Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/l4ahvjjFDsFRkbs1skpINOynCuk.roa
File: l4ahvjjFDsFRkbs1skpINOynCuk.roa (raw, json)
Hash identifier: ZlDrDvASAyGReedSYVzlGm3l6zr/CrfY0tZi3jP1Ezg=
Subject key identifier: 97:86:A1:BE:38:C5:0E:C1:51:91:BB:35:B2:4A:48:34:EC:A7:0A:E9
Certificate issuer: /CN=2347aaab2206c08128f543730064a145a3effa14
Certificate serial: 018D838C227711A5343D3EA9F9342F797AF5
Authority key identifier: 23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/l4ahvjjFDsFRkbs1skpINOynCuk.roa
Signing time: Wed 07 Feb 2024 12:30:15 +0000
ROA not before: Wed 07 Feb 2024 12:30:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 33885
IP address blocks: 185.86.100.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 08 Feb 2024 07:52:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:83:8c:22:77:11:a5:34:3d:3e:a9:f9:34:2f:79:7a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2347aaab2206c08128f543730064a145a3effa14
Validity
Not Before: Feb 7 12:30:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9786a1be38c50ec15191bb35b24a4834eca70ae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:3d:01:be:c4:41:6f:58:09:f5:61:e3:32:6e:
e1:b8:68:ff:c4:dd:3a:aa:64:b1:fe:3e:6c:b4:2c:
a2:b1:9a:ba:dc:c2:67:05:f7:87:e3:f1:c0:3a:b9:
6d:12:c1:84:28:c9:d4:e7:cc:3e:f0:9e:66:41:45:
db:78:88:6c:ae:d9:32:b9:01:24:64:0c:57:a5:81:
e9:70:bb:d2:8b:34:65:e0:48:58:01:50:02:cf:87:
b4:50:33:6f:1b:55:5c:21:50:18:32:96:82:0f:88:
76:18:14:c3:16:3b:3c:52:af:79:50:e2:3e:d1:76:
a1:38:8b:00:ca:ef:86:00:91:57:a9:c3:9a:41:c1:
bc:2c:62:58:0b:91:18:e6:c6:4c:0d:f9:c1:94:46:
01:87:43:a9:c2:e9:52:8c:95:d8:56:05:c0:82:df:
06:49:60:6c:08:5c:40:44:4c:c7:59:0f:43:51:3d:
69:63:f8:75:b1:9c:c0:33:ac:c2:56:c8:49:a3:85:
3d:70:06:71:93:0f:81:f4:f2:b4:83:38:da:63:20:
be:1f:71:44:fe:14:c9:d7:96:8e:45:2d:d3:c0:20:
0e:e7:96:f1:db:ac:52:bc:1e:3a:39:23:6d:cc:ca:
07:24:87:c4:62:9c:1c:15:e7:2d:ba:0f:f0:a3:64:
e9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:86:A1:BE:38:C5:0E:C1:51:91:BB:35:B2:4A:48:34:EC:A7:0A:E9
X509v3 Authority Key Identifier:
keyid:23:47:AA:AB:22:06:C0:81:28:F5:43:73:00:64:A1:45:A3:EF:FA:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0eqqyIGwIEo9UNzAGShRaPv-hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/l4ahvjjFDsFRkbs1skpINOynCuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/ef9f0d-d840-4371-adc4-75840661eaf5/1/I0eqqyIGwIEo9UNzAGShRaPv-hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.100.0/22
Signature Algorithm: sha256WithRSAEncryption
98:6e:65:1b:1b:9a:ad:f5:0c:29:fd:ba:13:49:f3:a4:04:14:
76:d6:3c:51:63:ae:b6:62:b3:db:46:f3:69:ab:88:aa:84:95:
63:c8:82:43:fd:d9:70:c7:a5:14:23:a9:8d:e6:58:02:e6:18:
01:ad:e7:3f:95:1d:6b:26:61:b6:64:cc:7d:d9:57:58:01:b0:
12:08:cb:fb:59:d6:9c:43:ea:14:5b:69:20:a6:01:09:ce:e6:
4c:e6:dc:46:5f:6d:2e:70:71:8d:25:10:14:88:6c:d3:33:f2:
e1:d1:2a:61:5c:1a:d3:f2:1d:c0:ea:a2:2d:bc:9b:ed:0f:ac:
e9:cb:31:84:c5:75:eb:3b:4a:72:e9:d2:cf:c9:dd:b3:43:0a:
a5:f3:a9:e0:22:e7:1c:27:20:c6:8a:85:fe:f6:65:1e:56:43:
b5:ff:d0:68:18:1c:16:2b:2b:f7:ff:62:6c:59:da:f4:12:e1:
39:b1:83:8f:f0:96:9d:17:2c:73:0b:fb:1d:af:a3:ef:55:2b:
ff:67:fe:9c:5f:83:2c:12:ef:65:9d:8c:1c:62:75:8c:54:4f:
91:bc:9f:ef:72:42:40:88:48:be:d6:98:c5:16:1f:d0:dc:29:
b2:62:31:73:42:69:f3:5a:e0:f6:16:1b:aa:78:ba:54:bc:2b:
93:5a:e4:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:54 2024 by rpki-client on console-ams.rpki-client.org