Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/3e6762-0989-48ef-a8d2-db484cce7293/1/SbFoa844C0o4LPHH1jyq8OFXHL0.roa
File: SbFoa844C0o4LPHH1jyq8OFXHL0.roa (raw, json)
Hash identifier: U27Tbf2T8nF08NVdyDgoEX54vJ4+XCiY6qpHi4XQQdI=
Subject key identifier: 49:B1:68:6B:CE:38:0B:4A:38:2C:F1:C7:D6:3C:AA:F0:E1:57:1C:BD
Certificate issuer: /CN=c8f9baab1a13df30eff0fcd780c4bbc54bc3e6d5
Certificate serial: 0185737AA2D08FD0E2F0FD20E2F5DF9D0FC2
Authority key identifier: C8:F9:BA:AB:1A:13:DF:30:EF:F0:FC:D7:80:C4:BB:C5:4B:C3:E6:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPm6qxoT3zDv8PzXgMS7xUvD5tU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/3e6762-0989-48ef-a8d2-db484cce7293/1/SbFoa844C0o4LPHH1jyq8OFXHL0.roa
Signing time: Mon 02 Jan 2023 17:14:54 +0000
ROA not before: Mon 02 Jan 2023 17:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16019
IP address blocks: 185.189.4.0/22 maxlen: 22
2a0b:d780::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:a2:d0:8f:d0:e2:f0:fd:20:e2:f5:df:9d:0f:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f9baab1a13df30eff0fcd780c4bbc54bc3e6d5
Validity
Not Before: Jan 2 17:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49b1686bce380b4a382cf1c7d63caaf0e1571cbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e3:d8:c2:3c:c2:cd:d4:df:d6:d2:69:ba:16:
30:17:1b:71:0c:2f:d8:69:60:c1:39:f5:ce:c5:e7:
d7:c8:1a:29:a9:72:29:63:44:05:a0:fe:a0:71:84:
6f:17:48:52:ca:b1:78:fb:50:28:e2:d6:e6:c8:5d:
6b:86:bf:4c:57:d3:ee:68:13:9c:05:c0:9b:c1:6b:
d2:ac:e3:74:58:9d:ca:cf:ad:bc:6b:ec:c3:59:9b:
ba:07:75:a5:0e:29:ac:5e:8f:fc:bf:12:a8:5c:a7:
45:10:4e:8d:36:5a:27:21:db:0b:22:e1:8a:f3:f2:
1a:f4:33:26:02:22:c5:fa:81:2c:4f:f3:e6:25:5d:
4e:3e:da:69:a1:89:75:f0:0e:87:fc:0d:be:8f:7e:
45:c9:8b:40:07:bd:7b:4b:b6:70:c6:38:80:f1:12:
2a:19:8f:e5:05:4e:40:00:49:61:56:61:b6:8b:1c:
af:3a:46:b2:b4:8d:e1:4e:81:f6:fd:ce:c5:3f:80:
fa:6e:63:45:eb:85:78:85:d4:d1:bc:62:3f:fa:c5:
97:dd:e1:85:82:ba:8a:b3:d8:1f:fb:b8:35:87:cd:
31:ab:ee:60:2b:e7:fa:c4:2e:42:36:7a:cc:89:e9:
17:0a:2b:40:7d:1d:a1:dc:f2:61:d7:57:a5:b2:e3:
aa:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:B1:68:6B:CE:38:0B:4A:38:2C:F1:C7:D6:3C:AA:F0:E1:57:1C:BD
X509v3 Authority Key Identifier:
keyid:C8:F9:BA:AB:1A:13:DF:30:EF:F0:FC:D7:80:C4:BB:C5:4B:C3:E6:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPm6qxoT3zDv8PzXgMS7xUvD5tU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/3e6762-0989-48ef-a8d2-db484cce7293/1/SbFoa844C0o4LPHH1jyq8OFXHL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/3e6762-0989-48ef-a8d2-db484cce7293/1/yPm6qxoT3zDv8PzXgMS7xUvD5tU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.189.4.0/22
IPv6:
2a0b:d780::/29
Signature Algorithm: sha256WithRSAEncryption
47:1b:68:ef:2c:1d:6a:d7:90:21:ed:60:a2:ad:cb:fe:31:68:
f5:68:d4:1a:cf:21:f6:c6:b3:0e:bb:3f:66:bf:a4:e4:14:cb:
03:40:48:cf:7b:92:47:91:1c:0c:bc:ed:39:38:53:7a:14:e0:
bc:ab:5e:cf:1c:f7:8f:1c:04:d2:71:78:96:15:e4:44:3e:48:
5f:f6:62:41:5e:17:fc:27:80:af:d3:c6:a9:34:48:81:ce:76:
60:1c:50:ff:0b:37:c1:e6:9b:a2:85:4c:10:2f:52:b7:af:1b:
cd:d7:ec:ed:8b:98:ee:e7:26:b6:d1:f3:98:3c:e1:29:58:16:
85:44:1c:48:17:38:ad:b1:95:ab:35:0e:d7:0c:b7:5b:76:bf:
63:b1:5d:5b:4a:f3:8b:18:70:a6:c9:5d:f9:9a:e7:52:3d:5f:
23:c0:6c:ef:5f:25:c9:40:c2:e0:f0:c6:92:ee:ac:1c:38:8e:
53:f6:38:80:a9:0d:ee:1e:dc:5b:45:3b:c2:15:49:25:d4:74:
5b:a9:2a:0f:2b:70:be:18:f9:be:cd:fe:12:c9:a8:e5:32:05:
45:0a:ab:7f:0c:b3:dc:39:23:1a:dd:7b:a7:62:d1:75:09:4f:
d8:a4:4b:4f:d2:d7:6f:b3:35:7c:53:74:bb:54:9b:2b:9c:45:
ff:52:0e:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:12 2024 by rpki-client on console-ams.rpki-client.org