Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/joPaqSoW9P7bmCIySe1hGP0JAl8.roa
File: joPaqSoW9P7bmCIySe1hGP0JAl8.roa (raw, json)
Hash identifier: 7zUBEPQXxRvgLz2ZKdgAKnZGo8B0yt4TF2KfGt3cfBw=
Subject key identifier: 8E:83:DA:A9:2A:16:F4:FE:DB:98:22:32:49:ED:61:18:FD:09:02:5F
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 01856ED4C7FE7F8111448E5376AD16922251
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/joPaqSoW9P7bmCIySe1hGP0JAl8.roa
Signing time: Sun 01 Jan 2023 19:35:16 +0000
ROA not before: Sun 01 Jan 2023 19:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 170.246.64.0/22 maxlen: 24
185.102.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c7:fe:7f:81:11:44:8e:53:76:ad:16:92:22:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Jan 1 19:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e83daa92a16f4fedb98223249ed6118fd09025f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6e:2c:31:42:31:a6:f8:c6:2c:b3:66:03:6c:
84:1c:dc:88:b8:9e:a5:9c:f0:04:e5:4c:ff:8c:60:
a3:52:d3:a2:d5:5c:a2:a6:cc:27:f0:8b:2b:72:3f:
bf:39:94:90:00:81:46:fd:68:ae:62:f9:c5:de:e6:
68:d3:70:16:d8:3d:d0:2c:f9:d6:94:a0:14:fc:94:
9c:8c:ec:f7:75:58:0f:a2:57:94:67:aa:76:c1:30:
c4:fd:aa:50:d5:76:61:63:a0:8f:13:14:14:3b:21:
2d:0a:95:3f:56:1b:ed:d2:67:b8:50:84:28:c7:6d:
6d:7c:e6:88:7b:36:e6:c6:05:57:40:5f:a0:7c:cd:
a7:eb:1a:74:f7:c8:2c:40:30:da:3e:dd:ff:02:b5:
97:b2:78:01:77:f4:95:5b:83:21:b9:d1:ed:a0:ce:
92:21:cd:6d:06:6a:35:06:25:e0:81:e8:c1:df:a6:
7c:d9:07:68:77:24:bf:db:73:79:b6:3b:e5:b7:79:
59:ee:76:47:e5:c8:fd:85:3d:0a:d2:b5:fb:d2:7c:
ef:ba:e7:3e:30:35:4f:39:9b:34:4b:33:dd:42:80:
9a:cf:c5:c8:6f:de:d1:1a:49:72:52:53:e0:8e:d6:
f2:5d:30:48:b8:25:10:86:11:f5:02:94:4b:2f:6a:
89:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:83:DA:A9:2A:16:F4:FE:DB:98:22:32:49:ED:61:18:FD:09:02:5F
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/joPaqSoW9P7bmCIySe1hGP0JAl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.246.64.0/22
185.102.4.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:c7:20:65:3c:3b:3c:63:08:18:8e:1f:d6:ba:78:1c:63:8e:
92:a0:33:38:e7:b7:b2:fd:3e:35:ff:df:67:bf:9e:a4:c4:41:
1a:87:70:f5:6b:08:0f:94:a8:9a:ee:c7:23:f6:3f:37:96:74:
e5:c1:07:e7:29:8f:7f:8f:95:90:f2:b2:d3:80:2d:2d:10:3e:
58:ae:23:ad:73:6a:fb:f4:d5:e9:7f:b5:5a:01:de:59:7d:46:
eb:17:56:0b:4e:5e:76:e1:7b:9a:14:26:23:98:bb:16:c6:47:
7b:85:cb:c9:f0:b5:f5:2c:ef:15:4e:41:5f:78:93:51:74:ca:
55:7f:81:68:3e:19:9b:b9:52:3c:49:ab:e2:ef:12:d9:54:af:
ac:a4:54:ba:07:d7:45:12:10:ba:31:af:4f:40:29:95:cc:45:
21:5d:77:46:1f:90:f5:a9:ec:ae:1e:72:d4:5b:5c:0e:c2:dd:
1a:82:65:c1:51:7b:42:8b:b6:b5:bd:1f:7f:9c:47:bf:e3:5f:
65:13:24:f4:ea:a4:02:c8:a9:c1:1a:2f:f4:02:db:fc:73:8a:
b5:15:81:0b:8c:2f:66:f0:d1:02:9c:43:92:08:f0:f5:8c:2a:
84:a2:63:68:ce:a1:60:8d:9e:85:16:98:ea:4a:27:de:a5:2b:
b7:03:c7:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:50 2024 by rpki-client on console-ams.rpki-client.org