Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/ac8r-v7vbhEPodOnNU2fEoY4_2c.roa
File: ac8r-v7vbhEPodOnNU2fEoY4_2c.roa (raw, json)
Hash identifier: FUri/P3KxXr2yDi5Z79yH0WbFCrcvwxPj7XuIUyDE+M=
Subject key identifier: 69:CF:2B:FA:FE:EF:6E:11:0F:A1:D3:A7:35:4D:9F:12:86:38:FF:67
Certificate issuer: /CN=db8d08edc4393a8671296f8eacbbecf94d76562a
Certificate serial: 018C77FCCFB9313B6CDFA25E1B01169ED311
Authority key identifier: DB:8D:08:ED:C4:39:3A:86:71:29:6F:8E:AC:BB:EC:F9:4D:76:56:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/240I7cQ5OoZxKW-OrLvs-U12Vio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/ac8r-v7vbhEPodOnNU2fEoY4_2c.roa
Signing time: Sun 17 Dec 2023 13:35:06 +0000
ROA not before: Sun 17 Dec 2023 13:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19905
IP address blocks: 185.213.47.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:77:fc:cf:b9:31:3b:6c:df:a2:5e:1b:01:16:9e:d3:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db8d08edc4393a8671296f8eacbbecf94d76562a
Validity
Not Before: Dec 17 13:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69cf2bfafeef6e110fa1d3a7354d9f128638ff67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:02:71:11:2b:e6:20:bf:e5:24:36:92:19:21:
85:90:17:dd:6e:00:0a:0c:85:95:05:f7:08:a3:8b:
91:5f:de:af:d6:02:4d:d5:8a:b8:e8:58:c7:4a:d1:
5e:71:30:29:64:0d:f9:a9:f4:3e:2e:53:18:e1:a0:
45:12:dd:5f:8f:b0:3b:4a:82:c6:a5:06:c1:cd:d1:
85:95:54:5b:f8:2f:19:8a:1f:7d:1b:b1:7a:79:7a:
50:a2:ba:a0:2b:1a:bb:af:b3:1a:68:83:bb:d2:b0:
34:64:12:0e:04:f3:2d:db:7c:13:2c:fa:27:d1:09:
66:8b:3b:d3:4f:fd:92:dd:3b:65:dc:d7:95:cf:46:
39:72:b2:46:1b:11:ed:14:de:65:65:6a:cd:8e:18:
dc:dd:38:04:22:79:9f:b6:fe:56:b7:2a:74:cb:a3:
6f:fb:75:72:b9:66:73:7b:19:f8:28:3d:2d:ca:89:
fb:be:b0:9e:51:ca:42:5a:2d:70:e5:05:01:8d:ae:
95:21:b1:c2:06:0a:70:5c:22:33:29:9b:74:4a:cc:
e5:53:8c:d0:15:33:17:3c:4c:f8:e0:20:a6:0d:bc:
46:3c:f6:7a:58:0a:a0:79:e3:76:3d:b0:bd:ea:a3:
ba:2c:95:e4:04:0c:c9:38:da:b1:c2:6c:d9:76:c6:
bb:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:CF:2B:FA:FE:EF:6E:11:0F:A1:D3:A7:35:4D:9F:12:86:38:FF:67
X509v3 Authority Key Identifier:
keyid:DB:8D:08:ED:C4:39:3A:86:71:29:6F:8E:AC:BB:EC:F9:4D:76:56:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/240I7cQ5OoZxKW-OrLvs-U12Vio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/ac8r-v7vbhEPodOnNU2fEoY4_2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/7d5607-0a8a-4447-8651-c6349db9499b/1/240I7cQ5OoZxKW-OrLvs-U12Vio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.213.47.0/24
Signature Algorithm: sha256WithRSAEncryption
30:77:de:27:04:d2:f0:0f:4c:41:2c:81:64:3c:a8:a4:cf:de:
eb:49:54:e8:2f:33:8d:55:50:7d:66:83:b0:65:a2:36:64:74:
48:7e:61:8f:e4:8e:28:4e:36:6c:cd:8a:82:b4:73:6f:f1:50:
a1:51:03:95:70:cd:0f:fa:b3:21:97:e2:a6:3e:59:e0:33:de:
2e:c3:07:02:9a:74:51:33:3c:a7:3d:07:ad:f5:1f:fe:38:9a:
ab:9f:a6:fa:b3:83:5f:9e:7f:12:1f:5a:c4:a9:70:55:ae:81:
1b:de:97:09:79:65:79:bb:f5:c9:88:d6:6e:65:54:57:b5:ad:
af:cd:bc:14:b6:32:49:bf:ea:5d:15:aa:f8:a4:ec:b0:3f:f0:
ac:75:10:a7:69:0b:ce:b3:bd:a4:a8:18:21:70:41:71:b0:22:
3f:79:1a:3c:3c:a7:9c:e3:63:d7:56:2a:18:1e:58:c0:dc:36:
46:1f:73:16:0b:24:c1:fc:77:15:8f:94:34:b8:6f:5b:63:e0:
7f:13:63:41:cf:4d:f1:9d:dc:0b:e4:24:b3:c1:95:25:dc:cb:
af:d9:87:5c:b7:e7:b6:37:19:5f:f4:93:73:d3:ca:b2:c1:4e:
f3:81:8b:38:00:af:29:f0:78:31:96:fe:68:a9:52:16:b4:2a:
be:4c:08:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:55 2024 by rpki-client on console-ams.rpki-client.org