Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/08e57c-d716-4705-9561-03adfbc68c91/1/pBn0uGm8FhBFh7siV_GFKXDJbnQ.roa
File: pBn0uGm8FhBFh7siV_GFKXDJbnQ.roa (raw, json)
Hash identifier: 2+R6HSlVGAWStn2uYVA+2kuztgQD3l//S+hZvzSru+o=
Subject key identifier: A4:19:F4:B8:69:BC:16:10:45:87:BB:22:57:F1:85:29:70:C9:6E:74
Certificate issuer: /CN=037f532fa262f5c6bd9615bcd79d6edd43f2e075
Certificate serial: 01857271138BEC942245BF2F4B3777A9552A
Authority key identifier: 03:7F:53:2F:A2:62:F5:C6:BD:96:15:BC:D7:9D:6E:DD:43:F2:E0:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A39TL6Ji9ca9lhW8151u3UPy4HU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/08e57c-d716-4705-9561-03adfbc68c91/1/pBn0uGm8FhBFh7siV_GFKXDJbnQ.roa
Signing time: Mon 02 Jan 2023 12:24:51 +0000
ROA not before: Mon 02 Jan 2023 12:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 185.186.108.0/24 maxlen: 24
185.186.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:13:8b:ec:94:22:45:bf:2f:4b:37:77:a9:55:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=037f532fa262f5c6bd9615bcd79d6edd43f2e075
Validity
Not Before: Jan 2 12:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a419f4b869bc16104587bb2257f1852970c96e74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:64:9f:4e:e2:9b:75:2c:79:c3:a6:c4:4b:f6:
9e:7b:67:04:6e:dd:92:1e:36:cd:a2:7b:e5:56:96:
c3:92:1f:f2:c4:2b:65:80:1d:f6:55:fa:5c:af:9f:
6c:10:b2:87:54:6b:b8:a4:c9:85:c3:04:af:31:c2:
78:19:c4:92:78:57:02:95:8a:14:9d:7e:31:d6:06:
6a:4b:f2:07:e4:df:d1:f1:f6:ae:d3:f7:9e:67:dc:
a3:e9:ec:64:4a:9c:2c:17:e8:8e:b1:67:28:cd:0e:
17:a3:1b:6f:06:33:98:02:12:8b:4e:17:75:ee:e1:
62:57:f7:94:87:81:17:cf:93:c8:26:b8:47:22:08:
8b:35:cc:c9:2c:3e:e2:b5:47:42:72:b7:88:1a:42:
c4:db:d9:cb:b0:7e:14:20:61:89:b0:d1:43:7d:ac:
b3:75:92:fe:7e:58:c2:77:f6:5e:6f:06:36:fc:e5:
66:bb:66:07:eb:f3:d1:ef:b6:99:2a:43:13:2b:a5:
6d:2d:a7:07:27:9e:14:c9:5e:41:78:71:b1:5e:5d:
8b:7c:14:54:d0:17:92:3f:e2:54:70:a6:eb:dd:31:
7d:3e:f9:4d:64:0d:3d:45:ae:9e:f0:0b:db:f3:d3:
fa:6f:ec:75:94:30:8b:25:94:e4:92:05:ef:cf:a3:
14:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:19:F4:B8:69:BC:16:10:45:87:BB:22:57:F1:85:29:70:C9:6E:74
X509v3 Authority Key Identifier:
keyid:03:7F:53:2F:A2:62:F5:C6:BD:96:15:BC:D7:9D:6E:DD:43:F2:E0:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A39TL6Ji9ca9lhW8151u3UPy4HU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/08e57c-d716-4705-9561-03adfbc68c91/1/pBn0uGm8FhBFh7siV_GFKXDJbnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/08e57c-d716-4705-9561-03adfbc68c91/1/A39TL6Ji9ca9lhW8151u3UPy4HU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.108.0/23
Signature Algorithm: sha256WithRSAEncryption
87:8b:e8:e6:8c:84:6f:41:c5:ae:41:52:b3:29:55:57:3c:5d:
ab:cc:af:0a:31:03:8f:00:1c:f9:bf:dd:0b:da:50:89:c2:ea:
7f:fc:47:c9:1c:74:4d:5a:61:d3:7a:b3:dd:31:44:e0:97:40:
55:a2:42:52:a9:5c:de:98:b1:a8:8e:92:bb:b1:ee:2a:e2:78:
0e:84:9e:57:0e:21:72:90:88:95:f6:2b:c3:75:25:cf:eb:5c:
31:83:20:9e:12:77:5d:53:73:2e:80:69:b3:ce:cc:5a:20:ab:
96:34:71:d2:1b:0c:05:3b:f3:d8:da:52:d4:58:50:3c:3b:b9:
f7:ef:80:ab:08:21:38:6f:fa:60:b0:3f:88:7b:ed:04:fd:8f:
03:da:22:ac:ff:e3:40:0e:72:f4:f4:7c:eb:9a:28:37:6e:6d:
53:79:77:10:96:92:0c:87:51:3e:ca:03:62:fe:3f:65:cd:5a:
87:72:08:9f:07:cf:0f:b8:e5:7a:86:3b:c2:ea:aa:f1:10:dd:
51:64:a9:e1:22:c6:e5:dd:d5:7d:ba:75:b9:5b:a6:e3:64:20:
46:6a:c1:08:0f:09:1c:c7:0f:59:52:7b:2e:06:8c:15:7c:26:
a1:82:7c:82:e2:e5:48:65:d6:83:56:a6:47:9d:3c:c5:f5:94:
eb:7a:67:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:56 2024 by rpki-client on console-fra.rpki-client.org