Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/v8MQpg7-L9KstXPDZ82PzHqIDn0.roa
File: v8MQpg7-L9KstXPDZ82PzHqIDn0.roa (raw, json)
Hash identifier: +tPhbIjfRZcu9U9UnzwhIEu19tRUFyWNDqTkxEvEgkU=
Subject key identifier: BF:C3:10:A6:0E:FE:2F:D2:AC:B5:73:C3:67:CD:8F:CC:7A:88:0E:7D
Certificate issuer: /CN=1f5cf6d120e28138b0aa2fc83cba9b0e96796c36
Certificate serial: 01856C4A4FE08F14924A371F08193E699171
Authority key identifier: 1F:5C:F6:D1:20:E2:81:38:B0:AA:2F:C8:3C:BA:9B:0E:96:79:6C:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1z20SDigTiwqi_IPLqbDpZ5bDY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/v8MQpg7-L9KstXPDZ82PzHqIDn0.roa
Signing time: Sun 01 Jan 2023 07:44:47 +0000
ROA not before: Sun 01 Jan 2023 07:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202506
IP address blocks: 185.247.160.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:4f:e0:8f:14:92:4a:37:1f:08:19:3e:69:91:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f5cf6d120e28138b0aa2fc83cba9b0e96796c36
Validity
Not Before: Jan 1 07:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfc310a60efe2fd2acb573c367cd8fcc7a880e7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:82:e6:fd:fb:55:57:ef:09:59:10:b9:2c:dc:
ce:aa:d0:bd:bc:1b:28:a9:66:3a:fa:8b:f1:8d:f0:
e0:4e:3d:b5:62:38:16:c9:0b:ae:3f:26:0b:45:50:
f0:60:7f:27:1a:29:57:e1:1c:ac:8c:8e:01:57:a5:
2f:9d:a2:59:87:ea:f9:fd:f1:ea:5f:68:75:cf:9f:
50:11:dd:ee:df:d6:ba:b2:ca:0b:cf:b5:6f:60:d3:
b0:72:25:b2:bd:b7:92:0d:4d:4c:48:be:3f:c2:c9:
06:3e:6a:d8:1c:d1:3f:cc:12:d2:b8:95:39:fe:ed:
1a:19:82:eb:b6:ac:d1:e4:e6:31:b9:6e:2e:d7:04:
c9:31:9f:09:11:79:97:dd:a7:aa:69:d2:a8:b0:7c:
1b:6a:e4:22:20:d2:f7:40:24:c0:cf:79:f3:79:66:
b1:c7:30:e1:76:9c:97:9c:90:54:fa:e0:d6:4c:65:
2b:e0:f8:30:0a:06:c3:9f:c0:94:1b:42:3b:9a:66:
d5:28:ec:4e:b4:8b:f6:87:d6:03:fe:9e:a6:47:6c:
9a:60:f4:4d:4d:44:36:10:e2:25:a3:8d:42:73:a0:
48:7f:dd:11:50:b3:4b:03:4a:1a:cb:6f:48:08:bb:
2d:c6:3c:d3:9f:18:c0:68:ee:b0:5c:27:b6:79:67:
86:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C3:10:A6:0E:FE:2F:D2:AC:B5:73:C3:67:CD:8F:CC:7A:88:0E:7D
X509v3 Authority Key Identifier:
keyid:1F:5C:F6:D1:20:E2:81:38:B0:AA:2F:C8:3C:BA:9B:0E:96:79:6C:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1z20SDigTiwqi_IPLqbDpZ5bDY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/v8MQpg7-L9KstXPDZ82PzHqIDn0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/00e8e1-c235-49a9-9f92-63831ae951ef/1/H1z20SDigTiwqi_IPLqbDpZ5bDY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.160.0/22
Signature Algorithm: sha256WithRSAEncryption
15:78:31:50:62:c3:40:04:55:f2:d1:07:3d:11:a5:45:61:0d:
30:2d:74:eb:ae:20:db:fc:72:19:67:1a:cb:2d:2d:29:e7:f6:
f4:d7:cf:c4:ad:d5:5a:f5:be:d2:17:9c:a2:99:2f:84:ef:61:
bb:e7:e1:7a:c8:14:fe:a8:be:9f:25:1e:84:11:28:64:42:34:
97:70:ab:73:82:c7:4a:f4:13:ca:66:93:7a:01:b6:ab:86:f0:
cc:1e:eb:ea:0e:67:54:c7:b1:18:91:63:a4:c8:4f:39:0b:6d:
4f:81:0d:8c:43:02:6c:62:7d:1c:ad:5e:7a:35:49:04:ee:07:
9e:bb:c6:a2:b1:63:3d:59:dc:f7:b8:44:64:4c:c8:48:05:29:
87:4d:00:b2:24:53:c1:a0:8a:83:8d:d7:ab:5e:8a:89:f6:58:
44:d8:92:5f:73:ff:55:18:80:2d:8e:57:cb:33:50:c4:e7:dc:
16:52:df:59:43:44:72:aa:36:b3:83:f4:5b:f5:55:4a:90:2b:
a4:55:b4:f2:6d:a9:e3:5a:05:db:06:b9:d5:e4:79:4e:c4:0f:
d3:70:62:30:20:51:b0:33:63:11:96:57:55:91:50:52:84:a9:
62:3b:08:bc:a7:50:60:9e:42:0a:47:51:df:97:58:ee:5e:ec:
fe:93:20:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:04 2024 by rpki-client on console-fra.rpki-client.org