Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/u8EhHOWpdbiz0eUKQtCKR4hSW9o.roa
File: u8EhHOWpdbiz0eUKQtCKR4hSW9o.roa (raw, json)
Hash identifier: JKOeA6j7J001nbU5wBt3cK0+Do3mBYyZILIMtvQNkc4=
Subject key identifier: BB:C1:21:1C:E5:A9:75:B8:B3:D1:E5:0A:42:D0:8A:47:88:52:5B:DA
Certificate issuer: /CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Certificate serial: 0188BF93F17DA1842E87A9932B947BFFF383
Authority key identifier: 9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/u8EhHOWpdbiz0eUKQtCKR4hSW9o.roa
Signing time: Thu 15 Jun 2023 15:02:03 +0000
ROA not before: Thu 15 Jun 2023 15:02:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.219.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bf:93:f1:7d:a1:84:2e:87:a9:93:2b:94:7b:ff:f3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb25ce550e4d9bda05bd5d45c8b6ba37430bbba
Validity
Not Before: Jun 15 15:02:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bbc1211ce5a975b8b3d1e50a42d08a4788525bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:94:86:c3:68:37:89:57:30:8f:e0:4b:77:d7:
4a:c8:81:0e:90:e2:09:e6:4d:8f:56:52:c6:6f:c4:
0c:08:e6:2c:3a:68:51:98:00:b4:e1:b8:22:bc:3b:
54:90:74:7b:8d:e3:e4:29:c9:da:51:ee:eb:a3:51:
6f:9a:42:d6:9d:a8:06:e9:fc:7c:01:bf:61:c3:d8:
4c:ed:95:5e:a2:d7:4c:b2:f6:80:9e:bf:ed:7c:a1:
18:65:60:eb:90:c2:ec:25:ea:f1:31:9c:b7:9d:53:
37:af:e1:4a:d9:c3:d9:20:a1:44:8c:e5:77:b7:c5:
af:6b:09:a6:8f:08:7b:1f:86:96:60:62:23:3c:be:
7e:df:c2:9e:6b:9c:61:ec:b8:7a:03:d8:81:36:66:
95:c8:9d:2d:33:5d:a3:bc:73:7e:6a:4e:bd:84:ef:
37:a6:79:d7:fe:e2:a9:83:fd:55:77:4c:7c:97:03:
d7:26:7c:0e:e2:ab:32:f9:64:79:84:27:8b:ac:32:
1b:08:68:27:dd:d8:6d:c1:59:33:dd:b9:29:a9:d3:
b6:74:d4:cb:db:af:51:7e:b3:57:5b:f8:5b:f8:f8:
32:0b:01:13:a1:f2:ea:08:9a:10:1d:20:c6:6d:1e:
90:b7:54:e5:57:1d:2d:e3:84:84:bd:65:c5:e0:2c:
b9:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:C1:21:1C:E5:A9:75:B8:B3:D1:E5:0A:42:D0:8A:47:88:52:5B:DA
X509v3 Authority Key Identifier:
keyid:9C:B2:5C:E5:50:E4:D9:BD:A0:5B:D5:D4:5C:8B:6B:A3:74:30:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLJc5VDk2b2gW9XUXItro3Qwu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/u8EhHOWpdbiz0eUKQtCKR4hSW9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/4f336b-4a79-4425-9556-be45f0d2abbb/1/nLJc5VDk2b2gW9XUXItro3Qwu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.219.161.0/24
Signature Algorithm: sha256WithRSAEncryption
42:43:5e:72:f3:1a:82:c8:41:ab:77:08:08:db:c0:76:b5:50:
ed:20:bd:3c:ff:34:3f:01:3a:16:8c:9e:8f:58:cf:30:bd:de:
0f:55:b9:5c:f1:87:47:ab:3c:df:a9:9b:c6:a3:04:2d:57:c2:
c8:d5:4a:b1:0c:26:d8:84:59:ff:dc:ac:00:3e:c5:2d:5f:3b:
b9:d8:c0:33:6f:22:4d:90:25:20:22:12:56:30:bd:ce:fa:cc:
37:8d:60:0c:e4:97:ee:0a:d6:9f:92:de:78:9d:2b:94:0d:da:
c0:3d:49:ca:32:d5:01:11:d7:3a:03:41:0e:5a:fd:4a:af:de:
08:fb:66:64:41:ab:f3:70:26:2f:4f:4d:3c:cc:bc:99:45:1b:
5b:50:92:d5:5a:4c:a5:e2:df:71:19:1c:df:4b:b8:c3:73:f2:
fd:c1:52:07:46:1b:16:bd:d0:3c:a8:3c:49:c0:70:14:18:b6:
2a:5f:b9:d5:d1:3b:14:52:c7:15:ad:79:5e:4f:c7:43:4f:59:
bb:96:a5:7b:03:fc:b7:ba:eb:23:e5:c3:2c:32:64:ce:d4:98:
c0:b2:79:20:d6:29:6c:a0:a4:b1:f7:35:00:d5:7a:4a:9b:f8:
7f:e0:2a:44:86:d8:ee:8f:ac:8f:7d:13:a2:f4:f9:f1:b0:af:
3a:ef:d3:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 2 12:27:51 2023 by rpki-client on console-fra.rpki-client.org