Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/hJo72Iz-asIOBPPAUIj6Xc_pQoM.roa
File: hJo72Iz-asIOBPPAUIj6Xc_pQoM.roa (raw, json)
Hash identifier: mKv8+9e+nBeYshWpCujKgC2AVvNp23voLwQenlfIPRg=
Subject key identifier: 84:9A:3B:D8:8C:FE:6A:C2:0E:04:F3:C0:50:88:FA:5D:CF:E9:42:83
Certificate issuer: /CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Certificate serial: 01856ED4C065F423C4D6A206516821EB254B
Authority key identifier: 67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/hJo72Iz-asIOBPPAUIj6Xc_pQoM.roa
Signing time: Sun 01 Jan 2023 19:35:14 +0000
ROA not before: Sun 01 Jan 2023 19:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205863
IP address blocks: 185.203.156.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c0:65:f4:23:c4:d6:a2:06:51:68:21:eb:25:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=676244de0190a6dd5a899a2b37b002b9ae632c86
Validity
Not Before: Jan 1 19:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=849a3bd88cfe6ac20e04f3c05088fa5dcfe94283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bd:ba:6d:f3:1e:27:f0:b6:38:b0:2c:b0:e6:
19:73:ce:81:78:56:15:ac:2a:6a:ec:d3:9a:15:65:
3d:19:78:c3:d6:c7:f0:57:4c:41:b7:c8:65:f4:58:
34:bf:aa:65:17:53:99:a4:a0:d0:12:c9:cb:61:23:
50:32:e8:ed:00:58:5b:11:ea:6c:40:b3:49:c0:8a:
43:b7:9c:1b:f2:34:e7:99:85:0a:a7:fb:d6:18:41:
34:77:ec:fa:70:02:dc:0d:44:b9:66:4f:8a:bc:b8:
a1:4e:6e:b6:04:74:49:ee:13:67:d8:10:c3:e3:ed:
47:5e:bd:38:37:0b:e4:8c:8c:9c:b8:8e:80:6f:f0:
5b:5d:a9:56:0c:f8:08:59:c0:ee:1c:22:2b:5b:79:
e6:94:f0:97:17:e8:e8:c7:bd:75:80:c6:da:86:2a:
4b:58:a6:65:00:c9:4a:33:c3:7c:86:77:a4:0d:93:
e0:43:29:c8:6c:7d:09:09:68:d1:52:71:bf:15:93:
90:02:ce:6d:82:b2:cc:a2:b5:20:4b:d3:77:d3:a4:
88:04:a1:75:97:cf:cb:3c:cf:95:1d:a6:f4:3d:30:
d7:60:2d:fa:36:e7:f3:9e:5f:1a:56:d4:b5:b6:f2:
1f:ff:a8:37:74:3c:ea:0e:b9:01:fd:3d:db:e6:52:
9b:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:9A:3B:D8:8C:FE:6A:C2:0E:04:F3:C0:50:88:FA:5D:CF:E9:42:83
X509v3 Authority Key Identifier:
keyid:67:62:44:DE:01:90:A6:DD:5A:89:9A:2B:37:B0:02:B9:AE:63:2C:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z2JE3gGQpt1aiZorN7ACua5jLIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/hJo72Iz-asIOBPPAUIj6Xc_pQoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/dcd87f-4aa7-44ff-97bf-ce32d66f30a8/1/Z2JE3gGQpt1aiZorN7ACua5jLIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.203.156.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:12:9a:6d:69:22:99:f7:92:96:b9:4b:c4:e1:3e:aa:d4:6d:
c7:41:de:a2:ea:c4:be:2a:75:54:12:23:bb:76:96:d9:f0:f1:
71:fb:32:09:c6:75:15:34:2c:e7:31:6a:0c:5d:1a:5d:97:6a:
47:6e:ed:9f:f4:09:25:86:9c:1f:1f:b1:94:42:af:4a:4e:b5:
4e:09:1d:1b:57:96:62:a9:c7:83:2e:65:49:c7:0d:23:c8:07:
b3:1e:73:10:7d:18:ad:9e:44:9e:47:65:6c:cf:c6:04:28:d2:
45:aa:b0:93:47:bd:19:72:20:62:8f:43:02:a8:dc:00:eb:53:
c1:15:81:28:1d:9e:a4:c5:11:aa:03:5a:ba:ae:53:b2:b7:10:
73:63:da:ab:8a:46:c1:1a:d5:28:3e:cf:7c:ef:35:f9:d1:79:
d9:7d:c3:0b:31:61:c9:89:a4:bd:7e:e0:07:6a:4e:86:3c:c5:
7a:6b:f6:0f:61:7b:e5:f6:6a:53:c4:79:17:33:be:ae:9f:f1:
81:25:06:3c:9f:24:92:8f:66:bd:9b:f2:e2:66:fe:4f:e5:22:
78:bb:71:b8:b0:d4:66:f7:e7:db:e1:0a:6f:27:3d:09:81:8c:
2b:8f:59:5c:be:28:ba:59:4a:59:b6:e3:45:5a:60:e5:59:bc:
78:bb:c3:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:33 2024 by rpki-client on console-fra.rpki-client.org