Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/630362-290f-46bc-8446-6a7c3ba31410/1/u7GVunKpdAUerP4cKbVoBABnIH0.roa
File: u7GVunKpdAUerP4cKbVoBABnIH0.roa (raw, json)
Hash identifier: SCkxgAUwvUkdlAjWaACMAecjnu+rib/UlDUp993c10M=
Subject key identifier: BB:B1:95:BA:72:A9:74:05:1E:AC:FE:1C:29:B5:68:04:00:67:20:7D
Certificate issuer: /CN=f8a41594a92a9ae05c65a04f803d411a4f88423f
Certificate serial: 0185715E78743428318DE89EDE401C5C2F97
Authority key identifier: F8:A4:15:94:A9:2A:9A:E0:5C:65:A0:4F:80:3D:41:1A:4F:88:42:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-KQVlKkqmuBcZaBPgD1BGk-IQj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/630362-290f-46bc-8446-6a7c3ba31410/1/u7GVunKpdAUerP4cKbVoBABnIH0.roa
Signing time: Mon 02 Jan 2023 07:24:54 +0000
ROA not before: Mon 02 Jan 2023 07:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211957
IP address blocks: 185.235.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:78:74:34:28:31:8d:e8:9e:de:40:1c:5c:2f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8a41594a92a9ae05c65a04f803d411a4f88423f
Validity
Not Before: Jan 2 07:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbb195ba72a974051eacfe1c29b568040067207d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:80:a7:f0:8d:5a:01:4c:22:65:e6:f0:bd:22:
07:86:48:44:55:c2:9b:e2:22:79:26:8f:bf:f7:8e:
d5:93:0f:80:58:83:a8:3d:a0:41:68:dc:45:10:f8:
b5:6b:78:10:ac:ab:6c:f6:4c:34:a1:d4:05:5a:43:
b0:fa:fe:7c:c8:07:f2:6d:ce:6c:4f:d7:3f:b6:cf:
ba:df:25:73:1f:c8:23:23:70:5a:91:e1:b1:ee:97:
6b:19:68:d5:8e:1f:0e:78:87:ef:f1:09:32:88:c6:
96:76:46:34:f5:fd:72:8a:61:2b:dd:58:7d:da:cf:
94:9b:81:ab:69:7e:40:c0:e2:b1:a3:d3:3a:92:73:
a3:8e:1b:37:9e:9b:4c:35:2f:70:b9:40:8f:96:34:
79:cf:bf:99:e7:7e:2b:12:63:a4:fc:2a:19:03:97:
55:15:5d:51:dd:02:b8:a8:41:4c:f4:51:55:fb:67:
49:cb:2a:e3:66:e7:bb:8b:90:6b:01:51:cf:12:ac:
fe:02:07:6d:d7:3f:36:0a:b8:14:28:4e:6c:1a:fe:
36:16:85:45:0d:1a:c8:d7:18:3b:bf:60:59:dc:09:
fa:c5:bc:12:dc:87:0f:92:54:f4:39:8b:a5:a8:d0:
8d:1e:44:e1:c5:21:72:e9:51:1f:17:e8:80:96:84:
b3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:B1:95:BA:72:A9:74:05:1E:AC:FE:1C:29:B5:68:04:00:67:20:7D
X509v3 Authority Key Identifier:
keyid:F8:A4:15:94:A9:2A:9A:E0:5C:65:A0:4F:80:3D:41:1A:4F:88:42:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-KQVlKkqmuBcZaBPgD1BGk-IQj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/630362-290f-46bc-8446-6a7c3ba31410/1/u7GVunKpdAUerP4cKbVoBABnIH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/630362-290f-46bc-8446-6a7c3ba31410/1/1-KQVlKkqmuBcZaBPgD1BGk-IQj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.8.0/24
Signature Algorithm: sha256WithRSAEncryption
27:c3:99:b9:9e:d0:3d:8d:48:14:e0:92:a5:7a:17:18:ce:e3:
b7:85:c3:dd:e6:4e:1b:b3:d8:e0:40:cc:92:a5:f7:8a:77:02:
4a:ab:fe:d6:fa:10:67:8f:5a:e6:b1:f1:e1:88:65:ff:2a:c7:
40:04:67:a2:58:3d:f1:0e:46:03:29:61:fc:e3:df:3e:d3:cf:
f5:e3:29:15:d1:44:2e:5c:98:7b:fc:2b:4c:3d:5b:c3:cc:2b:
23:7f:00:72:96:bf:de:dd:a5:a5:a5:11:c1:34:dd:37:4c:5e:
e1:57:10:40:12:97:21:f6:4c:cb:3a:cd:d7:3e:b4:ee:54:e2:
68:82:4d:43:02:61:ec:e0:11:58:89:f9:de:69:74:e2:72:ec:
7e:5d:5c:3d:8a:0f:63:66:89:52:4d:fc:e1:48:f9:c1:b5:b4:
c2:06:04:64:7b:87:10:b4:5f:a6:de:06:9a:7e:b3:07:17:0b:
4e:ea:6b:12:35:a7:22:a4:9c:d6:a8:6d:20:34:85:05:b6:d2:
c1:4b:52:fa:32:b2:9f:6d:a4:fd:32:57:53:ea:04:a4:d8:81:
9f:7a:90:bb:fa:56:fc:88:3e:0b:d2:cd:31:54:be:2c:da:eb:
d6:d6:64:ce:0b:d6:29:6d:87:ed:1b:c9:59:1f:8b:c4:ff:45:
54:39:64:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:21 2024 by rpki-client on console-fra.rpki-client.org