Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/n48qDOCSF3R84iv9vukcbaPhTcg.roa
File: n48qDOCSF3R84iv9vukcbaPhTcg.roa (raw, json)
Hash identifier: JGoDuO+J/45qCnjNlNUIYe6+zJySY1x8s+JM4eQRovc=
Subject key identifier: 9F:8F:2A:0C:E0:92:17:74:7C:E2:2B:FD:BE:E9:1C:6D:A3:E1:4D:C8
Certificate issuer: /CN=8777b5b36f66e13c4388c9934da507856515d073
Certificate serial: 018B9FCF2A6F354A27BC781528CDE569BA99
Authority key identifier: 87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/n48qDOCSF3R84iv9vukcbaPhTcg.roa
Signing time: Sun 05 Nov 2023 14:07:16 +0000
ROA not before: Sun 05 Nov 2023 14:07:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35219
IP address blocks: 185.64.64.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:9f:cf:2a:6f:35:4a:27:bc:78:15:28:cd:e5:69:ba:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8777b5b36f66e13c4388c9934da507856515d073
Validity
Not Before: Nov 5 14:07:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f8f2a0ce09217747ce22bfdbee91c6da3e14dc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:b0:88:02:e7:57:dc:6c:16:2a:43:dd:2a:6c:
e5:9a:f7:83:10:75:1d:49:d8:8a:ea:ec:fb:30:6a:
51:43:89:aa:d4:8e:6b:89:93:1b:ef:d7:1d:9e:86:
96:52:74:ba:ec:53:ad:e6:c1:47:d0:b1:f4:f1:ad:
87:ce:d7:7d:5d:b0:b2:a5:02:2b:68:ec:f8:5c:30:
53:4b:47:d3:55:de:dc:65:fe:e6:b5:36:4d:53:f9:
ae:57:77:44:d6:53:be:dd:28:4d:c3:1a:e7:46:75:
c2:58:44:29:f2:4c:d9:9b:f8:29:eb:a2:aa:54:47:
35:9f:0a:a0:b6:8d:07:b0:5e:da:2d:08:1c:b3:c4:
2d:1c:17:72:24:60:4c:ba:26:6c:6f:99:44:f0:f6:
84:1d:f6:4b:ef:5d:e0:20:f8:0d:66:60:e7:77:d8:
8e:90:09:d5:da:5e:af:4b:d3:c0:78:bb:a2:a8:6e:
4a:27:6d:be:fe:9c:4b:c9:9a:6d:d2:33:2f:b0:e4:
26:20:05:cc:fd:5c:10:b2:93:49:22:3e:9e:b0:a1:
fb:96:c6:24:0b:8a:c3:8a:65:f6:cc:5d:66:e0:1a:
5c:c1:6a:77:df:65:e9:ec:09:83:de:ed:41:06:b1:
e5:7a:d5:76:4c:d3:d9:3e:35:c7:be:1d:e5:7d:7f:
48:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:8F:2A:0C:E0:92:17:74:7C:E2:2B:FD:BE:E9:1C:6D:A3:E1:4D:C8
X509v3 Authority Key Identifier:
keyid:87:77:B5:B3:6F:66:E1:3C:43:88:C9:93:4D:A5:07:85:65:15:D0:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h3e1s29m4TxDiMmTTaUHhWUV0HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/n48qDOCSF3R84iv9vukcbaPhTcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/f92e2a-e1e4-487d-9acc-ed1f30cc1c57/1/h3e1s29m4TxDiMmTTaUHhWUV0HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.64.64.0/22
Signature Algorithm: sha256WithRSAEncryption
05:b5:1e:34:65:88:0e:6c:c5:6b:6e:30:66:d8:f3:ed:8e:51:
26:b0:34:ba:7a:22:23:3f:70:81:1b:9c:73:63:02:8b:d7:0a:
85:c1:00:1b:87:da:68:38:18:90:42:96:dc:6b:ac:53:9b:f8:
03:b9:14:47:e8:11:9c:8c:07:11:64:2b:82:7b:52:82:6f:55:
b3:bd:d6:25:24:52:79:0a:e0:fc:95:65:0f:5c:85:44:29:ee:
82:73:c0:78:ce:c5:65:25:76:cf:4a:66:f7:65:a2:f2:79:d5:
eb:61:16:b5:18:72:a9:10:0a:c1:61:58:e8:1f:96:51:a2:4e:
f3:1f:6d:9f:7c:ef:e6:8c:59:f3:34:47:b9:f0:9a:f7:42:b8:
27:01:03:3c:7a:f3:0a:48:35:73:88:72:41:6c:e4:a4:ce:a6:
11:4b:3e:66:e8:b9:f7:af:bb:b6:1d:c2:fe:06:60:42:4c:c2:
80:53:20:35:7b:d1:20:81:0b:e8:47:34:7f:42:18:2d:30:36:
12:60:10:0c:00:54:a6:7b:1f:f2:cc:ec:bb:ee:4c:ac:70:62:
76:36:58:c2:d3:bc:92:6a:7a:56:20:7b:4f:48:99:0b:10:8e:
7c:00:a9:af:54:43:fe:d6:03:b1:0b:4a:21:31:44:08:ab:68:
c4:f4:2e:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 7 16:57:31 2023 by rpki-client on console-ams.rpki-client.org