Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/h9g-fFeOpuFIF0Mbc3XkNmvLNdw.roa
File: h9g-fFeOpuFIF0Mbc3XkNmvLNdw.roa (raw, json)
Hash identifier: rNqukP6So9jI+osDKtXLBkW4osxfPqowdw8DlfntDts=
Subject key identifier: 87:D8:3E:7C:57:8E:A6:E1:48:17:43:1B:73:75:E4:36:6B:CB:35:DC
Certificate issuer: /CN=db9b939d7bca13b6d8ccf4d8e78676f3807a0ece
Certificate serial: 0187EAF2C7E173034BC63E7EEE605C2A5085
Authority key identifier: DB:9B:93:9D:7B:CA:13:B6:D8:CC:F4:D8:E7:86:76:F3:80:7A:0E:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/25uTnXvKE7bYzPTY54Z284B6Ds4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/h9g-fFeOpuFIF0Mbc3XkNmvLNdw.roa
Signing time: Fri 05 May 2023 08:06:31 +0000
ROA not before: Fri 05 May 2023 08:06:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34447
IP address blocks: 185.97.94.0/24 maxlen: 24
185.97.92.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ea:f2:c7:e1:73:03:4b:c6:3e:7e:ee:60:5c:2a:50:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db9b939d7bca13b6d8ccf4d8e78676f3807a0ece
Validity
Not Before: May 5 08:06:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87d83e7c578ea6e14817431b7375e4366bcb35dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:cf:68:cd:88:a7:bd:2d:22:55:1a:93:1f:88:
34:d7:a9:4d:16:83:df:19:a0:85:4b:d8:b0:0e:6f:
44:11:83:4c:b7:4a:c8:05:df:3d:e6:01:eb:79:c5:
32:ad:c5:fc:96:73:de:1f:53:9d:a2:93:e5:8c:e0:
40:74:58:18:59:a5:f1:64:9f:27:e1:cd:a2:b4:0d:
1e:de:63:5e:67:ec:56:e4:73:f9:8b:da:83:9b:1f:
cc:2e:44:4e:a5:a0:75:a4:b3:90:eb:40:35:c2:75:
14:52:c1:58:b5:8e:35:5a:fd:45:b6:e2:9d:46:a0:
4d:bd:13:67:ca:db:3d:2b:8e:b8:b1:f7:2f:38:8b:
e6:a4:7d:18:02:06:4e:e5:35:50:cb:80:eb:b5:e8:
19:c4:c2:92:a4:a3:ff:02:cf:1b:c5:1d:10:00:20:
a3:81:b9:42:b1:42:65:a5:15:0c:86:55:5f:4e:67:
58:17:79:88:59:6f:39:c7:e4:c9:31:db:8d:b5:26:
91:69:87:64:ea:b3:30:d3:4d:1b:90:36:a9:72:f6:
a1:c4:02:6e:53:12:41:b0:31:38:eb:7a:3c:ec:fc:
5f:5b:a5:8e:e6:8b:d5:fc:94:f3:28:49:1c:84:80:
8b:9a:01:80:6f:0c:88:ea:85:21:b7:ca:a9:22:89:
b8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:D8:3E:7C:57:8E:A6:E1:48:17:43:1B:73:75:E4:36:6B:CB:35:DC
X509v3 Authority Key Identifier:
keyid:DB:9B:93:9D:7B:CA:13:B6:D8:CC:F4:D8:E7:86:76:F3:80:7A:0E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/25uTnXvKE7bYzPTY54Z284B6Ds4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/h9g-fFeOpuFIF0Mbc3XkNmvLNdw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/938330-ccd8-4e7a-821c-a69c5bc7ed57/1/25uTnXvKE7bYzPTY54Z284B6Ds4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.92.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:2e:1b:2b:6e:47:0a:6a:5e:80:7c:4b:29:42:bf:6b:85:08:
e0:97:9e:33:c3:21:78:fd:26:d8:48:5c:b9:56:d6:82:65:db:
c1:d3:86:09:f0:d8:b9:8a:1c:5a:6c:f4:ab:4d:ac:71:0d:3f:
12:07:6c:5d:80:15:87:9f:15:71:50:b7:8d:fe:1b:d6:f3:22:
88:5d:4f:91:77:1a:90:a1:ff:6a:16:7a:bd:70:87:55:2b:ef:
21:bf:2b:6e:1a:8c:bd:70:66:3b:78:b8:38:47:ad:f9:64:11:
a5:b8:10:e6:42:a3:cc:47:08:f2:14:b9:e3:60:0e:98:2c:e9:
cd:f7:56:9b:27:ad:71:bc:cc:26:ad:62:da:be:b5:4a:79:89:
98:59:c4:57:ca:99:ba:98:6d:e5:de:98:93:23:e7:5f:59:f7:
8f:f7:a1:d8:0b:3e:e6:cf:12:28:d5:ef:fa:7e:7b:5f:c5:ba:
54:5e:84:57:36:1f:a9:d4:0d:d0:be:cc:63:2f:93:42:5a:dc:
51:e9:0a:b9:d4:b5:1f:d4:d8:6d:b1:42:a4:93:dd:d1:2c:56:
a9:5e:50:8d:ee:da:41:fa:06:60:97:ed:93:82:0c:26:0b:5b:
3b:b4:25:2f:d5:9b:86:78:c2:ec:4f:c9:47:9e:dc:5b:50:78:
01:b2:d1:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:07 2024 by rpki-client on console-ams.rpki-client.org