Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/GUabbD_pNl-rTr6VEFkf8dkoNuY.roa
File: GUabbD_pNl-rTr6VEFkf8dkoNuY.roa (raw, json)
Hash identifier: YcT9to561qCxX5ASRM8HlYx+Z2pvGdHb1Hq4YG3sGos=
Subject key identifier: 19:46:9B:6C:3F:E9:36:5F:AB:4E:BE:95:10:59:1F:F1:D9:28:36:E6
Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Certificate serial: 018BB0FDFCD5FB47B777DB06CA79E1EE62C8
Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/GUabbD_pNl-rTr6VEFkf8dkoNuY.roa
Signing time: Wed 08 Nov 2023 22:11:57 +0000
ROA not before: Wed 08 Nov 2023 22:11:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205147
IP address blocks: 185.8.97.0/24 maxlen: 24
185.8.98.0/24 maxlen: 24
185.8.96.0/22 maxlen: 22
185.8.96.0/24 maxlen: 24
185.8.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b0:fd:fc:d5:fb:47:b7:77:db:06:ca:79:e1:ee:62:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Validity
Not Before: Nov 8 22:11:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=19469b6c3fe9365fab4ebe9510591ff1d92836e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:41:ee:58:ee:60:9e:85:cc:f5:62:4e:df:1a:
e2:7b:0f:4f:d1:1d:8f:77:9a:1c:f3:6d:9d:bc:21:
83:1a:c0:6c:2a:b3:37:e3:76:2b:5f:b3:13:ec:af:
1f:ab:35:f5:ec:93:28:5b:45:16:0e:1d:a8:2f:17:
94:ef:77:ab:55:6b:72:03:62:c7:9e:d4:c2:30:5b:
01:57:98:61:57:84:0e:8d:1f:71:0f:02:b1:4e:d3:
e9:d5:9f:1d:70:bc:dc:73:46:05:2f:90:18:ac:2f:
6c:d0:b7:44:69:67:bd:27:17:83:a3:84:e2:4f:fd:
6b:90:2d:64:17:2a:09:f6:7f:94:7d:f5:18:bf:2a:
6d:2d:80:f6:eb:33:7e:63:a8:57:57:7b:87:7d:6c:
55:f8:df:80:e4:75:2f:56:c5:73:e3:7d:51:75:86:
b9:33:41:33:0c:cb:de:60:21:2b:03:98:08:12:d9:
74:93:9b:7c:ff:a1:51:22:bc:26:76:c9:77:33:9e:
a8:fa:3c:70:a9:93:48:a1:a8:ca:55:ea:34:de:4d:
81:2a:a4:9c:b6:2a:46:bc:c4:a5:28:81:16:5a:0c:
c3:90:e5:4d:51:f6:71:ab:46:40:de:f0:ea:03:b9:
05:62:cf:2a:95:ae:43:1f:91:df:16:ba:0b:c2:a9:
3e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:46:9B:6C:3F:E9:36:5F:AB:4E:BE:95:10:59:1F:F1:D9:28:36:E6
X509v3 Authority Key Identifier:
keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/GUabbD_pNl-rTr6VEFkf8dkoNuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.96.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:22:4b:4f:13:cf:84:99:27:a7:38:60:1a:b0:2e:09:3e:1f:
ee:81:43:49:a7:0d:e2:96:12:8d:80:3e:90:76:33:6c:54:c0:
96:09:5f:f3:2e:28:59:0a:d1:9b:d9:20:fd:59:d6:c6:2b:c4:
e1:02:0e:62:f0:80:24:cd:37:5d:07:6e:ab:8a:a8:2f:bb:50:
94:e9:4f:bc:34:68:43:7c:6e:9b:f9:61:30:42:09:5b:cc:2e:
d2:8c:58:50:dd:66:43:41:7f:20:02:63:83:6b:4f:e3:4a:f4:
dd:46:16:1b:6a:b3:fd:36:8d:4c:f9:79:af:4b:d6:09:4b:ed:
7f:e6:08:57:61:2e:2c:b7:c5:b0:84:66:94:84:4d:32:17:94:
bb:6a:3e:97:fd:e3:ed:64:aa:76:d9:a2:e1:8f:a6:a1:12:35:
a7:1a:c1:63:8a:46:a4:fb:7d:e7:58:c2:a7:b0:95:43:c6:01:
22:22:a9:7f:9f:75:3e:60:85:fc:a9:07:3a:c0:b2:83:dc:e7:
b3:22:10:06:af:74:b9:2d:31:92:2e:ee:37:85:a7:2e:ba:f6:
cd:36:35:eb:9c:44:10:10:86:dc:d7:91:8f:4e:87:c2:7b:e1:
09:d5:54:cb:63:d5:67:18:be:5f:1c:2a:01:15:c9:02:17:a5:
99:ea:9f:e0
-----BEGIN CERTIFICATE-----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Generated at Wed Nov 8 23:12:23 2023 by rpki-client on console-ams.rpki-client.org