Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/9B7UOkAvJ0oONWtTGWZZqGwuI2M.roa
File: 9B7UOkAvJ0oONWtTGWZZqGwuI2M.roa (raw, json)
Hash identifier: VvgVGRq8YS/IG/8xaq/NEg9MefEyG6JgzqhSSow1So4=
Subject key identifier: F4:1E:D4:3A:40:2F:27:4A:0E:35:6B:53:19:66:59:A8:6C:2E:23:63
Certificate issuer: /CN=885b857706dac54e20ca0d11bd6416cb634203b4
Certificate serial: 0185A47BF29EE347C500B075214047F5994E
Authority key identifier: 88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/9B7UOkAvJ0oONWtTGWZZqGwuI2M.roa
Signing time: Thu 12 Jan 2023 05:37:44 +0000
ROA not before: Thu 12 Jan 2023 05:37:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212999
IP address blocks: 95.182.104.0/22 maxlen: 24
46.8.150.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a4:7b:f2:9e:e3:47:c5:00:b0:75:21:40:47:f5:99:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=885b857706dac54e20ca0d11bd6416cb634203b4
Validity
Not Before: Jan 12 05:37:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f41ed43a402f274a0e356b53196659a86c2e2363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:88:53:e0:7b:47:93:ac:a4:11:6c:9d:e6:15:
b6:1b:99:0e:f9:93:69:6f:96:01:bf:60:4c:e4:a1:
6e:df:dc:4f:e6:1c:41:85:12:0a:f6:d1:9c:7d:24:
04:ee:c2:cf:19:da:e7:62:68:a3:a9:14:fe:2e:5b:
08:bc:3b:a6:75:28:99:e7:95:66:34:85:91:28:04:
df:fe:b3:7a:ce:9d:65:fc:b0:03:36:bb:e1:6f:40:
46:2d:bb:33:60:8f:1c:3d:4d:bf:68:67:59:61:7f:
e8:18:41:d9:da:c6:98:dd:5b:df:95:4f:8f:a8:84:
69:4a:1e:e1:5e:bb:29:57:5c:1b:50:5c:52:f8:f8:
f7:44:ad:c6:7e:26:85:28:f4:59:ea:b2:de:9b:2c:
9e:00:62:dc:a1:89:a8:f0:9b:8d:1f:d1:36:8a:4d:
98:e3:16:c9:69:fd:e0:b6:74:50:80:56:7c:d1:34:
56:6e:17:e1:f8:71:30:e9:2d:55:54:66:db:77:19:
98:83:4c:ce:11:b3:3a:1c:a8:10:25:61:91:c4:27:
d8:cf:b5:ef:b3:f4:c1:ba:90:24:01:0a:1c:76:62:
23:82:74:97:d3:b3:de:5b:8d:fc:9e:63:9e:41:9a:
f7:3e:38:e7:08:6d:a0:e9:aa:71:c2:cd:f5:3f:7c:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:1E:D4:3A:40:2F:27:4A:0E:35:6B:53:19:66:59:A8:6C:2E:23:63
X509v3 Authority Key Identifier:
keyid:88:5B:85:77:06:DA:C5:4E:20:CA:0D:11:BD:64:16:CB:63:42:03:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/9B7UOkAvJ0oONWtTGWZZqGwuI2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/321cdc-2143-4b5c-9733-16699c96dd5e/1/iFuFdwbaxU4gyg0RvWQWy2NCA7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.8.150.0/24
95.182.104.0/22
Signature Algorithm: sha256WithRSAEncryption
70:50:83:74:6c:8e:d0:42:df:f1:8e:99:09:ea:de:06:45:0c:
41:cf:1f:5e:be:10:06:6a:ef:1a:02:de:fd:1d:04:48:25:32:
96:e2:ae:5d:94:18:bc:4c:2a:61:a6:f8:f7:6a:7c:32:f8:20:
6b:56:31:25:f8:72:ec:8d:d9:36:1a:99:ac:57:57:06:3e:f1:
f1:de:f4:8d:c1:a5:d2:cf:82:33:10:7a:37:b6:d7:0f:ba:9d:
22:f6:94:99:c8:cb:f2:0c:dc:48:e0:2f:55:65:48:a9:75:8b:
79:15:c9:06:55:43:12:f6:cd:6c:dc:52:62:ad:91:08:9d:06:
0a:f8:65:2b:c1:17:c4:a9:6f:e3:7e:ef:84:ed:30:b7:8f:17:
93:fc:7d:a8:69:8b:4a:da:11:1c:87:64:41:4b:43:87:09:73:
f8:57:81:95:73:9e:c6:29:13:d9:8d:43:b8:a6:ea:44:15:75:
1e:26:59:45:79:9b:14:24:1a:83:b3:19:26:e1:bd:65:1c:5e:
68:7d:44:ae:00:1a:05:12:a4:df:ac:0a:d2:1d:68:e2:e6:bf:
f5:f5:08:62:e8:76:6c:ff:f4:e3:56:5a:67:1e:24:ac:65:1d:
e5:50:5a:3d:4d:1b:e9:42:22:97:ca:3f:5e:a5:3c:c8:09:06:
e8:58:15:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:57 2024 by rpki-client on console-fra.rpki-client.org