Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/hSFW6yJ5f17OY1A4DnHQe1ZyX_c.roa
File: hSFW6yJ5f17OY1A4DnHQe1ZyX_c.roa (raw, json)
Hash identifier: p8UkBXn3Dl7RTkhuB6UeaxeUGEEbdqgXsGumLnx4qtQ=
Subject key identifier: 85:21:56:EB:22:79:7F:5E:CE:63:50:38:0E:71:D0:7B:56:72:5F:F7
Certificate issuer: /CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c
Certificate serial: 018BF172E8AF476ABE14A080331AB8580884
Authority key identifier: ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/hSFW6yJ5f17OY1A4DnHQe1ZyX_c.roa
Signing time: Tue 21 Nov 2023 10:35:21 +0000
ROA not before: Tue 21 Nov 2023 10:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 185.147.55.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f1:72:e8:af:47:6a:be:14:a0:80:33:1a:b8:58:08:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed5a6ba2d2248bc4782ac0fdb3c64b946640b09c
Validity
Not Before: Nov 21 10:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=852156eb22797f5ece6350380e71d07b56725ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:6a:58:fe:00:ea:d8:fc:53:ca:85:dc:86:a5:
ce:db:42:db:2a:9a:f2:16:de:92:38:6b:1b:47:4d:
47:b9:b1:52:59:be:5e:86:2c:71:0e:8f:fd:fd:c3:
7b:0b:af:ae:03:eb:ff:0a:ef:b7:81:87:6e:e6:6c:
70:37:14:17:20:e4:4e:e0:f8:0a:6f:b4:65:3f:f7:
7c:5a:5b:d5:3d:52:97:f0:06:2f:8c:56:c1:6c:10:
22:cb:ce:40:85:c7:76:7c:7a:e8:de:1f:9f:ae:83:
e4:33:82:c4:e0:11:22:4a:2b:63:fa:d3:7e:1b:0f:
db:ac:a1:1a:44:a5:53:1c:99:c8:99:24:05:fc:60:
3c:53:b7:52:ae:2d:07:0c:1b:4f:a7:0d:35:18:69:
82:48:d1:f2:76:8b:8b:94:d4:be:ae:fb:f1:5d:77:
b1:06:c5:91:1a:2e:00:aa:8c:09:b0:da:90:31:ff:
b8:ad:0a:03:de:ff:7a:f7:3c:7f:b8:4c:da:ea:33:
29:49:eb:c1:4e:5e:91:b3:84:39:a7:91:8b:ea:fd:
a2:43:cb:91:5c:9a:05:63:ce:88:83:5b:78:47:86:
38:26:f5:51:19:68:76:b4:d1:b2:75:20:98:01:96:
fe:fe:a3:72:87:e5:d6:6a:de:69:4d:c4:2a:7e:40:
aa:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:21:56:EB:22:79:7F:5E:CE:63:50:38:0E:71:D0:7B:56:72:5F:F7
X509v3 Authority Key Identifier:
keyid:ED:5A:6B:A2:D2:24:8B:C4:78:2A:C0:FD:B3:C6:4B:94:66:40:B0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VprotIki8R4KsD9s8ZLlGZAsJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/hSFW6yJ5f17OY1A4DnHQe1ZyX_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/b278df-ed37-4de7-a675-107a8d85bd30/1/7VprotIki8R4KsD9s8ZLlGZAsJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.55.0/24
Signature Algorithm: sha256WithRSAEncryption
62:52:5a:72:4f:31:f5:06:42:4b:49:d5:fc:51:09:1f:85:e8:
dc:ee:0f:58:a6:ce:a1:4c:50:e2:26:99:b1:df:2a:82:af:53:
c7:f2:e3:52:75:d0:3b:78:41:e6:4b:13:cb:31:b3:fc:5d:41:
f9:ec:6b:69:72:93:d5:61:9b:6a:ef:7a:71:bb:30:ad:f3:d4:
df:33:4e:f7:eb:34:aa:c4:71:57:13:2a:49:53:bf:63:12:de:
09:5c:ef:23:24:92:1c:d2:28:a5:ee:36:86:b7:af:71:e7:5e:
3b:9e:c1:ca:e2:15:fc:60:33:fd:3d:99:68:53:df:d3:51:c9:
1f:9a:76:c6:c3:0e:dd:11:88:4d:7b:ea:58:da:04:9f:f3:f7:
3c:06:db:b1:16:1c:f2:c3:7a:ed:1d:da:3d:81:e6:98:e7:ca:
db:54:d8:ae:02:cc:ea:9b:3f:7f:f1:2a:96:89:d2:39:6d:91:
7a:f6:7e:2c:7a:27:d7:fb:20:1f:fa:f3:d1:41:b5:21:e0:5e:
5e:01:40:75:26:c5:82:e8:8e:04:27:f3:a7:f4:fb:e0:2b:bc:
90:ca:49:4d:fc:c3:cf:ca:5d:9c:88:95:67:70:b3:6c:bc:32:
b7:92:86:07:c6:b4:81:1a:ab:2b:89:cb:e0:26:ce:6c:d8:46:
08:e8:69:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:06 2024 by rpki-client on console-fra.rpki-client.org