Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8uUARt4X4kz-7oc2f8SSnW5nA2E.roa
File: 8uUARt4X4kz-7oc2f8SSnW5nA2E.roa (raw, json)
Hash identifier: bBg+j8T8m3MX9Po4mdSOjBJ4QHidP65b4Lwfdt7fLpU=
Subject key identifier: F2:E5:00:46:DE:17:E2:4C:FE:EE:87:36:7F:C4:92:9D:6E:67:03:61
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 01856F66EF0F3619F82524CAED582DD0C890
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8uUARt4X4kz-7oc2f8SSnW5nA2E.roa
Signing time: Sun 01 Jan 2023 22:14:54 +0000
ROA not before: Sun 01 Jan 2023 22:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 148.222.244.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:ef:0f:36:19:f8:25:24:ca:ed:58:2d:d0:c8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 22:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2e50046de17e24cfeee87367fc4929d6e670361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:87:9e:d7:a5:e7:ae:9b:4b:f7:18:0c:bb:71:
e6:0f:dc:2f:be:47:23:98:01:49:0a:ff:4f:80:c5:
3e:e3:f8:a4:eb:58:26:42:80:b8:c1:a7:10:12:1b:
48:55:a9:00:2d:d2:4f:56:78:63:f6:ac:8a:84:98:
66:33:9d:22:ca:d2:ba:55:a6:ad:03:84:44:e4:38:
8c:0f:21:93:f3:80:9b:c3:ae:09:da:61:14:a3:13:
c3:69:7c:3f:58:12:4d:3a:94:01:99:d1:7e:37:a6:
e8:b1:1f:0a:6c:4a:29:39:53:3d:fe:c0:c9:18:43:
e0:86:67:bd:75:c5:f7:2c:ae:2b:ab:85:a3:3c:d2:
a9:df:5a:98:72:02:0a:fa:40:93:8d:e2:76:66:43:
5d:19:cb:e3:4b:e3:e3:68:1c:9e:42:31:e3:ef:e1:
51:28:9f:d1:3e:2a:b5:e6:3e:16:96:0e:20:cc:b1:
3f:06:c1:f9:22:b0:1f:5d:ff:ff:9d:45:03:e2:8e:
74:c2:79:c0:01:a4:08:e5:3d:db:32:a2:c6:ea:fe:
70:d0:8a:f4:92:c2:72:a7:3c:1d:84:99:a2:d4:b4:
a0:7c:54:9d:45:5b:16:58:ad:4f:fa:d3:e0:34:d0:
74:5b:9c:8c:43:75:87:df:a9:f9:e4:cd:23:3a:8d:
a8:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:E5:00:46:DE:17:E2:4C:FE:EE:87:36:7F:C4:92:9D:6E:67:03:61
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/8uUARt4X4kz-7oc2f8SSnW5nA2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.244.0/22
Signature Algorithm: sha256WithRSAEncryption
72:c7:e0:d4:4a:be:75:a2:1e:84:ff:7c:a0:b0:c2:62:ab:4f:
60:5e:70:97:3d:0b:c7:b0:7f:8d:91:68:71:47:c6:88:7d:c5:
e7:69:6e:14:fe:b3:97:9c:2b:44:0a:85:d4:1a:ca:7b:58:c4:
54:5b:2c:8f:65:31:7b:6e:17:74:83:23:3e:db:43:24:31:37:
21:a8:4b:6f:05:68:cc:f1:f0:6c:59:76:04:8f:de:64:0b:fa:
d5:5a:fe:97:23:47:0d:dc:04:06:bd:00:af:05:1b:e3:80:6f:
55:58:2c:59:f0:35:79:e2:c0:24:6b:c7:ad:4b:05:8a:9a:b1:
4b:66:32:66:14:1e:dd:31:d2:05:c6:72:c0:b5:d6:a2:c2:97:
6d:b4:2d:f0:8c:29:15:a3:a9:4d:a9:53:d6:24:07:42:1a:9b:
66:5a:c1:ce:96:78:6a:2a:f0:80:6b:87:e4:34:15:53:b7:d9:
f0:1d:3a:08:77:0b:64:ec:c1:3b:b0:0a:10:a4:0c:53:2f:d2:
c6:fb:cb:7a:92:72:1a:07:60:30:b0:ae:d3:98:f1:14:95:25:
15:ee:35:60:ed:43:bd:c9:1c:e1:11:62:b5:46:1f:98:d5:8a:
2d:2f:a4:06:c4:9c:fb:c2:e1:9d:17:bc:60:3a:a1:bd:0c:47:
a1:eb:06:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:23 2024 by rpki-client on console-fra.rpki-client.org