:fb:aa:b3:70:11:ca:5d:22:5c:56:8a:96:4e:cb:
f2:63:47:aa:86:43:e9:94:4b:10:f6:66:47:a1:77:
13:79:44:2d:c8:e5:dc:78:45:83:63:22:f5:84:e4:
83:88:ea:0e:6f:5c:c2:cc:61:ab:fa:86:1e:0b:46:
12:d1:ad:f2:98:ce:6f:6d:f2:44:4c:3a:8a:de:1a:
46:a1:bb:27:7a:bc:b8:2a:c6:26:44:09:21:89:49:
b2:3d:a2:cd:7a:51:5b:cb:7f:41:b7:3e:73:98:82:
a9:a9:2f:8c:18:3a:31:f6:f7:7f:fc:9f:4d:c0:4f:
5b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FF:19:34:02:26:AB:CB:CF:9D:C1:4B:91:90:4E:6C:A2:B4:D3:0F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gv8ZNAImq8vPncFLkZBObKK00w8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.138.0/24
Signature Algorithm: sha256WithRSAEncryption
20:f7:12:b6:c8:38:b7:57:ba:df:4c:fa:c4:56:b7:03:c5:73:
e7:7c:c2:ce:31:6f:98:be:ea:27:ec:c5:ad:89:3c:1a:6f:28:
8a:71:12:eb:d9:a6:8a:f4:5b:9a:9d:29:ef:20:a8:e0:0b:eb:
89:84:88:f2:52:dc:ce:72:ff:74:cd:86:07:1f:c2:7e:e3:5e:
1a:28:50:19:a0:b3:41:54:87:11:67:38:05:a5:16:86:40:f0:
4e:8c:1d:2b:7d:b3:59:1d:aa:2a:ab:43:1a:0c:57:5b:8c:d9:
03:cc:28:26:31:25:2d:4b:ff:3c:ae:ae:05:8f:1f:6a:ba:81:
f2:4d:0c:cd:de:82:7b:44:c4:ed:d9:83:79:7a:6e:fc:b6:8d:
1e:12:86:b2:20:23:fd:76:0b:14:03:d1:c4:81:f6:00:f8:8c:
36:e5:e7:e5:fc:88:1d:69:90:29:4c:eb:e3:27:73:a9:f5:50:
c8:29:85:9f:52:1e:42:84:60:46:b8:bb:3b:eb:76:d9:e6:2b:
ea:44:c0:da:73:85:43:03:f6:12:a1:cd:b1:78:4f:c6:0b:a2:
ed:66:9e:0c:42:65:3e:4e:c9:af:e7:ef:cb:75:5d:db:9e:27:
fa:e5:87:3e:7d:86:21:b7:1d:71:b7:f2:8b:90:3f:4f:b3:6f:
b1:31:85:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:48 2024 by rpki-client on console-fra.rpki-client.org