Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/iaEzRPY-J70aQrHxe4ZeYHDDYoY.roa
File: iaEzRPY-J70aQrHxe4ZeYHDDYoY.roa (raw, json)
Hash identifier: dUIojuqU7aGl5fQfr9TMooNkSasCPUV7rMeMYA0teJ4=
Subject key identifier: 89:A1:33:44:F6:3E:27:BD:1A:42:B1:F1:7B:86:5E:60:70:C3:62:86
Certificate issuer: /CN=d617ad35ef270efb14271357f3a675e87566bf3a
Certificate serial: 018570C2E8C5874D23662F3C82B212FB5DF7
Authority key identifier: D6:17:AD:35:EF:27:0E:FB:14:27:13:57:F3:A6:75:E8:75:66:BF:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1hetNe8nDvsUJxNX86Z16HVmvzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/iaEzRPY-J70aQrHxe4ZeYHDDYoY.roa
Signing time: Mon 02 Jan 2023 04:34:59 +0000
ROA not before: Mon 02 Jan 2023 04:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202909
IP address blocks: 185.227.88.0/22 maxlen: 24
185.209.204.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:e8:c5:87:4d:23:66:2f:3c:82:b2:12:fb:5d:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d617ad35ef270efb14271357f3a675e87566bf3a
Validity
Not Before: Jan 2 04:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89a13344f63e27bd1a42b1f17b865e6070c36286
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:b6:ea:de:3a:3d:6d:c9:fc:b3:d4:2c:f5:37:
7c:b2:4b:79:55:1e:c4:62:de:ea:d2:d6:1c:a1:c6:
2c:9b:a2:c7:9b:bb:6a:7d:e8:34:59:69:8f:60:4e:
3d:cc:2c:cf:de:7a:96:75:4e:a7:4b:ad:0d:9e:c6:
8c:d5:cb:b3:c5:96:1f:93:ad:b1:ad:9f:bb:8b:59:
12:40:9f:74:99:2f:f4:ac:86:9d:83:7e:9f:23:ed:
66:6d:c2:06:9e:ab:c7:22:66:79:8a:2f:ae:48:f4:
d1:75:11:cb:d8:00:04:91:b4:3f:f4:b7:3e:ab:0a:
ed:85:11:d1:22:e9:61:2d:6d:01:a1:e8:6b:fb:f6:
f0:0c:d6:b0:f4:5d:53:55:eb:7c:9c:03:57:21:10:
fd:9b:8a:a3:69:c8:87:58:13:7f:58:76:9d:bb:92:
94:21:5f:eb:0c:ba:f4:45:9a:d1:26:25:7f:11:45:
df:5e:7c:98:55:09:29:bf:4d:3a:76:e8:ce:81:5f:
fb:3e:6a:75:b2:89:10:f6:c7:72:c5:a8:d5:13:0b:
61:05:05:99:b5:cb:c9:54:66:a2:eb:55:11:aa:27:
91:b7:4d:cf:6a:c9:5f:8a:38:06:c1:35:de:50:c0:
9b:ae:99:c0:c2:0b:50:9b:24:72:44:37:bf:ec:6e:
88:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A1:33:44:F6:3E:27:BD:1A:42:B1:F1:7B:86:5E:60:70:C3:62:86
X509v3 Authority Key Identifier:
keyid:D6:17:AD:35:EF:27:0E:FB:14:27:13:57:F3:A6:75:E8:75:66:BF:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1hetNe8nDvsUJxNX86Z16HVmvzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/iaEzRPY-J70aQrHxe4ZeYHDDYoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/850961-dcfc-456c-bba6-2698f0601bb9/1/1hetNe8nDvsUJxNX86Z16HVmvzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.204.0/22
185.227.88.0/22
Signature Algorithm: sha256WithRSAEncryption
92:25:16:42:b3:dd:9f:a2:ec:60:5c:c2:86:0e:d8:33:be:62:
c1:c0:dd:b7:5a:18:84:79:93:1d:f6:ca:20:61:02:a9:50:73:
13:50:c5:5a:11:3d:6f:ef:55:94:1f:87:74:d0:ad:ca:6b:f2:
2d:6a:86:4f:20:a7:f6:59:91:d4:5c:5c:6d:29:0c:21:b4:06:
b0:d6:4b:80:4f:94:ad:6c:0c:e8:8f:79:f4:d5:6d:b2:66:ea:
5f:5c:a5:1c:99:5d:88:59:73:08:dd:bc:7e:b6:60:34:30:a1:
c3:de:69:6d:a0:56:a4:f7:5e:9e:07:eb:1b:25:2a:5d:6a:cd:
19:2f:4e:a6:42:8e:29:62:91:88:04:ee:a6:3e:c6:68:ca:1a:
42:4f:e0:f6:f1:dc:e3:04:57:9e:00:8a:84:06:81:27:b8:7c:
c8:14:00:ac:56:16:88:0d:0d:ca:31:e6:e3:30:be:94:e5:25:
a4:a8:4e:78:dc:9a:9e:cd:12:b2:e5:fe:50:4a:00:11:31:75:
e5:77:b6:e4:ae:e8:f6:48:e2:be:26:c3:f6:4e:e3:e3:38:91:
3f:3e:ca:2f:fa:00:0c:b8:05:83:1e:a5:0c:58:e7:b2:68:f5:
ca:78:1a:38:68:43:82:11:a3:57:3d:9a:50:12:09:b2:45:16:
f8:70:58:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Dec 3 22:11:15 2023 by rpki-client on console-fra.rpki-client.org