Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/8GcG5Zi1AWeMX7985dIFYtl3OHA.roa
File: 8GcG5Zi1AWeMX7985dIFYtl3OHA.roa (raw, json)
Hash identifier: 24bMgiTW6Jvan68YUGBYxGhFNywcP58VJYP9nHHujoE=
Subject key identifier: F0:67:06:E5:98:B5:01:67:8C:5F:BF:7C:E5:D2:05:62:D9:77:38:70
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F023817B1ECBB21EABF057AFD06133C
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/8GcG5Zi1AWeMX7985dIFYtl3OHA.roa
Signing time: Sun 01 Jan 2023 20:24:54 +0000
ROA not before: Sun 01 Jan 2023 20:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20910
IP address blocks: 85.254.120.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:38:17:b1:ec:bb:21:ea:bf:05:7a:fd:06:13:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f06706e598b501678c5fbf7ce5d20562d9773870
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:3e:31:75:d5:85:e1:40:47:94:42:df:17:97:
21:49:2c:7f:c2:58:3c:ea:3a:ca:21:3e:5f:f2:52:
fd:90:c5:5b:2d:95:39:eb:6e:8d:ba:e7:c2:00:f6:
9c:90:be:91:3c:d6:25:9f:23:40:71:4b:13:ab:ae:
79:f5:13:aa:e8:89:4a:43:dc:03:85:34:56:9f:7c:
4a:18:89:78:13:0e:a9:22:a7:ed:cc:92:6a:32:1a:
a2:fb:a4:18:01:73:0c:da:2d:b1:68:fd:a9:e0:1c:
9a:15:1f:2d:7b:95:08:75:39:9a:ed:62:53:49:e5:
22:07:e8:24:f7:ce:0e:ad:90:85:23:35:d7:5c:a2:
f6:59:bb:bb:28:fc:a3:ed:f6:b9:21:f2:1d:37:f1:
f6:42:2d:e9:24:c7:87:26:8b:f8:a9:dd:fe:07:6a:
ae:69:c4:6d:8f:a5:f1:29:4b:73:be:3e:ff:3d:63:
db:ff:fd:26:b2:9f:bb:d6:c2:96:cd:2f:a3:eb:ee:
4e:83:90:89:22:10:44:c0:29:f8:de:d3:e6:96:17:
bc:01:73:fe:f2:c0:68:a4:3e:c8:ee:c1:a4:39:e2:
7b:b8:65:63:e9:5e:a2:7d:56:06:40:db:46:69:be:
34:f8:78:81:a6:a1:06:03:d9:5f:82:7e:ec:ce:c5:
18:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:67:06:E5:98:B5:01:67:8C:5F:BF:7C:E5:D2:05:62:D9:77:38:70
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/8GcG5Zi1AWeMX7985dIFYtl3OHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.120.0/23
Signature Algorithm: sha256WithRSAEncryption
93:91:0b:a5:18:67:ea:15:df:76:48:79:37:48:3e:ca:9b:dc:
71:b3:cc:84:97:dc:3d:71:dd:b2:ca:b5:f7:97:31:d9:9a:c8:
39:f8:36:15:fa:13:2c:16:59:64:6c:7e:4a:d3:4e:4f:b0:51:
b5:e2:15:83:da:c5:06:d4:bd:a9:9c:7f:22:16:e6:c5:8c:b1:
7e:90:ba:cd:8c:c3:ce:50:49:b4:03:22:35:95:e1:eb:18:0f:
10:b4:45:89:66:40:6a:74:80:c6:23:33:2e:5c:2a:2a:df:07:
bd:27:d7:1d:54:98:fa:e3:d6:94:8d:6f:27:14:dd:68:5e:45:
f8:fa:5b:46:65:4a:5e:9a:94:3a:1f:15:da:00:ea:33:1b:d8:
6b:10:26:70:fd:05:15:60:89:27:60:76:8f:92:fe:d6:f1:9c:
19:a2:70:80:12:43:99:dd:b2:62:31:db:af:bb:dc:e3:6e:7e:
f5:08:c1:a0:29:78:04:95:cf:35:19:1a:e3:f0:b7:2c:ef:af:
a4:d3:3e:3a:ca:e5:31:e3:ef:e0:10:fa:e4:54:77:69:2f:18:
ce:24:78:d5:aa:0e:49:c6:1a:26:32:c7:20:47:c7:9e:35:0b:
3d:71:dc:6a:6d:a3:62:17:69:4b:3f:22:f4:f6:ee:c2:51:6b:
6a:8d:36:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:48 2024 by rpki-client on console-ams.rpki-client.org