Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/iDRU8xeuIYOcINUOOk4-2GdiAf4.roa
File: iDRU8xeuIYOcINUOOk4-2GdiAf4.roa (raw, json)
Hash identifier: l4JhVfPy2GqQu93A812QgcHozeQvhvXNccAQ+AUA8lM=
Subject key identifier: 88:34:54:F3:17:AE:21:83:9C:20:D5:0E:3A:4E:3E:D8:67:62:01:FE
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 018571E890ABD37DBEAAE581664F5AB45BBF
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/iDRU8xeuIYOcINUOOk4-2GdiAf4.roa
Signing time: Mon 02 Jan 2023 09:55:44 +0000
ROA not before: Mon 02 Jan 2023 09:55:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208139
IP address blocks: 185.200.61.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:e8:90:ab:d3:7d:be:aa:e5:81:66:4f:5a:b4:5b:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Jan 2 09:55:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=883454f317ae21839c20d50e3a4e3ed8676201fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c4:d8:f9:53:84:b0:23:19:f5:fe:a4:e6:f1:
f0:23:91:08:a4:13:38:e0:11:56:d5:02:63:56:0f:
9e:c2:1b:0e:ea:33:af:42:4d:af:6d:02:ff:a5:00:
7f:84:39:59:ea:9d:be:d2:96:41:85:90:98:d1:6d:
82:ab:1c:b5:07:6e:33:7a:21:1b:b8:c1:00:33:b6:
17:1d:47:b3:b4:92:58:7d:69:ad:7c:58:f7:f2:d3:
c0:44:67:31:82:97:be:9f:c4:39:0a:f9:53:f9:2e:
10:fe:50:e6:86:e7:2b:72:a7:94:5d:45:ab:00:61:
2d:9f:57:79:56:87:90:f8:79:05:53:1d:20:41:c8:
7b:10:c2:f3:02:e9:e2:11:aa:13:40:67:5b:a8:18:
f2:36:a2:72:3c:0a:0d:4d:5e:97:51:3b:36:b7:51:
9c:3d:82:81:fb:d4:28:ae:a3:56:7e:4c:25:60:4b:
c4:33:db:47:61:95:9a:d2:6b:2a:8d:59:6a:56:d9:
d2:1c:1a:36:ce:cd:a2:a8:8b:6a:29:0f:8e:7b:8c:
c9:55:45:1b:04:ba:5a:85:7f:65:f8:6b:de:2f:48:
fd:a0:71:df:f7:80:4e:8a:aa:5f:0e:b2:74:43:25:
18:df:c5:87:00:68:8d:1f:89:83:c8:49:db:d9:d2:
63:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:34:54:F3:17:AE:21:83:9C:20:D5:0E:3A:4E:3E:D8:67:62:01:FE
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/iDRU8xeuIYOcINUOOk4-2GdiAf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.61.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:dd:36:02:86:44:cb:2b:f8:22:ca:1a:70:82:32:52:a4:3a:
6c:54:0f:c6:62:a3:e6:33:18:a1:ca:00:df:ef:68:86:30:ed:
d6:5b:a9:ee:0a:a7:97:6f:52:e2:23:14:5b:dd:fc:d3:ef:cc:
e5:5d:04:1b:5a:1b:17:30:df:f7:26:0d:7a:bf:92:de:97:36:
b5:bd:f5:f6:b1:c4:96:ea:97:40:52:4f:3e:4c:a7:02:e9:95:
c7:96:62:27:42:42:21:a7:5d:1e:fb:16:6c:c0:3c:ec:e1:ab:
84:ce:6c:7f:29:d1:a3:bf:0a:12:e2:89:f3:27:13:37:76:29:
2e:30:01:e7:1c:82:ae:d7:ac:58:44:5a:1f:a3:d6:4b:d1:51:
cb:93:3f:df:87:fd:5e:ed:9a:73:51:8d:7c:23:5f:66:55:72:
c6:b4:9f:a1:2f:21:73:ee:c1:22:28:5f:c8:e2:2b:e3:eb:2b:
c5:2a:9b:26:3b:8b:02:29:e3:59:d0:a1:57:2d:4b:42:21:96:
8a:5d:0a:47:42:87:52:24:5c:05:67:e2:da:f4:b1:aa:11:8e:
3f:32:ba:59:89:5f:1f:e2:ef:a5:15:43:c3:24:79:e0:05:e8:
05:90:a9:61:a7:32:9b:d9:c1:24:62:6d:dc:dd:8c:0f:ba:44:
de:57:ba:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:34 2024 by rpki-client on console-ams.rpki-client.org