Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/gHiO7eSRq_-VJIiq-S7kefdj89s.roa
File: gHiO7eSRq_-VJIiq-S7kefdj89s.roa (raw, json)
Hash identifier: 8FmTP++Zr7wjzv0rKYJNzgqUt86dddUBrrKE3nDAgsY=
Subject key identifier: 80:78:8E:ED:E4:91:AB:FF:95:24:88:AA:F9:2E:E4:79:F7:63:F3:DB
Certificate issuer: /CN=14268e4c2e025330df26fd404cae0f6af26ccc23
Certificate serial: 01857095044682DDFED38E2E4E5C092E7ADA
Authority key identifier: 14:26:8E:4C:2E:02:53:30:DF:26:FD:40:4C:AE:0F:6A:F2:6C:CC:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FCaOTC4CUzDfJv1ATK4PavJszCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/gHiO7eSRq_-VJIiq-S7kefdj89s.roa
Signing time: Mon 02 Jan 2023 03:44:52 +0000
ROA not before: Mon 02 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210424
IP address blocks: 185.65.77.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:04:46:82:dd:fe:d3:8e:2e:4e:5c:09:2e:7a:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14268e4c2e025330df26fd404cae0f6af26ccc23
Validity
Not Before: Jan 2 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=80788eede491abff952488aaf92ee479f763f3db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:70:39:fd:eb:6f:c4:b2:ad:29:f5:c9:f9:c5:
21:df:c6:b0:05:02:93:6e:e0:7f:d8:2c:88:42:2e:
d2:3c:a8:ce:ef:de:3e:45:30:b6:57:8a:76:cc:56:
f1:8e:77:33:de:c2:4c:56:82:01:03:d2:9e:d7:8c:
ce:40:c0:16:87:6b:d5:e6:8c:42:f4:fa:21:3c:49:
fc:52:b3:36:86:25:01:14:99:44:94:f6:e4:64:a5:
08:4d:30:e8:84:57:1b:88:3f:0c:07:6c:67:c9:29:
fc:0b:c8:4a:ac:25:51:e4:fb:d3:0c:93:bf:c5:3f:
09:b9:75:4c:35:40:84:6d:b2:25:05:5c:f2:e2:2c:
35:a1:ef:43:79:1d:d2:d6:6f:f4:08:0c:8a:11:e7:
64:de:0e:55:d3:a3:9d:1b:8b:d9:4b:96:cc:02:f5:
cf:61:9e:e6:00:c3:54:26:47:ad:26:7e:de:8e:a2:
e2:d8:9b:ca:84:fd:9f:7e:45:3a:67:a2:e8:12:bc:
a3:e1:39:ee:3e:08:07:10:7b:22:47:34:7b:1d:46:
c4:be:eb:f4:cc:c4:ef:fd:4b:61:16:d9:2e:0c:dc:
4c:5d:b1:7b:31:d5:9e:77:7c:8b:da:19:f2:a5:a6:
f0:95:d3:c7:f6:8f:71:20:0b:51:a6:a7:e3:d1:eb:
96:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:78:8E:ED:E4:91:AB:FF:95:24:88:AA:F9:2E:E4:79:F7:63:F3:DB
X509v3 Authority Key Identifier:
keyid:14:26:8E:4C:2E:02:53:30:DF:26:FD:40:4C:AE:0F:6A:F2:6C:CC:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FCaOTC4CUzDfJv1ATK4PavJszCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/gHiO7eSRq_-VJIiq-S7kefdj89s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1f8a09-4365-4bba-8e35-5ee274eb7eab/1/FCaOTC4CUzDfJv1ATK4PavJszCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.77.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ca:92:80:e9:2d:e7:bc:15:fa:50:a8:21:d9:80:22:7a:4d:
ce:12:8c:b8:7b:b7:47:a4:4f:da:94:18:5f:ab:2e:78:6b:02:
90:41:54:ab:a8:db:b4:d7:4f:c0:2f:06:80:bc:af:6e:da:ac:
82:7c:db:26:46:ba:8c:a8:06:46:b8:19:6b:26:8f:0d:80:00:
f7:28:75:21:fe:96:9a:fe:28:b1:60:c2:47:c3:b7:62:2f:d9:
16:31:ae:03:44:0e:fb:ae:81:30:c2:f4:0f:1d:58:cd:96:c1:
02:a1:70:72:d0:01:fc:5f:9b:a6:95:a0:b7:a8:ea:4c:64:55:
56:4b:46:b6:62:48:dd:83:30:fd:0d:53:fb:b2:c5:12:43:5f:
70:7f:6a:26:82:f9:37:0b:1d:9e:2c:b2:26:f9:8c:8d:6c:1c:
e6:0b:4b:6c:4e:75:63:03:f2:fd:0a:4e:8b:72:f1:5a:7a:6d:
99:f4:e4:40:22:9e:e8:4c:6e:64:a4:66:49:ef:29:30:38:86:
ab:fe:9b:13:89:ce:e7:30:6d:ae:77:5f:25:23:56:1c:a1:4b:
34:46:83:bd:3e:aa:0c:06:21:f3:73:25:ec:a5:d5:1c:b6:13:
d7:3f:42:0c:a6:eb:97:8e:4c:99:f8:48:1e:5b:d6:df:be:e6:
16:c2:86:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:32 2024 by rpki-client on console-fra.rpki-client.org