Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/17O8-89ABAbTHIpV6LaEwyAVUH4.roa
File: 17O8-89ABAbTHIpV6LaEwyAVUH4.roa (raw, json)
Hash identifier: yw8O2BFWsBVyMdkLCUb9q/v0RgGtLbbUgM1A9Y57Rmg=
Subject key identifier: D7:B3:BC:FB:CF:40:04:06:D3:1C:8A:55:E8:B6:84:C3:20:15:50:7E
Certificate issuer: /CN=699bb10a5572175b03a3c7cbfbe938b7b1441ac0
Certificate serial: 018A230F4E0D47D77A1CEF6BF3E584B37F76
Authority key identifier: 69:9B:B1:0A:55:72:17:5B:03:A3:C7:CB:FB:E9:38:B7:B1:44:1A:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aZuxClVyF1sDo8fL--k4t7FEGsA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/17O8-89ABAbTHIpV6LaEwyAVUH4.roa
Signing time: Wed 23 Aug 2023 15:42:00 +0000
ROA not before: Wed 23 Aug 2023 15:42:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209199
IP address blocks: 185.124.160.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:23:0f:4e:0d:47:d7:7a:1c:ef:6b:f3:e5:84:b3:7f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=699bb10a5572175b03a3c7cbfbe938b7b1441ac0
Validity
Not Before: Aug 23 15:42:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7b3bcfbcf400406d31c8a55e8b684c32015507e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e5:58:3e:7f:92:9c:cb:e4:d5:a7:16:f0:a0:
e2:52:d0:11:26:ae:f2:5d:7f:f3:20:49:bd:73:ad:
35:1b:af:3b:03:24:df:95:d2:6c:0c:8b:cb:45:15:
9f:10:cd:98:20:86:11:56:b9:0f:75:13:01:53:02:
c3:5b:ba:5d:9f:32:aa:88:fe:ea:0d:69:24:2c:d1:
2b:1e:45:7b:f2:0b:85:f3:54:cb:06:d6:f7:51:af:
8b:2f:fc:21:ee:16:85:13:b7:37:22:72:a9:70:d8:
64:ee:67:f5:eb:a7:8d:01:39:88:a7:61:16:87:08:
ad:fb:24:6d:15:99:b0:9f:7a:4d:65:ee:d1:81:f5:
84:27:76:f2:37:62:1d:2b:2f:68:de:f4:45:ac:dd:
d1:0a:2d:cb:96:04:e3:c9:b3:f8:6e:bb:89:16:7a:
62:ae:55:46:92:26:a1:90:86:a3:31:34:5b:57:8d:
a9:a8:85:d2:b4:bf:61:1b:53:0e:eb:d0:7c:a7:72:
3c:33:17:4c:ec:a7:1f:9e:55:7e:52:8e:81:c7:fd:
db:b9:fb:3c:4e:a3:b7:ab:ad:22:25:ec:36:4b:0c:
be:93:3c:8f:06:c9:8e:af:77:01:51:3c:48:8a:6e:
bd:b2:2b:e6:4b:71:41:b2:c5:aa:e6:6c:4b:3c:e6:
7d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B3:BC:FB:CF:40:04:06:D3:1C:8A:55:E8:B6:84:C3:20:15:50:7E
X509v3 Authority Key Identifier:
keyid:69:9B:B1:0A:55:72:17:5B:03:A3:C7:CB:FB:E9:38:B7:B1:44:1A:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aZuxClVyF1sDo8fL--k4t7FEGsA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/17O8-89ABAbTHIpV6LaEwyAVUH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bfa07b-87c2-452a-bd0c-8aae43063bca/1/aZuxClVyF1sDo8fL--k4t7FEGsA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:0e:28:f8:f7:75:b6:e6:74:18:4a:a6:32:c6:f4:ef:e9:ea:
f8:5b:da:97:a2:b4:83:e7:89:4b:79:17:77:97:8f:b7:73:17:
d2:ef:64:ec:5b:cc:9d:d9:aa:82:0a:d1:8c:d4:bf:18:a5:0b:
b7:86:71:2a:50:0f:34:72:ce:93:70:8c:b9:84:f0:7f:96:3a:
bf:7c:a5:58:10:f1:7c:45:a2:5f:0e:df:51:db:d4:2e:58:37:
fd:9c:44:2f:fe:c9:d9:23:9f:e6:bf:cc:e0:74:aa:f0:3d:a3:
e3:75:1e:5a:21:08:52:be:b8:c6:a8:d3:af:9c:e5:2e:9a:03:
12:46:f2:75:b8:30:a7:3d:ca:6c:fd:e3:0e:72:4a:d9:4d:a6:
3f:75:3e:6b:bd:7c:8f:88:5e:d5:27:21:07:64:55:58:ec:5d:
9c:0d:bb:08:79:9a:98:94:2b:3c:fd:e0:27:d9:ad:d7:a4:53:
d5:77:c1:f0:8d:85:4a:df:a3:e2:d4:5e:84:16:70:19:b7:0a:
a1:3b:0a:09:b2:33:e4:ce:dc:54:a4:55:e7:60:bf:d8:1f:4d:
80:45:d6:fc:88:91:b9:ba:c3:ea:f2:7c:e2:4c:4f:1d:97:7e:
aa:81:56:ec:71:17:0c:e6:35:00:c6:b5:44:01:45:ab:07:b4:
75:ea:0b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:40 2024 by rpki-client on console-ams.rpki-client.org