Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/R97SYWu4dgkldj6rJEfS9BkUmxU.roa
File: R97SYWu4dgkldj6rJEfS9BkUmxU.roa (raw, json)
Hash identifier: LRhLOz0XftKXEanwB/XwekEL23IIN7mVqQXMnMuk2Bs=
Subject key identifier: 47:DE:D2:61:6B:B8:76:09:25:76:3E:AB:24:47:D2:F4:19:14:9B:15
Certificate issuer: /CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Certificate serial: 018570FBA0CFFAC1DCF19A6C53C4A2A14E85
Authority key identifier: 82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/R97SYWu4dgkldj6rJEfS9BkUmxU.roa
Signing time: Mon 02 Jan 2023 05:36:56 +0000
ROA not before: Mon 02 Jan 2023 05:36:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.195.0.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:a0:cf:fa:c1:dc:f1:9a:6c:53:c4:a2:a1:4e:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827af17f0499627e4b3c8cc5c333ec4b8e7635e0
Validity
Not Before: Jan 2 05:36:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47ded2616bb8760925763eab2447d2f419149b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:dd:59:05:5a:be:84:c4:ff:9f:4a:fb:2d:a0:
12:d4:24:6c:bc:f1:78:e9:52:cc:2a:ed:b0:1b:f2:
2c:4f:40:7c:33:1a:9e:d0:99:7b:30:08:2c:39:2a:
b5:b1:69:65:37:8b:42:42:d9:a4:c1:d1:dc:d4:2b:
d4:1f:0a:c4:2f:27:1f:bf:a5:95:76:e2:c7:de:33:
1a:2b:0b:32:46:c5:c5:09:f5:69:df:99:fb:25:32:
97:66:b7:93:32:09:df:04:ed:85:77:b9:ca:91:d7:
de:44:5c:39:fb:7c:06:8a:15:57:7e:9e:db:a0:b7:
55:60:64:f5:32:97:0a:da:d8:76:9d:fd:fc:2c:d4:
d1:8c:f4:02:84:d5:71:57:2f:92:0f:91:0f:b9:4e:
c2:c5:9a:0e:40:5d:81:de:b2:05:30:d3:0f:2f:79:
0f:65:de:cc:1d:4c:d6:60:2f:70:76:a6:ba:84:bc:
df:ea:f0:ba:65:09:c7:1c:41:f8:fd:cf:5b:46:3a:
db:b5:a3:ea:60:64:21:cb:32:bd:20:47:a6:8a:7e:
f3:f0:de:5a:38:cf:65:1e:6e:57:55:6a:6e:17:0e:
e7:1d:dd:39:25:28:f0:28:49:88:0e:4b:f2:a6:b4:
0f:2a:e6:64:82:e9:e1:2d:99:13:4f:fa:25:13:89:
3c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:DE:D2:61:6B:B8:76:09:25:76:3E:AB:24:47:D2:F4:19:14:9B:15
X509v3 Authority Key Identifier:
keyid:82:7A:F1:7F:04:99:62:7E:4B:3C:8C:C5:C3:33:EC:4B:8E:76:35:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnrxfwSZYn5LPIzFwzPsS452NeA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/R97SYWu4dgkldj6rJEfS9BkUmxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/c2ae3d-98b4-446f-ab28-7313c7f3ca3f/1/gnrxfwSZYn5LPIzFwzPsS452NeA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.0.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:0e:2f:5f:5f:80:c1:cc:75:2d:31:86:5b:55:a2:d1:4b:cc:
21:5c:74:0a:dd:47:21:16:dd:7c:10:9b:70:d8:17:09:40:66:
fd:75:20:6e:eb:51:ad:ac:c7:38:60:25:92:34:88:6c:16:0d:
7a:23:e2:ec:26:35:a2:08:98:37:36:bd:81:5e:d6:7d:9b:49:
45:8f:04:88:03:cf:63:84:ee:e4:cd:fd:27:da:bc:bf:4f:54:
8a:e9:a4:92:32:40:82:32:77:43:0d:3c:c8:97:02:66:dc:04:
b8:9d:03:80:cf:bf:70:98:33:c2:dd:25:77:c5:ae:2b:17:91:
2e:0b:8d:cf:01:71:1e:a5:d1:63:3f:dd:70:cd:93:77:5a:83:
c3:86:7b:65:33:a5:e4:fc:5d:40:ee:71:37:54:39:f8:a0:e8:
b4:a4:fc:2e:81:0a:64:29:97:87:ba:27:e7:8d:b8:ad:0f:30:
2a:3f:27:c7:db:51:26:f0:e2:d5:b3:3a:37:1f:8a:e4:53:57:
6e:c9:a6:2d:a4:f1:d8:df:68:27:a0:0a:b5:65:b5:d0:26:9f:
a4:4c:bd:76:54:f3:8c:8d:78:b2:be:57:a0:73:93:26:e8:68:
a6:80:a2:ba:21:e2:4c:48:ed:3e:d9:93:25:87:b7:de:d4:61:
90:2a:65:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:44 2024 by rpki-client on console-ams.rpki-client.org