Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/rtaTiwhYQwd24C2YjDRsrigm6io.roa
File: rtaTiwhYQwd24C2YjDRsrigm6io.roa (raw, json)
Hash identifier: tRjq5Uovx59kjvmJ8kcBxjSvSftRo8aOqMu6yKIS8O0=
Subject key identifier: AE:D6:93:8B:08:58:43:07:76:E0:2D:98:8C:34:6C:AE:28:26:EA:2A
Certificate issuer: /CN=e168e36ba577ed47e6928729691991e4e7f235da
Certificate serial: 018896FF952E2022372E26B46CDA512D3E60
Authority key identifier: E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/rtaTiwhYQwd24C2YjDRsrigm6io.roa
Signing time: Wed 07 Jun 2023 17:55:12 +0000
ROA not before: Wed 07 Jun 2023 17:55:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137409
IP address blocks: 185.211.9.0/24 maxlen: 24
185.211.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:96:ff:95:2e:20:22:37:2e:26:b4:6c:da:51:2d:3e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e168e36ba577ed47e6928729691991e4e7f235da
Validity
Not Before: Jun 7 17:55:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aed6938b0858430776e02d988c346cae2826ea2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b6:68:57:a0:9d:5d:41:ca:fb:ec:e5:6a:15:
ab:8f:bd:8d:f8:e9:85:75:1c:0f:6b:17:a7:4b:61:
04:e3:55:5c:7e:a3:d2:ed:b3:1c:4c:57:23:3e:ed:
6f:31:36:67:63:e1:6e:1c:94:61:75:5c:17:d6:24:
01:ec:d5:68:62:37:c8:ac:ae:be:1a:39:b9:39:7a:
bf:e3:f5:aa:f5:b3:34:f2:47:f9:67:82:72:1b:02:
7a:50:cc:2a:c4:9d:4c:8d:ff:c1:ba:cd:28:61:85:
f6:28:1d:eb:32:d4:a3:36:76:9b:66:6c:7c:8b:19:
e6:97:a1:70:d0:cf:ee:c8:d9:52:49:3d:81:be:a1:
b2:e1:d2:aa:b9:3b:ef:e1:09:48:a6:40:6e:c4:1c:
77:f4:a7:df:19:be:2e:f7:8c:55:b1:92:9e:ba:af:
c4:75:1b:6d:76:a9:b4:33:37:f5:52:5d:f3:09:11:
cd:25:35:9f:b3:60:32:55:e5:d7:c8:fe:9f:ec:37:
14:78:98:a6:13:a3:05:31:ba:01:7c:50:de:25:8b:
49:74:1a:f8:a6:c6:09:bd:08:16:d1:62:1c:02:fc:
26:ba:8b:fa:b2:2a:62:14:79:23:cc:6b:59:3a:eb:
f9:15:35:86:50:ff:39:21:45:26:cc:44:1d:27:7e:
a7:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D6:93:8B:08:58:43:07:76:E0:2D:98:8C:34:6C:AE:28:26:EA:2A
X509v3 Authority Key Identifier:
keyid:E1:68:E3:6B:A5:77:ED:47:E6:92:87:29:69:19:91:E4:E7:F2:35:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Wjja6V37UfmkocpaRmR5OfyNdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/rtaTiwhYQwd24C2YjDRsrigm6io.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9a297d-cee5-4c93-b258-cb4babe9dc8f/1/4Wjja6V37UfmkocpaRmR5OfyNdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.211.8.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:b3:7f:ce:b2:4d:4f:99:32:87:f8:71:66:1e:71:27:6b:8d:
8f:ad:2b:4b:e6:87:59:10:26:34:1c:88:16:3e:8d:36:1c:85:
d9:f4:c2:77:7d:b9:67:7a:93:69:e6:06:f6:55:56:aa:e7:50:
78:dd:b6:34:30:91:9e:d1:81:fb:6d:03:f8:d6:14:75:00:64:
16:ee:c2:58:be:5e:36:e6:b5:7b:6d:be:10:6d:71:9a:58:40:
5b:2c:5b:69:54:d0:8f:4d:96:13:67:e7:80:cd:c4:f8:f5:b7:
00:f5:81:1e:52:cd:e7:98:2e:57:8e:b5:20:69:16:4c:96:ba:
9d:25:c9:7e:3a:65:92:cb:e9:23:2c:e6:3f:ac:df:b0:88:51:
19:03:9b:2e:d2:1c:34:21:dc:37:bb:d2:fe:ca:b4:bb:9a:0c:
74:fa:20:8c:5f:af:f3:79:c7:29:72:7c:36:b0:01:c1:45:b1:
19:0d:8d:e5:ec:76:f7:09:a5:3e:66:c8:55:61:8c:6f:20:51:
fe:00:54:5d:df:cc:ed:9b:16:7d:c9:1a:e4:b2:8d:1d:59:1a:
b1:85:e9:b7:18:86:01:5c:71:59:5c:ee:be:b5:98:c3:39:aa:
ca:aa:5a:11:de:9d:91:53:f6:1d:ed:69:35:f9:2a:3b:9c:ab:
56:64:14:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:20 2024 by rpki-client on console-fra.rpki-client.org