Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/9iTvVZz5yXnp5nZMm9xh3QmwVBc.roa
File: 9iTvVZz5yXnp5nZMm9xh3QmwVBc.roa (raw, json)
Hash identifier: wCp7sLc+udgQy7nga0knjDpzh25xC4dgrQpEwqVhkHk=
Subject key identifier: F6:24:EF:55:9C:F9:C9:79:E9:E6:76:4C:9B:DC:61:DD:09:B0:54:17
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 0185DDFE4B1BC05E01305BE9728EDB4840A0
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/9iTvVZz5yXnp5nZMm9xh3QmwVBc.roa
Signing time: Mon 23 Jan 2023 09:38:28 +0000
ROA not before: Mon 23 Jan 2023 09:38:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 148.222.240.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Feb 2023 08:58:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:dd:fe:4b:1b:c0:5e:01:30:5b:e9:72:8e:db:48:40:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 23 09:38:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f624ef559cf9c979e9e6764c9bdc61dd09b05417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:0a:53:f4:01:d4:50:62:a6:74:ac:7e:34:af:
5c:35:65:2a:f7:e3:0d:b9:5c:c3:e8:b9:6e:a3:80:
f6:22:68:20:b1:12:e4:60:77:c7:d7:c5:fa:1e:32:
f0:fb:fc:0d:c2:db:aa:27:03:60:5a:f0:a6:9f:48:
50:f5:8c:56:ef:76:69:e6:02:3e:6b:77:5f:83:ed:
ff:bd:7d:97:e1:a2:d0:89:d2:65:85:fe:cc:3f:da:
99:09:a9:a0:57:8a:f6:33:23:fe:4d:de:23:c4:20:
84:32:21:b5:85:31:44:24:7d:e7:39:66:c5:49:f5:
dc:da:44:de:e8:20:1a:2b:05:fe:37:16:8f:b6:ae:
b3:63:b5:42:82:40:58:b5:d3:82:41:7b:30:a2:9d:
5a:e5:22:e3:70:38:bc:ce:59:03:eb:4c:16:98:a4:
79:d0:cf:89:74:4f:bd:d3:19:a5:52:ee:1e:0c:49:
10:71:59:06:e4:f2:76:ae:a5:fe:0f:2e:80:05:cc:
52:43:88:9f:29:c7:ae:f0:70:e1:01:d2:48:fe:5e:
05:b7:2b:86:9a:d0:c1:ad:84:94:02:6f:9e:06:b3:
d6:11:5b:00:3c:0e:6d:69:db:61:48:60:af:70:42:
4b:4f:9f:a5:c8:47:6b:8c:29:e2:31:c8:14:19:4b:
c6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:24:EF:55:9C:F9:C9:79:E9:E6:76:4C:9B:DC:61:DD:09:B0:54:17
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/9iTvVZz5yXnp5nZMm9xh3QmwVBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
148.222.240.0/22
Signature Algorithm: sha256WithRSAEncryption
71:36:ee:27:ea:f4:0b:91:e2:77:43:e5:8c:16:64:da:6a:d4:
c3:27:71:3d:d6:96:46:ee:d4:e4:4a:c3:a1:d6:24:d6:3c:50:
23:35:99:af:69:81:fb:46:e7:6a:5d:40:39:64:5e:90:5f:b6:
e9:a1:86:24:5d:1d:13:3a:0c:38:a3:ed:00:2f:0c:f8:77:7e:
c6:d7:65:02:fd:f9:cd:16:2a:df:3d:09:9c:6c:d6:a4:b4:03:
49:e8:ac:ca:af:e1:c1:53:60:8c:41:ee:a4:24:fe:23:d7:e2:
ee:ca:f1:9a:ac:20:a0:d8:09:ee:b7:b5:a9:67:f9:95:ae:45:
70:d7:4f:08:b8:be:a2:93:a5:81:44:9b:17:eb:51:ec:b6:1d:
a9:fe:6f:08:10:90:ef:f5:17:55:6e:a2:db:8a:04:6b:b7:bf:
ce:6c:83:2e:1a:da:3a:c6:e6:a1:b8:37:56:fe:57:06:d8:5d:
cc:2d:8f:a6:a2:cd:ae:6c:0b:44:0d:92:5f:36:f4:0e:9e:d3:
1d:93:64:e8:c5:27:ae:0b:43:47:07:15:02:da:37:5d:73:47:
4d:02:c8:32:36:43:26:8f:32:4f:b2:f8:44:4b:4a:0a:a1:09:
0f:b1:4c:d2:84:51:41:f8:b8:ee:15:bf:95:2d:2e:07:24:5b:
e6:8b:d3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org