Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/8NCcA-099r6A6OVy5t80eRmgUxw.roa
File: 8NCcA-099r6A6OVy5t80eRmgUxw.roa (raw, json)
Hash identifier: F/4GZJReYcKdmb+kfsGP6BEAH5AEXpf6msrXi2ImbP8=
Subject key identifier: F0:D0:9C:03:ED:3D:F6:BE:80:E8:E5:72:E6:DF:34:79:19:A0:53:1C
Certificate issuer: /CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Certificate serial: 01856D5404335404DD736497ABCE35D469E8
Authority key identifier: E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/8NCcA-099r6A6OVy5t80eRmgUxw.roa
Signing time: Sun 01 Jan 2023 12:35:00 +0000
ROA not before: Sun 01 Jan 2023 12:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13127
IP address blocks: 185.222.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:04:33:54:04:dd:73:64:97:ab:ce:35:d4:69:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c137106c1a46aea07c24b11729fd7d216a24f5
Validity
Not Before: Jan 1 12:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f0d09c03ed3df6be80e8e572e6df347919a0531c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:33:08:62:93:e6:26:43:30:27:aa:44:7c:e6:
a8:a1:55:69:60:b2:31:e7:84:8b:9b:92:3c:99:5a:
e4:15:fe:66:08:2f:ff:e7:94:80:f5:ad:be:79:cc:
6a:0d:e1:6f:f2:1a:8c:10:55:62:27:20:27:87:ee:
b9:90:b7:e0:20:94:6d:24:94:cb:bd:96:c8:9f:29:
e1:5f:4e:f0:32:f4:00:3f:a3:ca:44:6c:2d:05:10:
84:e8:45:d1:53:3d:5c:9e:79:bf:0b:b8:f8:2b:38:
b7:3b:dc:47:cd:30:06:47:2b:5b:99:85:10:f2:57:
b7:c6:0b:e3:a5:3c:09:d5:48:eb:63:c0:bf:4d:3b:
85:60:45:7a:22:53:9f:76:5e:8c:a3:96:4c:24:5b:
ad:f1:3d:75:4a:17:59:74:87:45:03:a2:f9:8f:d9:
36:33:76:fe:b1:ca:8c:61:38:eb:1c:c0:0b:bc:2a:
0c:5b:95:e3:d6:e3:85:93:ed:15:37:06:56:dd:4d:
7b:8c:67:58:4b:d8:6d:a4:c9:c8:fc:dc:5a:2b:c9:
a6:df:0a:f6:e2:4b:de:79:fb:72:83:2e:ad:fc:c0:
15:24:cb:ec:31:b6:c8:e6:13:b1:76:9f:87:fc:f4:
28:a3:f2:73:1e:ca:fd:57:09:31:60:a6:c5:4d:88:
72:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D0:9C:03:ED:3D:F6:BE:80:E8:E5:72:E6:DF:34:79:19:A0:53:1C
X509v3 Authority Key Identifier:
keyid:E2:C1:37:10:6C:1A:46:AE:A0:7C:24:B1:17:29:FD:7D:21:6A:24:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sE3EGwaRq6gfCSxFyn9fSFqJPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/8NCcA-099r6A6OVy5t80eRmgUxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/2435cc-5533-4f70-bb82-9caf25a499d7/1/4sE3EGwaRq6gfCSxFyn9fSFqJPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.232.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:65:02:d4:ec:7b:d5:b4:46:81:db:fd:b2:6f:69:b3:7e:b5:
81:c0:9c:65:67:49:27:72:1d:51:65:d2:b0:bd:a8:85:ed:90:
ab:2a:01:1d:40:5c:73:ea:d2:4d:10:5c:4a:28:c6:70:40:1e:
8c:3f:15:79:69:c1:a9:e8:01:b1:a4:9d:38:93:87:e2:75:72:
a4:2e:58:a9:28:15:b6:43:07:fb:ca:7b:26:a2:70:28:b3:30:
6c:54:86:7a:b7:20:14:fa:2c:bc:a3:cd:8b:ef:10:b8:a1:7a:
35:11:87:90:e9:4e:ad:3e:2f:4a:32:2e:b3:a3:f2:80:f2:9a:
46:17:44:fa:b5:39:21:a8:51:9a:3d:56:17:1b:91:b1:39:0f:
76:56:49:87:3f:ec:51:54:45:dd:3a:78:9e:c3:85:00:d1:95:
ad:c9:c0:cd:e0:73:f4:cf:94:25:34:83:1f:c8:58:21:ab:51:
0a:96:0c:26:00:5b:44:1f:fc:f8:b1:65:ee:20:ab:a3:3f:82:
ee:7b:1b:c0:bd:21:26:6b:86:10:14:44:52:a9:c0:be:60:dc:
7e:42:03:48:29:55:ac:12:57:e1:7e:fa:07:75:73:f0:81:78:
5a:90:2d:25:01:fe:e0:3d:1a:6a:31:fe:ed:93:12:cd:93:e0:
82:4d:68:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:55 2024 by rpki-client on console-ams.rpki-client.org