Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ki5qP5B82ouw3tBbYXuquhb6bKY.roa
File: ki5qP5B82ouw3tBbYXuquhb6bKY.roa (raw, json)
Hash identifier: 57HpldM2RWuqBevEb388AP2GTvtkCc4MJu7IdJF5pBI=
Subject key identifier: 92:2E:6A:3F:90:7C:DA:8B:B0:DE:D0:5B:61:7B:AA:BA:16:FA:6C:A6
Certificate issuer: /CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Certificate serial: 01906DB02529F0FC4A90AC3BE12DF2FE9847
Authority key identifier: 8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ki5qP5B82ouw3tBbYXuquhb6bKY.roa
Signing time: Mon 01 Jul 2024 09:46:18 +0000
ROA not before: Mon 01 Jul 2024 09:46:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 400866
IP address blocks: 185.101.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 13:02:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6d:b0:25:29:f0:fc:4a:90:ac:3b:e1:2d:f2:fe:98:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a5a3417fbe25c2e467c18485c181a7776f96ff4
Validity
Not Before: Jul 1 09:46:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=922e6a3f907cda8bb0ded05b617baaba16fa6ca6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:e9:75:2a:cc:d1:7e:d9:53:a3:da:4e:a3:37:
00:76:ed:00:db:da:d9:03:08:5d:62:58:59:ba:e3:
64:eb:c7:ac:07:38:72:8e:ab:f3:bf:78:1c:ca:01:
e8:95:70:8d:45:82:29:3d:51:e8:49:2d:e0:a0:e0:
9f:7c:50:71:ec:1d:b5:f8:cc:7b:dc:ff:76:64:f4:
a6:a9:e5:38:d9:a8:89:1f:0f:b4:2b:0b:cc:0e:eb:
93:52:ad:20:91:34:eb:e3:19:98:c5:5c:d5:a9:dd:
f7:63:b0:54:a0:4f:f1:80:8c:d3:40:8b:28:a9:4f:
a3:ec:65:bb:6c:71:a1:ea:e3:d5:ed:56:d9:28:9b:
7b:44:42:ee:f3:8a:36:1e:52:95:0c:2a:10:6d:21:
a7:31:a2:5e:39:18:1a:ab:75:fd:87:6e:a5:09:cb:
a9:96:77:ab:55:3d:e6:91:87:ea:10:ef:ba:4d:4e:
3b:d8:7b:8f:5e:b3:27:75:d6:34:56:44:2c:67:94:
40:27:e9:dc:ed:37:e2:36:52:8a:fa:66:6e:31:dc:
d5:a3:75:ea:74:a9:75:13:af:d1:93:be:44:21:71:
3b:7c:be:ff:0b:b9:c9:3a:9b:fb:cd:91:05:d5:9b:
d6:1d:49:58:a6:7f:d7:1f:f0:01:b4:20:db:6e:e9:
f8:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:2E:6A:3F:90:7C:DA:8B:B0:DE:D0:5B:61:7B:AA:BA:16:FA:6C:A6
X509v3 Authority Key Identifier:
keyid:8A:5A:34:17:FB:E2:5C:2E:46:7C:18:48:5C:18:1A:77:76:F9:6F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ilo0F_viXC5GfBhIXBgad3b5b_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ki5qP5B82ouw3tBbYXuquhb6bKY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9c6e07-693f-46ce-8646-d7abcd0ef64a/1/ilo0F_viXC5GfBhIXBgad3b5b_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.47.0/24
Signature Algorithm: sha256WithRSAEncryption
55:b7:d0:f4:66:e9:05:27:56:85:d5:27:7c:f7:61:11:09:cf:
56:67:2a:df:d3:e4:5f:b4:e2:39:f5:5a:c9:9b:bb:9b:ba:21:
70:d4:36:a1:c8:f2:64:7a:29:22:54:3f:74:c0:42:79:e4:f0:
22:57:30:a5:2e:c5:58:20:1f:45:29:56:2e:26:e1:c3:58:0c:
56:a1:a4:d6:3f:4f:10:b9:0a:67:f9:4c:da:6f:09:7f:96:b5:
03:72:9c:82:89:9d:9a:ce:9f:79:f6:1b:fa:7f:b9:40:e7:69:
dc:b4:d3:bd:b0:bc:31:a0:56:95:01:df:9a:53:59:a8:43:8f:
2f:4d:ad:fc:59:24:24:72:56:7a:cd:3a:77:d2:86:ca:af:60:
08:5a:21:a6:ef:d2:30:68:dc:86:9d:8f:f3:d5:87:ec:c6:a7:
21:49:be:c3:be:a3:1b:55:ac:33:d2:9c:62:fc:68:65:0b:1e:
1d:14:e5:cd:71:44:af:48:37:60:b1:20:08:7b:f2:ab:fa:dc:
be:6f:92:72:09:0f:53:78:30:60:1b:02:23:a5:38:cd:07:75:
67:87:ab:b9:f6:7b:1d:6a:7f:b1:2b:3e:a2:83:99:ef:1b:13:
a0:a1:18:d9:4f:ee:d0:f6:32:0a:80:61:89:9f:ba:f0:10:ec:
6a:4b:c4:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 14:29:33 2024 by rpki-client on console-fra.rpki-client.org