Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/sLcmhoZT0wrshUVAQ2U3Q2bVG0U.roa
File: sLcmhoZT0wrshUVAQ2U3Q2bVG0U.roa (raw, json)
Hash identifier: xiKgny8pKkHZvY3KofT/l/YW/iFQ6XUyTJR63+kmU0w=
Subject key identifier: B0:B7:26:86:86:53:D3:0A:EC:85:45:40:43:65:37:43:66:D5:1B:45
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 018A03A5AFF1304CEB70A4C564D582E8C5CF
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/sLcmhoZT0wrshUVAQ2U3Q2bVG0U.roa
Signing time: Thu 17 Aug 2023 13:18:24 +0000
ROA not before: Thu 17 Aug 2023 13:18:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 185.221.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:03:a5:af:f1:30:4c:eb:70:a4:c5:64:d5:82:e8:c5:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: Aug 17 13:18:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0b726868653d30aec8545404365374366d51b45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b9:09:b3:bf:4a:21:77:fb:1b:bf:ce:cd:6a:
34:b3:45:34:cc:32:0a:6d:eb:cd:3d:c7:a7:b8:a3:
12:0e:d3:da:fd:0f:72:b3:1f:0c:30:35:4d:94:e5:
26:ad:c6:44:73:cc:1b:a7:15:73:a8:43:fd:d5:62:
8d:c7:76:de:79:d2:31:50:2c:ff:d7:59:9a:de:eb:
c3:af:71:0e:41:46:dc:8e:bc:cf:59:49:07:17:a5:
a2:cf:ac:1c:65:8c:7b:7b:19:09:ed:2c:1d:ba:96:
4b:a0:33:a1:02:27:ca:f4:cd:ee:62:34:a8:71:0c:
cb:46:63:31:02:81:d5:51:e5:93:f5:7e:f8:c8:27:
43:3f:9f:cc:bf:95:fd:2e:df:82:88:29:34:4f:12:
3e:02:01:45:52:b9:62:d7:d1:9f:6f:1c:b0:78:3a:
32:e7:f5:37:66:b3:72:18:a4:17:dd:5a:b3:63:cb:
36:5e:ee:63:71:ad:e8:56:40:e7:82:0c:06:06:60:
f4:47:7f:20:0d:ed:f2:f5:27:ad:7a:be:f3:2c:c9:
24:d6:fe:92:3d:43:b8:f6:b9:47:b6:64:bb:d6:11:
b5:86:39:53:3d:53:85:1c:2f:e6:58:7a:1e:64:59:
86:03:fc:1a:3b:df:c4:40:bd:0b:35:06:36:d1:c4:
b6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B7:26:86:86:53:D3:0A:EC:85:45:40:43:65:37:43:66:D5:1B:45
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/sLcmhoZT0wrshUVAQ2U3Q2bVG0U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.217.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:35:b5:ab:54:d1:a8:34:ee:51:67:46:e9:3d:1c:d7:cf:4d:
50:f3:c6:f0:9f:47:ef:97:b4:0b:89:2a:9c:79:95:b2:2d:91:
81:e9:cf:7e:97:24:da:d2:5e:e7:c9:ac:94:97:e9:05:6f:63:
90:80:f6:39:ec:c7:0f:03:f0:dd:06:6b:7a:08:31:0a:c8:51:
f1:eb:8b:5e:b3:c8:69:97:bc:92:f1:81:92:40:f9:54:96:ed:
c6:dd:73:04:fa:ea:40:9e:9c:ea:9a:d2:66:6c:c3:6f:26:6d:
55:ff:f4:0f:c6:ef:90:ab:f4:12:aa:2d:0d:14:08:c0:ae:04:
6f:a0:d2:94:e0:54:48:91:ef:64:5b:04:93:52:5d:11:83:f2:
eb:19:23:73:0a:3a:c2:64:63:93:6d:c6:44:e7:9f:88:cd:7a:
09:bf:4c:a2:b9:e7:67:18:25:f1:db:e1:94:17:23:d5:15:2e:
2b:df:7b:a1:b9:81:e2:a9:a2:57:1f:06:c0:f8:54:1d:c9:a1:
3d:10:9b:2e:7d:94:c4:e8:cb:42:31:74:61:80:24:75:63:69:
f1:5f:c5:b8:5b:57:d8:dd:8b:f3:44:4b:a5:71:64:ac:3b:8a:
cc:1b:25:4d:d1:54:4b:d3:21:f9:7a:96:e9:4c:df:98:0f:ea:
45:c7:35:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:07 2024 by rpki-client on console-ams.rpki-client.org