Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/3fd6e9-17d3-4019-8669-9666d976285d/1/j7iLmI5LbGZUl669mRqOK-u6Fvo.roa
File: j7iLmI5LbGZUl669mRqOK-u6Fvo.roa (raw, json)
Hash identifier: baUD76lsyHgcJq/phW3ov9ueyP8ty9lCO+IELgX8f/U=
Subject key identifier: 8F:B8:8B:98:8E:4B:6C:66:54:97:AE:BD:99:1A:8E:2B:EB:BA:16:FA
Certificate issuer: /CN=b0a5699a08c7bfd707cfb06d3213f5cacbf28257
Certificate serial: 018CC870208E6EAD3B247396764C7972E7F3
Authority key identifier: B0:A5:69:9A:08:C7:BF:D7:07:CF:B0:6D:32:13:F5:CA:CB:F2:82:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKVpmgjHv9cHz7BtMhP1ysvyglc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/3fd6e9-17d3-4019-8669-9666d976285d/1/j7iLmI5LbGZUl669mRqOK-u6Fvo.roa
Signing time: Tue 02 Jan 2024 04:30:40 +0000
ROA not before: Tue 02 Jan 2024 04:30:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199290
IP address blocks: 185.171.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 05 Apr 2024 08:47:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:20:8e:6e:ad:3b:24:73:96:76:4c:79:72:e7:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a5699a08c7bfd707cfb06d3213f5cacbf28257
Validity
Not Before: Jan 2 04:30:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8fb88b988e4b6c665497aebd991a8e2bebba16fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:ab:ce:f8:18:35:5b:a9:5a:d4:c1:2a:39:78:
f9:54:87:bb:b9:cf:0e:e4:f9:b6:43:dd:84:5d:7a:
73:f4:84:07:26:5e:94:57:4e:fe:cd:ad:ab:f4:3d:
8e:6d:30:b5:3c:5f:9a:7f:87:6d:f1:a4:14:33:44:
dd:45:02:27:01:b9:b6:2b:37:ae:12:ba:1a:06:af:
25:b2:75:d4:42:66:0c:73:ee:ed:88:bc:f3:86:88:
a9:42:f3:4c:97:b9:94:13:c6:f4:85:5b:f8:b9:dd:
5a:4e:b0:ba:cc:ef:83:c5:07:2c:2c:9e:a6:81:9d:
99:12:2a:6b:1e:a0:df:7c:7a:48:97:31:e1:c8:9e:
b0:e9:30:c0:d4:c2:5e:93:ec:3f:7d:4c:0e:90:b8:
cf:ac:17:8e:e5:8a:e7:e9:ba:8e:60:af:52:27:02:
ef:00:37:96:49:90:62:74:9c:93:87:5a:8e:61:a2:
fd:46:e9:49:c7:1c:2e:7f:f5:ad:95:a5:58:98:3b:
c9:72:21:a2:e9:22:be:6a:6a:39:24:d3:32:9d:65:
c6:82:2c:1e:a7:88:22:ae:01:8d:7f:fb:07:71:9e:
8d:88:ee:5c:51:be:27:80:f3:bf:3f:18:f9:e5:88:
e3:ef:ec:1e:02:3e:99:9a:b4:4f:77:c4:e8:10:94:
e5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:B8:8B:98:8E:4B:6C:66:54:97:AE:BD:99:1A:8E:2B:EB:BA:16:FA
X509v3 Authority Key Identifier:
keyid:B0:A5:69:9A:08:C7:BF:D7:07:CF:B0:6D:32:13:F5:CA:CB:F2:82:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKVpmgjHv9cHz7BtMhP1ysvyglc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3fd6e9-17d3-4019-8669-9666d976285d/1/j7iLmI5LbGZUl669mRqOK-u6Fvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3fd6e9-17d3-4019-8669-9666d976285d/1/sKVpmgjHv9cHz7BtMhP1ysvyglc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.164.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:db:0e:44:40:f5:24:94:ff:23:1a:42:74:0e:36:ee:85:b6:
41:9e:ed:97:e3:b8:40:f9:e9:69:95:34:11:d4:3b:61:74:08:
9b:7a:34:eb:13:70:be:aa:ed:c3:21:fe:c1:a6:41:40:d8:36:
19:d8:99:6a:ce:49:38:1c:02:d4:9b:3d:7d:6a:4e:2d:cc:f9:
a9:52:22:50:e6:a9:17:17:7f:54:a4:fa:35:d5:71:7d:15:e5:
5e:98:53:1a:c4:73:d5:4b:5f:a4:e3:5b:27:7e:c7:fa:a3:46:
69:e2:ea:ea:30:fd:3d:63:94:e0:10:45:3f:6b:4c:b0:29:99:
aa:88:1c:7c:0a:8c:02:54:f0:ae:29:8d:ff:54:6f:4e:93:23:
a6:a1:7e:f5:5e:77:63:ae:8a:3a:b7:8e:04:66:a1:71:1a:cd:
85:57:3b:24:19:53:c0:44:c2:7a:dd:20:0e:09:a5:24:b2:1d:
d9:99:75:bb:1b:cd:65:41:72:3b:f4:01:fe:2a:3e:01:04:cd:
02:e6:6a:15:a0:f3:ad:49:ed:0c:9f:ea:c9:b1:cc:eb:c3:b9:
5e:4c:48:da:4b:3a:a7:fd:48:73:9c:be:3d:2b:62:07:b8:7e:
05:60:64:19:79:12:23:5f:63:83:22:ae:6f:3e:13:85:72:ec:
7c:3e:01:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:59 2024 by rpki-client on console-fra.rpki-client.org