Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/b2j1PJNkfnPVFh8bRlkiA-1uhf0.roa
File: b2j1PJNkfnPVFh8bRlkiA-1uhf0.roa (raw, json)
Hash identifier: Z/5cLOwqeupfDtbCxrbUevUmuq8bFgX6sDtv+qiaZw0=
Subject key identifier: 6F:68:F5:3C:93:64:7E:73:D5:16:1F:1B:46:59:22:03:ED:6E:85:FD
Certificate issuer: /CN=3f0289affaaf080e252718e3f4489da29d9fa55a
Certificate serial: 0185711E8398C34CDC8E349A9DFDC3103072
Authority key identifier: 3F:02:89:AF:FA:AF:08:0E:25:27:18:E3:F4:48:9D:A2:9D:9F:A5:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PwKJr_qvCA4lJxjj9Eidop2fpVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/b2j1PJNkfnPVFh8bRlkiA-1uhf0.roa
Signing time: Mon 02 Jan 2023 06:15:03 +0000
ROA not before: Mon 02 Jan 2023 06:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 137488
IP address blocks: 185.119.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:83:98:c3:4c:dc:8e:34:9a:9d:fd:c3:10:30:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f0289affaaf080e252718e3f4489da29d9fa55a
Validity
Not Before: Jan 2 06:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f68f53c93647e73d5161f1b46592203ed6e85fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:cc:99:ff:a7:87:b8:52:d6:95:61:a7:17:5c:
df:00:a4:38:55:2c:79:6f:00:ce:87:09:e1:a1:0d:
64:ee:44:da:a3:f7:13:00:a0:3b:8a:a7:33:66:e7:
22:5a:45:f4:7a:3e:6c:d7:a6:18:3b:00:5a:d1:2b:
67:8a:50:30:41:69:67:3a:5e:77:11:1b:e2:45:38:
95:57:48:98:40:50:ae:61:91:1e:e2:0b:e3:68:b0:
af:e6:8f:8c:52:cd:21:69:de:47:89:82:d7:d5:fe:
49:26:3b:a9:40:f0:80:75:fa:c8:56:4a:97:13:b3:
5a:22:94:6b:ef:3d:47:9a:fc:5e:55:0c:62:21:39:
6b:48:b1:c0:2b:8b:1f:65:9e:b1:5a:d5:73:32:d3:
f7:eb:5a:2f:c9:bb:9c:11:87:39:0f:b9:68:ae:a7:
5d:aa:38:ed:f3:fc:c0:83:92:7a:6d:c2:3a:28:e1:
dd:99:c2:27:f5:06:74:7a:88:28:3f:f3:e2:6f:a8:
ae:6b:19:7a:31:7e:47:08:8a:e8:2b:de:a9:01:da:
78:6c:91:51:1b:2e:b5:3f:7e:67:bc:15:be:bf:7e:
5b:ad:a6:79:6f:08:aa:20:8c:27:4e:93:0c:f8:5b:
f3:1a:f8:a9:b0:7a:b9:8e:b1:2e:94:ce:d5:8c:ed:
ff:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:68:F5:3C:93:64:7E:73:D5:16:1F:1B:46:59:22:03:ED:6E:85:FD
X509v3 Authority Key Identifier:
keyid:3F:02:89:AF:FA:AF:08:0E:25:27:18:E3:F4:48:9D:A2:9D:9F:A5:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PwKJr_qvCA4lJxjj9Eidop2fpVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/b2j1PJNkfnPVFh8bRlkiA-1uhf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9fcccf-e7aa-4c44-9590-1cf0feaaa3ea/1/PwKJr_qvCA4lJxjj9Eidop2fpVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.219.0/24
Signature Algorithm: sha256WithRSAEncryption
81:fa:36:10:c4:0e:56:7e:84:44:e4:a4:80:0f:74:3f:ce:36:
c4:a6:fc:73:dd:23:eb:d8:01:5c:3c:42:c0:d7:6a:5c:b8:8a:
93:cc:c5:39:20:54:e2:28:fa:29:a8:c1:f7:10:33:b1:0c:4d:
67:ed:39:3c:dc:eb:29:57:f7:8d:00:03:b0:d1:82:e0:d3:b2:
f2:87:01:c9:b0:2e:f5:bf:85:a9:98:f5:dd:89:f4:83:83:a5:
d9:5d:18:9c:4f:ab:5a:61:18:e6:6e:25:d1:d7:75:01:b5:f6:
3e:1b:2c:e2:f5:92:64:29:8c:d6:18:2f:f7:e7:be:81:03:65:
f8:1b:e7:5c:b3:ed:9f:bd:e9:d6:99:77:15:cf:ad:5e:78:8a:
1a:14:19:3a:b9:a2:49:85:0a:fe:2e:f6:c5:2d:92:24:53:3a:
8a:30:08:7c:7c:cd:1b:05:43:1e:f4:af:4d:86:28:dc:6d:a5:
24:1b:13:b4:33:54:28:56:de:13:5a:9b:7d:55:29:30:b7:43:
7e:2a:4c:51:51:4a:0a:a1:78:0a:a9:36:85:a9:ce:7d:2e:71:
ae:0b:e5:9d:7a:2d:dc:a6:68:ba:2a:8a:ee:af:c4:7c:22:55:
bd:1e:34:94:1c:e4:11:13:13:79:41:76:9e:ae:5c:b7:4f:14:
33:f8:fc:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:01 2024 by rpki-client on console-ams.rpki-client.org