Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/pnSbvkx4jh7Cl3QvDJ2ZMPJfXWI.roa
File: pnSbvkx4jh7Cl3QvDJ2ZMPJfXWI.roa (raw, json)
Hash identifier: T0jSQMGtpg25IiIjAQeKiLzZWslmcCF0qibpIQwbx5g=
Subject key identifier: A6:74:9B:BE:4C:78:8E:1E:C2:97:74:2F:0C:9D:99:30:F2:5F:5D:62
Certificate issuer: /CN=07217c0634c102c71ba3e444f0688abdd1af4ce8
Certificate serial: 0188B90C2FD9859B6E5F58FABED029849E4D
Authority key identifier: 07:21:7C:06:34:C1:02:C7:1B:A3:E4:44:F0:68:8A:BD:D1:AF:4C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ByF8BjTBAscbo-RE8GiKvdGvTOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/pnSbvkx4jh7Cl3QvDJ2ZMPJfXWI.roa
Signing time: Wed 14 Jun 2023 08:36:03 +0000
ROA not before: Wed 14 Jun 2023 08:36:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50319
IP address blocks: 185.84.196.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:b9:0c:2f:d9:85:9b:6e:5f:58:fa:be:d0:29:84:9e:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07217c0634c102c71ba3e444f0688abdd1af4ce8
Validity
Not Before: Jun 14 08:36:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6749bbe4c788e1ec297742f0c9d9930f25f5d62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:44:ba:43:4c:b2:86:1f:75:3b:f6:af:02:31:
a5:31:92:33:5f:9f:8f:ac:ca:95:34:39:d8:9d:e4:
93:e8:f5:1c:c1:4f:da:4e:8a:fd:06:76:f8:49:a0:
a7:01:aa:d6:2a:33:53:00:19:74:4c:5c:21:ca:08:
d0:32:64:60:38:84:a7:84:40:88:cd:50:49:28:92:
ec:4a:2e:84:5e:6d:1a:f6:52:b1:8d:ec:26:3d:3d:
4c:57:53:3a:a2:67:18:32:8c:54:2b:e7:8b:2c:97:
0b:38:36:08:09:3c:3d:a6:8a:e6:1f:ca:1f:90:cb:
91:7f:ce:85:b7:e7:96:88:15:e3:fd:08:62:6a:97:
e8:88:f2:89:e8:47:af:12:57:58:df:25:ce:ca:07:
cd:c9:b8:af:a2:bc:93:13:8e:af:e1:e4:92:52:59:
cc:d9:7a:e6:ac:56:97:f9:48:30:a0:4a:14:34:48:
31:2a:17:83:11:2c:34:f3:04:d4:a5:a1:56:06:dc:
62:f7:58:63:e1:ae:4d:39:77:68:33:52:61:f3:08:
cb:82:7c:0a:2f:07:06:2c:bc:a2:f6:1b:6e:89:68:
12:75:d5:4b:05:44:72:50:1c:8a:37:55:ab:0e:df:
24:7c:d5:99:d8:3f:28:84:fb:51:3f:57:a7:bf:00:
d1:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:74:9B:BE:4C:78:8E:1E:C2:97:74:2F:0C:9D:99:30:F2:5F:5D:62
X509v3 Authority Key Identifier:
keyid:07:21:7C:06:34:C1:02:C7:1B:A3:E4:44:F0:68:8A:BD:D1:AF:4C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ByF8BjTBAscbo-RE8GiKvdGvTOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/pnSbvkx4jh7Cl3QvDJ2ZMPJfXWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/b41ad4-8500-4f26-9019-0f0bc9f629d3/1/ByF8BjTBAscbo-RE8GiKvdGvTOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.84.196.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:26:53:0f:9e:b3:a1:ea:ef:13:27:e5:57:3d:fc:b1:05:5c:
e3:ec:96:e7:d3:1a:9e:b2:5e:55:43:32:3f:c3:fa:a1:07:a1:
a6:04:0b:f3:59:25:41:07:13:49:db:23:08:ae:e5:e6:e3:1d:
c5:6d:15:89:5e:43:0e:25:1c:2b:ad:95:75:28:3f:9e:a0:55:
61:68:fe:9f:b5:3d:f8:53:43:3c:f4:40:58:0f:07:be:5a:a0:
cf:2b:00:f7:c1:f3:73:0b:cb:aa:7d:61:88:7c:f7:c3:e1:cc:
80:43:df:26:db:c8:ef:fd:92:f9:84:4d:3a:e2:a4:86:a9:79:
30:65:99:90:ef:c6:56:66:a8:f7:b5:26:9f:58:8d:7f:1a:df:
de:7b:9e:27:b6:7a:dc:69:b5:a1:2b:56:4a:37:e3:b5:2e:e1:
a5:0b:16:2b:f2:14:e3:17:d9:a2:29:74:f0:5a:e2:f6:ec:76:
be:5d:b6:b6:d5:be:e8:9d:01:5e:19:f6:29:a8:2c:75:85:6c:
b4:c7:e3:68:bc:df:be:3a:e4:2d:6c:7d:12:69:e4:cb:b2:39:
54:60:df:4c:ff:cb:de:56:de:2e:e4:a3:0a:a0:bb:cc:17:84:
98:81:42:87:db:09:99:a4:b5:74:c2:b2:1c:a7:9a:b9:64:f4:
67:b3:4e:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:25 2024 by rpki-client on console-ams.rpki-client.org