Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/daaae4-ed24-4473-9ec5-ee29c9136e8b/1/8sxOfp4KWhwaQUDfNsiylwHKFCs.roa
File: 8sxOfp4KWhwaQUDfNsiylwHKFCs.roa (raw, json)
Hash identifier: rTpPxbIpsQV+vculbVGFsnr5sHG8g0CyJzbDEWUZRQU=
Subject key identifier: F2:CC:4E:7E:9E:0A:5A:1C:1A:41:40:DF:36:C8:B2:97:01:CA:14:2B
Certificate issuer: /CN=8279ead835a8fcfae0d9ee2839cd16881ba11dd7
Certificate serial: 01856D789CB287E9A7296E51A5EFC7973A7F
Authority key identifier: 82:79:EA:D8:35:A8:FC:FA:E0:D9:EE:28:39:CD:16:88:1B:A1:1D:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnnq2DWo_Prg2e4oOc0WiBuhHdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/daaae4-ed24-4473-9ec5-ee29c9136e8b/1/8sxOfp4KWhwaQUDfNsiylwHKFCs.roa
Signing time: Sun 01 Jan 2023 13:14:58 +0000
ROA not before: Sun 01 Jan 2023 13:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198024
IP address blocks: 185.191.192.0/22 maxlen: 22
2a0a:1c40::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:9c:b2:87:e9:a7:29:6e:51:a5:ef:c7:97:3a:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8279ead835a8fcfae0d9ee2839cd16881ba11dd7
Validity
Not Before: Jan 1 13:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2cc4e7e9e0a5a1c1a4140df36c8b29701ca142b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d9:cf:ed:d8:b4:e4:f3:9d:f1:81:45:14:e9:
7a:09:17:4a:d5:61:9e:23:99:b1:05:a9:ff:31:ce:
f0:19:88:1a:44:f3:74:9b:7b:f2:f1:4b:52:ce:d2:
53:89:b7:0a:9d:3c:dd:10:1e:93:d0:a8:74:cc:d3:
1c:f1:b7:87:0a:f3:ee:bc:ce:70:86:1e:ec:51:0c:
d1:06:5a:9c:27:6a:9f:f5:15:09:9f:3f:54:d7:06:
5c:92:5d:2b:f1:d2:57:ac:b3:0c:9c:66:32:cb:e0:
b3:4e:3f:01:ee:6c:3b:c6:4c:f6:1d:2f:5f:6c:88:
e2:40:fa:92:24:8b:a1:eb:d3:27:a6:6c:ea:e1:86:
37:50:bb:b4:07:aa:df:aa:4a:40:6e:9f:00:b8:50:
d2:b6:bc:85:51:75:b7:6c:0a:53:0c:e4:1e:18:95:
a1:6e:f8:5b:6d:64:96:b3:af:3b:3d:5d:6c:1c:e7:
52:54:17:32:10:ad:48:f8:5d:09:c2:0a:cd:f9:2e:
10:d1:3c:11:b8:1f:91:58:87:20:de:fb:92:b5:6c:
6a:50:41:29:07:23:54:68:a9:da:b4:87:5b:32:7a:
1a:15:6f:7e:dc:7b:90:bb:c3:c1:dc:8a:e9:84:c1:
93:66:a3:1b:de:6f:44:29:0e:c1:df:0d:c9:35:07:
e8:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:CC:4E:7E:9E:0A:5A:1C:1A:41:40:DF:36:C8:B2:97:01:CA:14:2B
X509v3 Authority Key Identifier:
keyid:82:79:EA:D8:35:A8:FC:FA:E0:D9:EE:28:39:CD:16:88:1B:A1:1D:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnnq2DWo_Prg2e4oOc0WiBuhHdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/daaae4-ed24-4473-9ec5-ee29c9136e8b/1/8sxOfp4KWhwaQUDfNsiylwHKFCs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/daaae4-ed24-4473-9ec5-ee29c9136e8b/1/gnnq2DWo_Prg2e4oOc0WiBuhHdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.191.192.0/22
IPv6:
2a0a:1c40::/29
Signature Algorithm: sha256WithRSAEncryption
80:87:63:cf:d0:0d:02:20:6d:b4:9e:dd:90:71:d8:fa:d3:82:
04:df:5a:3c:00:0d:29:93:a1:2b:3e:c7:0a:b3:a3:57:18:12:
42:24:b6:89:f7:f9:b2:36:0e:74:17:b7:5f:11:a6:e1:38:6c:
24:ca:62:86:77:1e:82:52:c7:6d:f6:04:3b:56:ad:25:43:e7:
d7:11:28:4e:06:25:97:7e:7a:a2:a0:9c:cd:07:98:51:22:ee:
21:33:b8:d1:e4:43:c2:de:0a:3f:56:95:07:7f:27:e8:84:a9:
08:ae:91:40:7d:4b:c5:b9:66:c5:89:b9:f4:8d:24:da:82:1a:
ca:8b:94:f7:a4:00:5f:3c:81:45:84:aa:d1:2e:99:1e:d1:0b:
c5:92:92:76:e1:1e:9a:7a:84:f9:27:bb:9a:dd:02:8a:27:4d:
2d:89:fd:c0:15:94:e4:0b:96:f6:fc:d0:4e:fc:96:ca:ea:64:
50:fd:12:75:ec:17:19:99:fa:f5:7e:69:45:8d:10:d1:01:5c:
66:18:19:71:00:0b:e6:6d:aa:3a:e9:ba:04:c1:95:fe:a3:26:
55:4b:96:1e:7e:25:85:bb:5a:36:67:47:97:55:dd:25:4b:c5:
a2:bb:65:7c:19:1c:04:5f:90:b6:e1:3f:99:e8:ff:d8:be:f6:
1b:9b:b1:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:23 2024 by rpki-client on console-fra.rpki-client.org