Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/7QRTkxl0kT8GdZAqBbj7JR-KFDM.roa
File: 7QRTkxl0kT8GdZAqBbj7JR-KFDM.roa (raw, json)
Hash identifier: ukvBInowjJeO9wGwjMmiuQYNSbcvmDYNry1VvRgKZLQ=
Subject key identifier: ED:04:53:93:19:74:91:3F:06:75:90:2A:05:B8:FB:25:1F:8A:14:33
Certificate issuer: /CN=bb4a0af156332d3c7ecb585faee3a90d9bf2a096
Certificate serial: 01856ED50206D9556F01C68CB6CA44169C19
Authority key identifier: BB:4A:0A:F1:56:33:2D:3C:7E:CB:58:5F:AE:E3:A9:0D:9B:F2:A0:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/7QRTkxl0kT8GdZAqBbj7JR-KFDM.roa
Signing time: Sun 01 Jan 2023 19:35:31 +0000
ROA not before: Sun 01 Jan 2023 19:35:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203012
IP address blocks: 185.147.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d5:02:06:d9:55:6f:01:c6:8c:b6:ca:44:16:9c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4a0af156332d3c7ecb585faee3a90d9bf2a096
Validity
Not Before: Jan 1 19:35:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed0453931974913f0675902a05b8fb251f8a1433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c7:86:a2:9d:f1:ef:dc:27:21:aa:7b:98:99:
ea:ec:53:8f:02:03:0d:98:2e:47:6d:0c:78:11:07:
f1:57:25:82:c6:1a:c4:de:39:f3:41:fa:f7:2e:20:
2c:27:26:de:3f:8e:b2:3b:a1:3b:f6:0f:b5:17:04:
15:b8:17:33:86:c0:2d:6e:fc:2c:67:60:07:9f:e2:
e5:d9:9a:be:18:f1:73:57:31:6a:16:1c:45:dd:0f:
c2:d4:c6:e7:e8:b3:15:d9:97:17:61:df:92:e2:f0:
73:3e:29:fc:92:28:ed:29:6d:6f:c4:a1:bd:b5:21:
19:0b:e6:8d:72:2f:ae:68:ce:4e:c1:40:1f:14:07:
a7:14:1a:2b:1c:4a:03:89:c7:29:9e:6a:36:53:14:
89:f8:f8:48:3b:32:95:f5:c0:fa:ae:22:a1:7b:cf:
75:18:ad:8a:1a:0f:b0:6c:9f:53:2f:a7:f1:60:5c:
21:14:d3:4d:7f:73:14:19:28:84:68:a0:36:d4:a2:
19:48:e8:f0:25:c4:a4:e7:52:62:0a:59:a6:07:eb:
51:72:98:5b:d2:8b:5c:73:5e:44:ec:91:3f:5a:29:
cf:84:93:4e:96:8e:a6:b5:6c:1d:4b:b7:a0:6a:95:
53:b9:fb:2b:75:69:be:3d:26:66:69:da:70:86:cb:
0b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:04:53:93:19:74:91:3F:06:75:90:2A:05:B8:FB:25:1F:8A:14:33
X509v3 Authority Key Identifier:
keyid:BB:4A:0A:F1:56:33:2D:3C:7E:CB:58:5F:AE:E3:A9:0D:9B:F2:A0:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0oK8VYzLTx-y1hfruOpDZvyoJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/7QRTkxl0kT8GdZAqBbj7JR-KFDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/1b0998-ab81-4cce-8c46-f212666725b4/1/u0oK8VYzLTx-y1hfruOpDZvyoJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.16.0/22
Signature Algorithm: sha256WithRSAEncryption
51:fd:5d:17:a5:e7:cf:d9:44:65:7c:b0:9f:d7:73:41:4e:28:
e1:7c:2a:39:c0:b5:7c:c2:57:3d:3b:1d:4a:b5:44:a8:eb:7e:
c6:37:33:9e:8c:41:00:1a:15:97:0c:55:d1:db:5b:ba:bd:24:
3d:e1:93:07:99:e0:b6:90:1c:5a:53:84:c9:27:c5:c1:fc:bd:
51:c8:e4:56:7d:7f:e7:b4:85:f6:b9:30:c5:e3:3c:8b:57:71:
e1:4d:40:05:f6:4b:31:6b:8a:80:74:7a:63:85:5b:35:d2:48:
4c:ea:0d:96:c4:9f:4d:e9:d5:8c:a3:8b:68:59:91:64:c9:f5:
1f:39:8d:40:3d:e0:90:ab:1c:72:92:8b:9a:0c:6a:85:90:db:
52:4b:0c:3c:e9:e1:55:2b:47:0c:b3:55:48:58:35:b0:b3:00:
70:e2:12:ea:b0:bf:a1:07:a4:00:7f:01:ef:90:a4:7d:d3:2f:
50:c2:78:ae:4b:da:26:82:9a:8b:11:ed:fd:68:8e:66:9c:a0:
c5:7e:d6:63:43:8c:79:95:03:e5:41:18:08:05:8b:30:1b:c2:
b4:29:c3:d9:b5:16:09:9f:03:d0:d1:71:f5:0a:aa:eb:1b:68:
7f:74:64:21:46:c7:ee:d8:cc:c8:20:41:5e:9a:d0:95:fb:e0:
5b:5f:37:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:29 2024 by rpki-client on console-ams.rpki-client.org