Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/1-0zK6Lt1dGE1e8ih5Gs3mixrQkQ.roa
File: 1-0zK6Lt1dGE1e8ih5Gs3mixrQkQ.roa (raw, json)
Hash identifier: Wkfjsk6e48qWIoqRAUleq2uuG/8gNjLv1GTwdJqUslA=
Subject key identifier: FB:4C:CA:E8:BB:75:74:61:35:7B:C8:A1:E4:6B:37:9A:2C:6B:42:44
Certificate issuer: /CN=f48b3f0c6a87c045bdcffabd900db8892be702e1
Certificate serial: 018B421C34950D682BEF6901BB936FB15718
Authority key identifier: F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/1-0zK6Lt1dGE1e8ih5Gs3mixrQkQ.roa
Signing time: Wed 18 Oct 2023 09:27:06 +0000
ROA not before: Wed 18 Oct 2023 09:27:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8481
IP address blocks: 185.54.188.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:42:1c:34:95:0d:68:2b:ef:69:01:bb:93:6f:b1:57:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f48b3f0c6a87c045bdcffabd900db8892be702e1
Validity
Not Before: Oct 18 09:27:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb4ccae8bb757461357bc8a1e46b379a2c6b4244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:60:03:c2:21:9e:66:17:08:a0:ee:01:a5:de:
1b:37:62:4a:d3:30:8c:ee:a6:b3:76:42:cc:ac:d7:
e0:5b:18:5c:10:7e:c7:7c:82:d0:d0:80:7a:ee:19:
c5:61:6a:2f:cc:05:54:41:82:13:be:54:f4:da:dd:
cc:3e:e1:5f:65:8d:48:6b:75:10:67:f2:7b:3e:b1:
ed:36:bb:c1:71:7e:27:00:27:63:d5:bd:a4:de:8a:
ae:63:03:7f:80:cf:b4:8d:68:e0:0e:e8:2d:70:81:
15:45:7f:aa:ce:16:3a:b8:83:a9:b8:cc:80:16:11:
02:57:ce:69:ce:49:01:b8:4c:db:85:cb:4a:45:e9:
0a:bd:57:66:48:e0:b7:f1:40:57:56:af:31:5b:60:
09:5a:e5:af:42:a5:5b:1e:99:f1:f1:cc:83:6d:74:
79:9f:f3:d5:cc:f5:91:fb:34:9a:db:36:ea:d8:c9:
61:2f:dd:41:72:a3:fb:56:60:dd:a6:56:b9:02:62:
f4:50:63:5e:bf:eb:cb:58:a8:6a:ad:17:94:28:f1:
f1:b0:af:7d:5b:87:0c:4c:e8:b6:23:84:0b:04:06:
67:5f:ec:d5:85:37:c9:0c:bd:80:9d:d4:05:27:0f:
77:f7:30:6a:82:29:ee:6e:02:b8:5f:c2:d6:11:01:
91:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4C:CA:E8:BB:75:74:61:35:7B:C8:A1:E4:6B:37:9A:2C:6B:42:44
X509v3 Authority Key Identifier:
keyid:F4:8B:3F:0C:6A:87:C0:45:BD:CF:FA:BD:90:0D:B8:89:2B:E7:02:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9Is_DGqHwEW9z_q9kA24iSvnAuE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/1-0zK6Lt1dGE1e8ih5Gs3mixrQkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/2e2747-ad74-4d31-9256-d35edb9fdd21/1/9Is_DGqHwEW9z_q9kA24iSvnAuE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.188.0/22
Signature Algorithm: sha256WithRSAEncryption
16:c7:4b:ff:ae:81:e5:42:77:9d:5f:14:dc:8a:93:c2:57:69:
d2:91:76:18:fc:bb:67:89:74:31:0c:a1:80:57:97:8a:8a:ca:
1c:ee:9c:6d:ab:7c:ba:5a:2c:72:be:3a:d9:40:ef:af:70:81:
84:ef:08:e8:24:1e:b5:42:35:36:2b:47:71:46:27:81:92:06:
f8:01:6e:fc:c7:b7:ce:45:3a:5a:ed:d4:64:84:0d:7a:7a:39:
84:51:ea:d5:bd:af:71:05:0b:14:a2:34:3b:fe:ca:70:78:d9:
60:1c:1f:1f:7b:d9:04:1b:4d:66:30:38:73:c1:fd:6a:3f:55:
16:ca:bd:6c:3a:10:ad:24:d2:22:76:f1:c9:79:1f:33:a9:3b:
98:23:d7:f9:96:3a:60:c3:99:dc:7d:1a:5c:62:c8:b7:2c:24:
04:61:f4:fe:81:c2:1d:f9:ad:75:60:6f:50:f3:9f:87:52:b5:
5e:ac:45:2e:8b:f0:66:9a:03:59:a1:7c:03:12:09:6b:39:67:
21:92:81:38:0e:77:56:9f:b6:d4:a7:0e:46:ac:01:09:14:1b:
fa:6c:73:a2:27:ff:7b:85:9d:a4:8b:2d:82:de:23:b9:22:db:
20:9d:c4:f3:fb:f1:a8:2d:86:6c:28:4c:c3:79:b9:23:05:1e:
d2:52:7b:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:13 2024 by rpki-client on console-fra.rpki-client.org