Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/_Pm9YAMK5WGexxniax5nQe8mLOw.roa
File: _Pm9YAMK5WGexxniax5nQe8mLOw.roa (raw, json)
Hash identifier: Yo31IHFlSAVv3p2xaCGa+R8eDjXztnUYjccDvAmCI4w=
Subject key identifier: FC:F9:BD:60:03:0A:E5:61:9E:C7:19:E2:6B:1E:67:41:EF:26:2C:EC
Certificate issuer: /CN=2f21cae86cbf1099accf91e022359d2486cba69d
Certificate serial: 01856DC1A94A1E9120F7B41A92CAEB306BCF
Authority key identifier: 2F:21:CA:E8:6C:BF:10:99:AC:CF:91:E0:22:35:9D:24:86:CB:A6:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyHK6Gy_EJmsz5HgIjWdJIbLpp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/_Pm9YAMK5WGexxniax5nQe8mLOw.roa
Signing time: Sun 01 Jan 2023 14:34:46 +0000
ROA not before: Sun 01 Jan 2023 14:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.145.233.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:a9:4a:1e:91:20:f7:b4:1a:92:ca:eb:30:6b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f21cae86cbf1099accf91e022359d2486cba69d
Validity
Not Before: Jan 1 14:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fcf9bd60030ae5619ec719e26b1e6741ef262cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:01:d0:01:7c:5a:27:65:00:07:53:1d:a0:e9:
b3:4e:6c:95:df:59:26:1e:dd:63:f2:bb:b8:ac:1e:
99:5d:7e:65:28:69:8a:f3:8c:3c:bd:62:cf:0f:bb:
7b:5a:00:9a:b7:69:ee:29:9f:99:66:61:09:62:7b:
4a:a2:54:ec:69:fc:3e:70:4a:0b:d5:be:e1:02:f7:
70:93:55:14:16:2c:ff:1e:1d:b3:6a:d1:6d:59:31:
aa:03:f1:59:f6:36:36:e7:62:89:b3:f4:10:ce:44:
29:1e:ba:39:ff:d5:fc:70:e8:05:38:63:a8:c5:4e:
18:4b:d1:c5:fc:dc:0a:df:4c:bf:e4:80:0e:c3:ad:
e3:63:84:ef:43:ee:70:41:af:56:6d:eb:79:8f:47:
11:67:f8:c3:e6:d8:f7:b1:b7:8c:cd:a6:e8:bc:fe:
4c:46:b8:d3:75:c5:ba:8d:84:21:54:8e:3b:eb:cf:
77:d4:e2:bc:9c:47:63:00:0e:2c:1e:b7:0b:53:8d:
42:31:a4:fa:b7:8d:d7:b1:40:28:11:a2:0d:4d:2b:
ed:6f:f6:ed:ec:f4:f2:6f:98:16:5d:2d:b2:bc:8e:
81:54:53:bd:13:ac:e1:ef:a8:e1:ea:b2:67:c3:7c:
17:84:38:80:c2:06:6c:70:bd:5b:79:18:69:fc:6e:
61:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:F9:BD:60:03:0A:E5:61:9E:C7:19:E2:6B:1E:67:41:EF:26:2C:EC
X509v3 Authority Key Identifier:
keyid:2F:21:CA:E8:6C:BF:10:99:AC:CF:91:E0:22:35:9D:24:86:CB:A6:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyHK6Gy_EJmsz5HgIjWdJIbLpp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/_Pm9YAMK5WGexxniax5nQe8mLOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/69fa0f-4414-4a69-acd1-6cf3c3c26006/1/LyHK6Gy_EJmsz5HgIjWdJIbLpp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.233.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:b1:c6:09:b5:cc:2b:38:85:c7:50:f1:fb:2f:de:cd:9a:f2:
4e:93:d1:26:8c:83:33:9c:01:7e:34:29:8b:98:28:ac:34:c2:
32:ef:66:b3:42:c0:b9:c0:4b:33:c5:bc:b0:fb:48:88:6f:84:
21:6a:77:79:b5:ef:52:6a:a7:6b:5c:b3:fd:9f:0e:6e:18:68:
c9:83:9f:57:34:45:0e:1d:23:c6:27:aa:b4:e7:46:43:df:c3:
9b:89:d2:f0:8a:08:96:ca:40:29:4e:df:5c:55:f2:e5:07:21:
15:f9:1c:60:6a:b5:59:c0:ff:a5:1f:e8:11:b6:7b:80:b9:73:
87:c6:3f:63:fb:0c:3c:7b:87:12:f1:f2:24:b4:5f:13:71:49:
98:b5:f6:54:b9:ee:b2:b0:e1:af:4c:ab:63:4f:08:39:fb:05:
99:31:da:ab:9d:73:97:21:a8:9e:a0:bc:78:a1:60:96:70:61:
50:60:3a:c4:93:b0:f5:8a:72:f3:1c:0b:2e:4e:bb:46:24:10:
76:e5:03:13:b6:d6:c0:58:08:3f:4c:d3:54:9d:b3:52:ff:f1:
08:05:bc:8a:4e:29:b9:3c:fb:2b:86:df:31:60:5e:9b:cf:a4:
a6:cd:3b:e0:96:e3:13:77:73:d5:ef:b9:98:d8:09:9c:86:3c:
1c:7f:b4:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:25 2023 by rpki-client on console-fra.rpki-client.org