Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/9VsUcrgMwqdxE-8w6HSr-k4s_E0.roa
File: 9VsUcrgMwqdxE-8w6HSr-k4s_E0.roa (raw, json)
Hash identifier: X7fq8FLhPnK5XkrkgL1Wj2fspSIZFhnV4uLTf+vDg7Q=
Subject key identifier: F5:5B:14:72:B8:0C:C2:A7:71:13:EF:30:E8:74:AB:FA:4E:2C:FC:4D
Certificate issuer: /CN=f1479b83c520d784445c24828bab633f0d702cf3
Certificate serial: 0187C757EF6E7C4A4E73C79BD3D2D4D7F4A5
Authority key identifier: F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/9VsUcrgMwqdxE-8w6HSr-k4s_E0.roa
Signing time: Fri 28 Apr 2023 10:10:41 +0000
ROA not before: Fri 28 Apr 2023 10:10:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205215
IP address blocks: 185.218.208.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c7:57:ef:6e:7c:4a:4e:73:c7:9b:d3:d2:d4:d7:f4:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f1479b83c520d784445c24828bab633f0d702cf3
Validity
Not Before: Apr 28 10:10:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f55b1472b80cc2a77113ef30e874abfa4e2cfc4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:f1:b5:42:50:14:04:68:77:f5:cd:ed:96:9c:
16:10:cb:0b:90:58:1c:ad:b1:72:7c:3f:e4:95:3c:
1e:89:69:f6:41:09:0c:5f:ed:c3:7e:7e:aa:64:cd:
2a:4e:d4:89:30:8a:61:a8:f2:88:18:82:df:d7:68:
1a:d4:d8:e0:0c:b2:3a:bf:cd:11:ef:9a:70:29:c0:
ac:e0:a8:5a:b8:cf:8f:60:dc:63:fd:ab:38:e3:36:
9b:9e:14:1a:58:a4:18:fe:91:37:95:9d:50:b2:d6:
c9:cf:83:b2:92:52:8a:2c:47:8e:08:4d:77:74:7e:
58:98:51:7b:1b:54:8f:f2:26:0b:5c:1c:64:f4:f9:
e4:2f:aa:5f:47:e5:5e:f2:c2:9e:0d:f5:8b:ce:4f:
41:4d:53:a2:1a:da:d7:cf:47:11:56:75:dc:f8:8f:
07:21:65:54:8e:97:0b:86:30:34:c4:80:0a:e4:53:
70:51:b5:87:a4:91:f2:65:f7:24:a5:06:cd:bd:b0:
5b:fe:e5:7b:1b:06:d4:f9:e4:04:af:f6:35:f9:b5:
7d:55:93:a0:75:00:61:69:6a:87:75:f8:e5:00:94:
b5:ec:1f:18:2f:80:aa:54:28:9c:1e:47:a8:36:93:
ab:00:4f:08:b3:fe:a4:e2:6a:3a:d5:bd:f6:49:24:
1d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5B:14:72:B8:0C:C2:A7:71:13:EF:30:E8:74:AB:FA:4E:2C:FC:4D
X509v3 Authority Key Identifier:
keyid:F1:47:9B:83:C5:20:D7:84:44:5C:24:82:8B:AB:63:3F:0D:70:2C:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8Uebg8Ug14REXCSCi6tjPw1wLPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/9VsUcrgMwqdxE-8w6HSr-k4s_E0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a97e21-b5fe-4a56-a98a-bdd4af5f35d1/1/8Uebg8Ug14REXCSCi6tjPw1wLPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.208.0/23
Signature Algorithm: sha256WithRSAEncryption
82:0f:91:b8:08:9a:5b:51:78:f6:1f:b0:a3:0f:af:a9:87:09:
7c:d7:98:cb:03:a0:6d:b1:23:e3:42:a3:bf:ba:29:fa:13:0e:
40:21:cb:43:e3:e4:de:19:05:45:1f:66:2c:cb:2c:48:ec:d9:
b6:cb:c2:89:2a:ae:a9:67:f7:12:2d:19:0c:a4:26:43:e0:59:
07:b9:e8:dc:1a:76:35:b2:b7:ca:48:0a:81:15:24:b4:c1:e5:
ad:c5:73:ab:cb:55:19:cf:b2:99:bf:a5:22:ca:7c:a6:57:bf:
4c:e4:11:fb:c2:39:07:82:3b:b0:19:ae:af:34:9e:52:64:00:
b1:30:42:e1:e4:09:bd:8a:8d:ba:8a:d9:a8:13:89:d0:24:08:
9b:1f:e5:9b:fe:48:10:26:a2:9f:85:60:e9:dd:93:52:19:da:
b0:b9:e9:1a:10:c1:1c:65:34:5a:60:b1:58:71:b0:5c:21:2e:
e0:21:f1:40:d9:c2:9f:8a:a5:ea:69:c1:1b:fb:50:58:3c:4c:
fc:14:b3:ab:f9:2c:d5:02:25:85:ab:b6:5b:d9:97:76:f7:15:
dd:e3:f5:a9:c3:36:48:e6:74:74:0b:d2:14:be:03:c7:75:65:
49:bf:48:d3:19:7e:95:e7:5e:65:0b:c4:7a:07:1d:5f:57:43:
c5:e2:de:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:09 2024 by rpki-client on console-fra.rpki-client.org