Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/H9KTAuB-z6aYqyhIfsCFzK_ax3g.roa
File: H9KTAuB-z6aYqyhIfsCFzK_ax3g.roa (raw, json)
Hash identifier: Wnhsrfy8dAn0QHZJ9XTz8C2rspNtdFr3SMd5/2qRMmg=
Subject key identifier: 1F:D2:93:02:E0:7E:CF:A6:98:AB:28:48:7E:C0:85:CC:AF:DA:C7:78
Certificate issuer: /CN=8a3ec0537242f44ce7d5933e9b32204b3f85e99f
Certificate serial: 018571FA231020D829B12E8BA2AE7CA29072
Authority key identifier: 8A:3E:C0:53:72:42:F4:4C:E7:D5:93:3E:9B:32:20:4B:3F:85:E9:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/H9KTAuB-z6aYqyhIfsCFzK_ax3g.roa
Signing time: Mon 02 Jan 2023 10:14:56 +0000
ROA not before: Mon 02 Jan 2023 10:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 185.110.98.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:23:10:20:d8:29:b1:2e:8b:a2:ae:7c:a2:90:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a3ec0537242f44ce7d5933e9b32204b3f85e99f
Validity
Not Before: Jan 2 10:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fd29302e07ecfa698ab28487ec085ccafdac778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:29:e2:61:1f:34:c2:7d:59:4a:b0:b6:3a:8d:
55:45:df:ab:57:b8:bb:1a:35:04:25:a3:9f:21:fc:
bc:c7:07:e3:3f:fd:1c:7c:b7:b3:43:90:2d:28:0c:
8d:e1:79:a3:7a:42:ba:cf:e3:ec:ea:fd:8a:e6:7f:
ff:93:6f:a1:5b:7c:22:f9:54:a9:ac:15:c5:fe:5f:
72:53:e3:db:c2:27:fa:57:c2:78:17:79:b4:78:b8:
59:02:ad:c8:79:8f:5e:99:90:7e:cf:11:c5:17:c8:
d7:15:b7:06:00:4c:eb:c9:b6:4e:81:b3:54:bc:24:
e9:2c:81:a8:2c:ed:08:86:f5:5a:e9:a2:3a:33:9c:
70:7a:e6:36:41:7b:68:76:20:37:0c:42:49:8b:52:
5b:f5:29:f6:a0:de:b3:6b:7a:d1:ff:9d:e0:da:bb:
7d:d6:0e:9d:a4:55:2e:84:74:26:d6:41:a6:8a:75:
0d:b5:21:1b:22:bf:8a:39:dd:97:f3:95:30:14:16:
ff:a6:79:c9:af:46:42:44:76:b0:10:11:73:0d:75:
64:a8:fe:e4:82:3d:d5:93:d9:7d:7c:61:c1:3a:1e:
13:ae:56:32:39:b1:b3:51:bc:03:02:55:c0:42:7a:
70:c7:ad:f0:77:1a:89:2f:68:26:ee:78:4f:d9:a2:
4d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:D2:93:02:E0:7E:CF:A6:98:AB:28:48:7E:C0:85:CC:AF:DA:C7:78
X509v3 Authority Key Identifier:
keyid:8A:3E:C0:53:72:42:F4:4C:E7:D5:93:3E:9B:32:20:4B:3F:85:E9:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/H9KTAuB-z6aYqyhIfsCFzK_ax3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/9eb002-d26a-46d6-9d87-84093061e9ff/1/ij7AU3JC9Ezn1ZM-mzIgSz-F6Z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.110.98.0/24
Signature Algorithm: sha256WithRSAEncryption
43:90:0c:52:70:d2:73:a9:c9:c0:71:16:19:fa:4c:1f:06:0c:
6f:66:ed:2f:47:54:a2:f8:8b:7c:8c:ab:7f:52:43:21:91:7e:
ce:6e:6a:25:f2:bd:9c:61:aa:ea:fe:bb:3b:a8:ec:d1:f6:ca:
99:ec:e4:98:d3:3c:a3:1f:a1:7b:0c:8c:87:f9:5a:a3:56:c6:
cb:af:b1:d3:44:cb:16:2c:9b:64:f4:05:1d:aa:d6:dc:2e:3c:
0c:36:ab:41:75:a7:ff:90:c7:9d:71:c6:68:56:31:fb:65:30:
21:0d:16:43:98:75:7f:54:ab:60:a1:cb:df:f5:ee:be:67:1f:
35:4a:7e:c3:ca:0f:87:dc:59:33:77:eb:80:4f:15:34:95:e1:
83:0b:02:ed:52:88:ed:ac:f2:70:77:aa:3c:0f:6b:60:dd:71:
4d:ab:06:9b:5d:f1:f8:eb:cd:d2:27:0f:36:b7:07:13:6e:e5:
b1:da:c3:11:44:7d:4f:a9:2c:90:7c:a6:46:1a:4b:cb:b6:44:
73:2e:0d:40:96:da:f6:24:e0:dd:d6:19:12:ed:8e:34:ec:2c:
2f:a9:df:b8:3c:c0:2a:e0:cf:83:a7:7f:7f:d8:18:ff:d1:3c:
01:cd:9c:83:e3:e4:39:4d:63:a0:bb:86:cf:73:2c:d6:15:a2:
55:fe:be:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:25 2024 by rpki-client on console-ams.rpki-client.org