Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/Fn8c5eVh6hPVM-YVY4JCyDgfLcQ.roa
File: Fn8c5eVh6hPVM-YVY4JCyDgfLcQ.roa (raw, json)
Hash identifier: cEl2+5b/WUYiL/vVArb8xWJwHdodUhlY+XGR15rewyA=
Subject key identifier: 16:7F:1C:E5:E5:61:EA:13:D5:33:E6:15:63:82:42:C8:38:1F:2D:C4
Certificate issuer: /CN=039b01353e51a3a87e835963bd8833ed81853d77
Certificate serial: 01857231160AA26E7D5671B51002280DE511
Authority key identifier: 03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/Fn8c5eVh6hPVM-YVY4JCyDgfLcQ.roa
Signing time: Mon 02 Jan 2023 11:14:57 +0000
ROA not before: Mon 02 Jan 2023 11:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203318
IP address blocks: 185.138.80.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:16:0a:a2:6e:7d:56:71:b5:10:02:28:0d:e5:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=039b01353e51a3a87e835963bd8833ed81853d77
Validity
Not Before: Jan 2 11:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=167f1ce5e561ea13d533e615638242c8381f2dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:8f:68:c9:56:26:7a:ab:13:af:4f:53:61:d0:
7a:2f:2a:6e:3d:a7:6e:2f:5a:07:5e:0f:87:f2:4c:
84:39:b0:5d:75:ca:6c:dd:0a:b9:23:73:27:b0:1c:
6c:89:9d:97:bd:6f:a5:e3:e0:9f:27:43:a7:bf:60:
c1:41:b3:e7:39:e2:bd:2a:65:67:e4:cf:5f:ee:26:
b5:d6:21:f3:8d:06:fe:3b:22:ed:a5:be:25:c8:b2:
93:3f:4c:32:e6:8c:b6:03:3b:34:5a:19:5f:ca:58:
0a:41:9a:ed:1c:96:87:8d:f0:0d:96:d6:f3:fa:b1:
26:cf:8b:6c:e2:8a:3d:12:24:e8:e2:b6:21:f8:12:
96:21:2c:d2:88:93:b6:0a:ab:00:74:f7:41:54:47:
a1:c8:f6:ca:ee:6b:b5:19:62:11:df:a7:7e:70:8e:
0a:1f:ba:a2:f8:d7:1a:fb:16:aa:7a:ee:9f:9d:1b:
33:67:7a:09:df:d4:ce:8d:19:d7:c0:18:4f:11:02:
1d:da:1e:11:68:68:0b:c3:84:98:c6:18:75:63:dc:
fa:8b:5e:03:8f:f8:ae:83:bc:9d:3f:6d:30:0f:2d:
d2:aa:da:88:f2:dc:ae:6e:6f:ff:ad:79:bf:43:d6:
33:81:82:62:b1:54:ec:a4:40:31:02:9f:bf:e3:23:
20:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:7F:1C:E5:E5:61:EA:13:D5:33:E6:15:63:82:42:C8:38:1F:2D:C4
X509v3 Authority Key Identifier:
keyid:03:9B:01:35:3E:51:A3:A8:7E:83:59:63:BD:88:33:ED:81:85:3D:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/Fn8c5eVh6hPVM-YVY4JCyDgfLcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/2cf88f-2c6a-4b48-a25e-4a8b6b4082b1/1/A5sBNT5Ro6h-g1ljvYgz7YGFPXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.80.0/22
Signature Algorithm: sha256WithRSAEncryption
62:35:11:ff:e2:52:25:e1:56:7c:df:8f:2c:f7:0d:bb:e3:ea:
9f:cb:47:6b:c4:8e:c8:30:a3:14:17:16:f0:00:01:b9:a5:e0:
ab:e4:a3:5b:d9:10:29:38:95:26:89:d7:98:21:94:8b:1b:54:
71:6a:d4:d3:fc:19:52:d7:86:c4:00:5c:28:46:e4:11:3e:b1:
d0:19:00:de:37:b0:d6:30:b9:94:11:a2:cf:4f:cd:08:81:fa:
6e:28:eb:b5:b8:4e:4c:5e:7f:42:05:0c:4e:ae:54:69:ff:aa:
ec:74:18:94:ce:89:01:19:69:69:3b:a1:ce:b8:d9:da:23:74:
d1:4b:8d:fe:50:02:78:f0:9b:dd:97:54:34:e4:74:25:f5:e2:
d5:ae:28:55:e4:29:32:1c:d1:1f:d1:a0:b8:ae:79:97:d3:50:
8d:e9:70:29:4a:79:74:06:96:c2:8a:22:d6:b1:12:5d:7c:32:
50:2e:5e:07:a2:d6:cb:fb:74:15:d3:60:8e:90:b9:ad:0b:ff:
72:03:11:df:f9:5b:2e:07:97:7a:25:b2:af:41:7a:4f:8f:23:
18:7d:07:ae:47:bf:2e:df:b8:eb:19:21:04:a6:f3:90:17:da:
e8:3f:b0:51:07:8f:09:dd:bc:7b:41:de:11:4c:25:44:96:7d:
1f:13:f6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org