Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/1-HYm2AYb6qLNb9ILW29PWDzdWwY.roa
File: 1-HYm2AYb6qLNb9ILW29PWDzdWwY.roa (raw, json)
Hash identifier: DcH3JoDBKeuMtjbYeLgHPpEBPHqt7OZsygcaRZ7jTA8=
Subject key identifier: F8:76:26:D8:06:1B:EA:A2:CD:6F:D2:0B:5B:6F:4F:58:3C:DD:5B:06
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 018A197A132388B61669A9DCC832C4A3BF91
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/1-HYm2AYb6qLNb9ILW29PWDzdWwY.roa
Signing time: Mon 21 Aug 2023 19:02:25 +0000
ROA not before: Mon 21 Aug 2023 19:02:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.145.80.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:19:7a:13:23:88:b6:16:69:a9:dc:c8:32:c4:a3:bf:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Aug 21 19:02:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f87626d8061beaa2cd6fd20b5b6f4f583cdd5b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:1a:f3:e3:ee:fb:9b:36:b9:1f:7d:e6:6d:33:
ce:54:5e:85:2f:84:ca:16:7b:ea:b5:4b:d6:88:8a:
8b:48:8c:cb:ab:a9:71:26:35:99:0d:94:63:e4:37:
01:c8:a7:b6:ef:b4:ae:7b:8e:14:45:8c:a6:0a:6b:
ff:2e:73:48:bc:08:16:14:31:4f:29:64:de:f4:28:
a0:26:a9:4e:24:e3:f4:c0:bb:ca:9a:e2:7e:c3:46:
89:98:f2:bb:31:98:c7:61:50:13:56:92:32:f1:61:
83:10:23:df:39:c8:59:8a:16:bf:12:97:5b:72:25:
31:9c:00:cc:ca:46:7f:de:c5:40:05:85:83:0a:29:
5d:cc:54:48:ce:ac:80:ea:30:f0:8e:1b:06:a3:90:
ba:96:6e:61:f8:d3:8e:17:93:1b:8d:65:82:3d:f2:
82:ce:8c:ee:b9:dd:56:0b:86:c3:3c:8a:0f:a2:21:
41:d5:87:19:37:21:45:35:45:a3:80:0e:71:66:47:
53:f8:92:39:23:1f:48:3e:13:28:05:bb:f8:f1:54:
53:8c:3e:72:3a:6e:a2:29:68:ae:95:8c:eb:5b:2c:
e2:fd:a8:48:07:cd:9b:5b:63:a2:a5:d4:50:a9:62:
f8:2e:57:83:41:e7:8d:45:c1:99:4d:61:1d:2e:5c:
fc:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:76:26:D8:06:1B:EA:A2:CD:6F:D2:0B:5B:6F:4F:58:3C:DD:5B:06
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/1-HYm2AYb6qLNb9ILW29PWDzdWwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.80.0/22
Signature Algorithm: sha256WithRSAEncryption
62:94:2f:d2:18:41:29:99:27:c5:5d:19:c6:82:b9:9f:09:bb:
9a:dd:85:dc:13:9c:85:40:0b:da:8b:02:65:be:3c:97:7d:d0:
14:16:b5:39:d5:c9:ee:49:cd:41:fc:c6:09:4c:f3:5a:c7:53:
39:6a:d4:bb:ae:28:3b:c4:85:d8:ad:24:de:fb:c6:b2:eb:e7:
bf:36:c0:9b:e9:21:9d:41:44:2f:2a:ca:d8:97:63:b9:df:5a:
26:32:6a:21:13:c9:2d:3c:7c:b8:f2:74:8d:20:99:ef:e2:6c:
4b:25:83:8a:32:74:35:07:17:61:4c:65:49:62:e4:58:c2:8d:
15:bc:b5:2c:29:85:c0:fd:4a:e4:98:3b:e4:09:66:80:93:a9:
84:0e:66:40:4d:80:45:4f:da:bc:14:51:f4:1f:a7:b7:f4:7c:
38:2b:10:f8:9e:fe:68:4c:06:8f:1f:e9:c6:56:84:3c:f5:7f:
55:dc:41:5e:6d:a3:97:2f:c4:7e:2b:61:21:60:8a:6c:f0:2a:
14:01:07:66:f2:a5:ae:71:8d:44:93:be:33:0a:38:03:47:8e:
4e:df:af:1d:88:d6:d7:02:fb:96:2d:98:1d:f9:e0:aa:46:d3:
5f:2f:48:ce:7b:cc:3f:42:70:91:0d:fe:38:02:fb:e2:dc:11:
a9:e0:89:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:06 2024 by rpki-client on console-ams.rpki-client.org