Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PTf5Br3otfJvBhFIcOey1RamqSo.roa
File: PTf5Br3otfJvBhFIcOey1RamqSo.roa (raw, json)
Hash identifier: xXgIFRN9F52B2u2AYE1huO73vu7n/D9peVGSDKdrPCU=
Subject key identifier: 3D:37:F9:06:BD:E8:B5:F2:6F:06:11:48:70:E7:B2:D5:16:A6:A9:2A
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB933E7D2448D92D0D3C11927A7D7F
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PTf5Br3otfJvBhFIcOey1RamqSo.roa
Signing time: Sun 01 Jan 2023 19:25:13 +0000
ROA not before: Sun 01 Jan 2023 19:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211432
IP address blocks: 185.242.108.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:93:3e:7d:24:48:d9:2d:0d:3c:11:92:7a:7d:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d37f906bde8b5f26f06114870e7b2d516a6a92a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6f:77:53:92:d9:ed:49:b1:79:23:cf:13:a7:
7e:8d:2f:f0:d9:03:df:fe:44:40:fa:fd:3d:50:2b:
81:10:7e:8a:99:00:30:12:aa:a7:9c:8e:5f:ad:39:
3e:11:bb:98:db:58:de:64:4b:4a:c6:d7:e5:4f:d9:
84:3b:16:d1:fe:35:8a:23:ca:a5:10:56:61:da:ce:
a0:72:04:5d:f8:26:88:06:03:a1:35:b2:fb:d5:c4:
47:79:fc:a4:68:47:7b:15:8b:f7:f4:f3:37:8a:03:
a0:c5:b2:d1:a7:c6:41:4f:1c:06:ec:7c:c3:c0:a0:
3f:55:1f:8c:d0:5a:10:8a:13:b6:f5:25:51:3b:4d:
2a:6b:ad:06:d5:6c:3c:cd:5b:92:e2:a7:d8:52:e2:
cf:72:6a:18:a8:76:cd:0f:02:d9:0c:44:67:5d:a7:
22:64:09:75:f8:be:52:a1:7e:5a:01:f3:1b:f3:94:
95:ec:b3:74:03:33:d3:76:ca:5a:2a:9a:6a:00:4d:
81:e0:76:18:c8:11:54:61:4c:e5:a4:c1:4f:f5:d4:
a7:8e:10:f2:cd:6f:ff:cd:a8:5d:12:d1:dd:91:ea:
59:41:c7:32:5e:dc:e9:f2:84:0b:11:72:a8:f8:91:
55:c5:fb:20:4c:50:42:2f:09:4d:09:de:45:a5:ec:
ad:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:37:F9:06:BD:E8:B5:F2:6F:06:11:48:70:E7:B2:D5:16:A6:A9:2A
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PTf5Br3otfJvBhFIcOey1RamqSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.108.0/22
Signature Algorithm: sha256WithRSAEncryption
34:78:74:76:18:1c:91:e2:3b:51:eb:c3:b3:98:63:2d:99:16:
9b:2a:d4:56:3d:f7:77:35:e6:26:af:60:bf:17:bd:d5:f6:00:
98:70:2d:72:b2:32:1b:f6:e8:3a:c5:85:96:da:93:4b:59:99:
2c:55:3f:8b:50:85:fa:8e:5b:02:5f:a2:ae:58:c5:44:67:7b:
d8:d7:81:69:43:45:ee:31:89:3c:68:53:62:c1:1f:95:0a:d8:
a1:d3:78:55:fc:bb:90:19:91:e8:6d:a0:d3:46:07:27:9b:ea:
61:83:ba:12:74:37:e1:6d:58:bd:79:b4:38:db:f8:d1:73:c3:
16:20:99:e7:e9:b0:cc:8e:fd:21:ba:5d:77:af:c6:88:dc:43:
b4:de:8d:f1:b8:cd:ff:4e:d9:cb:7c:54:66:45:e0:21:03:5e:
80:ef:ef:09:1f:36:8e:06:35:d7:c3:b3:ab:0b:86:61:a6:bb:
cf:61:5e:cd:51:33:84:88:a2:76:d6:95:97:ca:62:92:9d:37:
9d:63:f2:06:25:47:af:fa:63:2c:e0:f7:cd:dd:3e:a0:74:5d:
88:fd:68:75:9d:a6:e7:72:f4:cf:cc:be:fb:89:a6:f8:74:34:
54:86:18:5b:6c:37:39:67:6e:6c:ab:e5:6e:9d:88:45:bf:8c:
e7:26:7f:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Oct 14 14:36:26 2023 by rpki-client on console-ams.rpki-client.org