Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/ytBE6V1kQrbUqStBGTD_u1ntY5Y.roa
File: ytBE6V1kQrbUqStBGTD_u1ntY5Y.roa (raw, json)
Hash identifier: 8c57NUMyqxJ3n3xwrlNI59cP//B/Jd7XSv7Ep6ABD4A=
Subject key identifier: CA:D0:44:E9:5D:64:42:B6:D4:A9:2B:41:19:30:FF:BB:59:ED:63:96
Certificate issuer: /CN=a1208242656123c0c90b6168d09b2d8a67617bec
Certificate serial: 01884074ECC551E53314623A00773A9222AF
Authority key identifier: A1:20:82:42:65:61:23:C0:C9:0B:61:68:D0:9B:2D:8A:67:61:7B:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oSCCQmVhI8DJC2Fo0Jstimdhe-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/ytBE6V1kQrbUqStBGTD_u1ntY5Y.roa
Signing time: Sun 21 May 2023 22:36:24 +0000
ROA not before: Sun 21 May 2023 22:36:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39825
IP address blocks: 185.223.208.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:40:74:ec:c5:51:e5:33:14:62:3a:00:77:3a:92:22:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1208242656123c0c90b6168d09b2d8a67617bec
Validity
Not Before: May 21 22:36:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cad044e95d6442b6d4a92b411930ffbb59ed6396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fe:3f:11:f1:0b:2b:1a:20:35:83:eb:cb:e1:
0e:51:1a:df:eb:87:f4:e9:20:0a:f3:a2:c5:4e:d8:
fd:99:25:45:1c:3c:86:ee:11:17:ec:fe:4f:0f:d5:
12:3b:9f:c1:48:0f:20:69:f2:f5:b4:1d:17:6e:f8:
f0:b3:e7:9b:ab:28:3d:15:d6:27:c3:d8:e3:9f:38:
1e:71:b0:ef:14:c4:8e:3d:36:82:de:42:97:74:49:
6a:2f:c6:f0:f8:fc:c4:20:7c:41:a1:27:63:ac:58:
b6:7b:ea:71:8e:73:00:a4:71:75:a6:65:7f:df:24:
97:e9:34:11:e5:38:72:ab:7c:5e:a9:20:20:8c:b7:
49:5e:9c:eb:64:ce:4c:c0:d9:cd:8a:7b:88:9a:b7:
df:f2:2f:3a:68:80:83:0a:54:38:91:a1:8f:b3:4b:
d9:ae:b7:46:14:39:b0:00:91:75:09:14:6a:8f:37:
ba:f6:90:78:5a:b2:ac:51:34:4b:c5:28:37:ec:b5:
d1:38:4c:96:36:5a:70:a4:eb:28:46:01:c9:9b:59:
b0:f3:3f:35:2e:4f:6f:a0:8a:04:b4:0f:96:a9:ac:
f8:0e:0f:e5:2c:f7:87:1a:3e:82:41:60:25:5c:ec:
1a:ea:4e:6e:f3:5d:69:87:50:70:0b:d7:42:ec:1e:
03:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D0:44:E9:5D:64:42:B6:D4:A9:2B:41:19:30:FF:BB:59:ED:63:96
X509v3 Authority Key Identifier:
keyid:A1:20:82:42:65:61:23:C0:C9:0B:61:68:D0:9B:2D:8A:67:61:7B:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oSCCQmVhI8DJC2Fo0Jstimdhe-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/ytBE6V1kQrbUqStBGTD_u1ntY5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/bafc4f-d64c-4404-922b-adafaad27aea/1/oSCCQmVhI8DJC2Fo0Jstimdhe-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.208.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:ed:64:ac:89:a2:0a:23:a9:62:f1:cb:80:e7:9d:e3:ec:e1:
ae:d8:e1:5d:fe:f4:46:64:be:38:bb:e6:88:5c:c8:c8:11:9c:
0f:68:39:62:86:6d:ce:d7:33:7b:b3:48:5b:9a:b1:bd:f0:24:
14:b1:25:c6:af:86:00:48:e3:ef:3e:53:cc:0e:75:55:a9:b1:
c0:3f:46:90:25:db:dc:33:97:bd:b0:db:2f:70:d6:3e:b1:fd:
59:12:b2:5f:7b:76:a8:97:94:30:88:40:e4:c9:cd:b7:75:db:
9b:a6:88:8d:f4:e2:e9:a0:06:4a:2d:8b:67:36:01:6a:d3:a9:
fc:94:c6:46:ea:0f:88:85:22:29:b6:c2:4f:18:93:5e:98:5b:
8b:7d:75:2a:43:96:87:d0:7e:d8:62:11:af:a4:fd:6a:39:89:
99:24:29:67:d1:db:1c:06:8c:ea:09:16:b3:ae:37:06:cf:f9:
1b:0b:56:22:87:62:fa:75:c1:31:37:04:76:80:27:c0:9c:dc:
97:65:01:47:27:65:47:6f:97:f5:42:88:81:5b:4c:6c:df:7b:
54:71:d3:ec:ee:53:3e:51:2e:e8:b1:4c:23:b1:e8:81:95:b6:
2b:4a:a0:c5:62:2c:4e:9f:4d:2d:27:c7:3d:6f:0b:b5:28:ab:
d0:4d:e6:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:19:47 2024 by rpki-client on console-fra.rpki-client.org