Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/bI0KXXPHy9GlohZj9hc4OFzMPEE.roa
File: bI0KXXPHy9GlohZj9hc4OFzMPEE.roa (raw, json)
Hash identifier: /hburgLSfg8HoElsGy9pfCjWVHoF1C/8cM3H/KArqPY=
Subject key identifier: 6C:8D:0A:5D:73:C7:CB:D1:A5:A2:16:63:F6:17:38:38:5C:CC:3C:41
Certificate issuer: /CN=473163527e83542dce693b16d0aedcd126d3319a
Certificate serial: 01856F8B78E341CFD37CFB8A89F3C70E689A
Authority key identifier: 47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/bI0KXXPHy9GlohZj9hc4OFzMPEE.roa
Signing time: Sun 01 Jan 2023 22:54:49 +0000
ROA not before: Sun 01 Jan 2023 22:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201152
IP address blocks: 185.55.248.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:78:e3:41:cf:d3:7c:fb:8a:89:f3:c7:0e:68:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473163527e83542dce693b16d0aedcd126d3319a
Validity
Not Before: Jan 1 22:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c8d0a5d73c7cbd1a5a21663f61738385ccc3c41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a0:fc:6e:3a:24:7d:c3:c1:65:e4:71:5f:b6:
6a:f2:f9:e7:82:16:04:66:bc:ef:d9:98:ab:48:9b:
24:58:c3:37:28:21:17:cb:4c:0e:bc:dc:9d:2e:fd:
80:7c:2b:3f:65:a0:cf:c1:b5:e8:07:77:5c:1d:10:
05:b8:bf:71:22:bf:85:65:ad:bc:3d:b6:18:b4:1f:
5b:6f:20:84:c6:85:21:8c:21:76:6d:4d:f6:ad:26:
67:f1:c9:53:37:0a:c2:67:6e:92:90:cf:60:8f:bb:
22:ca:c8:57:fb:9e:af:bd:79:1b:2b:a0:f3:9d:2a:
c9:18:a3:db:6a:9d:6f:a5:95:0d:26:0a:cf:19:19:
55:5d:8b:dd:4a:fc:cc:a8:2f:de:1b:2a:c5:3f:d9:
68:fd:cf:b6:e8:65:c2:cc:57:d2:b5:9f:51:92:14:
8d:f2:08:a5:a3:b9:11:d6:fb:54:13:ac:a7:e6:21:
7f:b7:b8:b7:79:a0:9b:9c:dd:7e:d7:00:a6:a3:42:
82:9d:60:40:55:37:ff:b4:02:9c:5b:bc:20:95:07:
9f:5d:1d:52:d8:a1:90:12:07:bf:40:61:2d:88:32:
6c:1e:ea:8f:fb:44:f7:32:fd:49:1e:db:e4:af:d6:
05:89:52:23:5a:37:35:92:87:0e:4c:d4:c5:ab:99:
ba:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:8D:0A:5D:73:C7:CB:D1:A5:A2:16:63:F6:17:38:38:5C:CC:3C:41
X509v3 Authority Key Identifier:
keyid:47:31:63:52:7E:83:54:2D:CE:69:3B:16:D0:AE:DC:D1:26:D3:31:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzFjUn6DVC3OaTsW0K7c0SbTMZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/bI0KXXPHy9GlohZj9hc4OFzMPEE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/ab2389-8d36-43fe-af42-9a3841967181/1/RzFjUn6DVC3OaTsW0K7c0SbTMZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.55.248.0/22
Signature Algorithm: sha256WithRSAEncryption
06:13:2d:82:68:14:50:51:32:7e:93:4a:6b:9a:3c:ba:73:f2:
a8:e7:00:e1:cf:96:60:93:be:e6:10:71:c3:b5:3e:50:8b:02:
b1:e1:a5:12:1d:a1:fa:9d:bd:b0:cc:c9:54:db:c9:e6:cb:79:
95:b2:87:ca:e0:51:a7:4f:2a:b8:2f:97:3c:ac:a1:56:06:58:
c0:f7:0f:10:cb:36:a2:9b:c4:84:23:eb:9a:9a:0d:fd:f3:85:
c4:6e:5e:70:c2:37:9e:d5:42:f9:00:25:00:17:30:e9:6b:5c:
2e:8d:72:41:55:32:db:31:5b:4d:66:05:83:96:08:05:11:95:
3c:60:94:8f:1d:08:7c:6e:74:fc:94:6f:61:1a:ea:28:73:6f:
c0:42:b3:4d:ff:cf:5f:65:5d:84:ca:59:00:86:9c:8a:f5:d9:
d2:70:d4:47:8e:da:bd:24:53:2b:1b:f5:18:fc:fb:d2:1d:c4:
31:fd:cd:b7:43:dc:35:b5:82:ce:15:3a:19:0b:8d:13:43:be:
16:13:8a:b9:d5:d6:a8:0a:ec:e5:e8:d7:32:d3:a4:be:17:43:
77:9b:3f:2e:d0:ad:ed:a8:a7:59:bf:06:d0:02:4a:4e:f4:7d:
33:0d:b6:5a:7e:40:54:f3:bc:88:ad:d9:62:96:57:4f:90:86:
fd:52:9d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:32 2024 by rpki-client on console-fra.rpki-client.org