Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/itO2Q4F1PtluZ8WfudhOG5oPE_Q.roa
File: itO2Q4F1PtluZ8WfudhOG5oPE_Q.roa (raw, json)
Hash identifier: woNZ71Qs/VnpzBUFAFpODSmQMHphOFO7Q11JBM3Pb10=
Subject key identifier: 8A:D3:B6:43:81:75:3E:D9:6E:67:C5:9F:B9:D8:4E:1B:9A:0F:13:F4
Certificate issuer: /CN=c7221e402998abc1f035475e158b74e8c76920c0
Certificate serial: 0186B61871EC481C6E8B829D73C0253E470B
Authority key identifier: C7:22:1E:40:29:98:AB:C1:F0:35:47:5E:15:8B:74:E8:C7:69:20:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xyIeQCmYq8HwNUdeFYt06MdpIMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/itO2Q4F1PtluZ8WfudhOG5oPE_Q.roa
Signing time: Mon 06 Mar 2023 08:45:00 +0000
ROA not before: Mon 06 Mar 2023 08:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208972
IP address blocks: 185.201.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b6:18:71:ec:48:1c:6e:8b:82:9d:73:c0:25:3e:47:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7221e402998abc1f035475e158b74e8c76920c0
Validity
Not Before: Mar 6 08:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ad3b64381753ed96e67c59fb9d84e1b9a0f13f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:90:c6:f4:94:6d:c0:38:11:71:6c:46:be:2c:
4f:67:47:72:0f:df:67:08:dd:99:7d:d4:52:5a:ae:
df:9c:9c:41:82:ee:73:0f:df:10:5d:83:71:16:26:
fe:d9:5c:2e:c4:6d:fd:73:bc:8e:28:b8:ea:a5:4d:
bc:e2:4d:37:87:34:5c:b0:33:b6:cf:03:9d:5b:dc:
a3:0a:90:89:81:51:4f:33:91:11:2d:56:e4:fa:f8:
2c:0a:82:3b:ca:3d:46:70:86:f8:81:1d:40:32:bb:
7e:ae:69:7c:e8:ae:5f:7f:df:e0:4b:43:6d:7c:16:
dd:4b:ea:21:e8:07:f3:f0:e8:07:8f:dc:85:69:3a:
05:1f:62:3c:77:94:1d:03:a0:24:36:4f:ec:e3:6d:
7f:be:c9:aa:01:a3:0f:ad:e9:b4:fc:4a:75:b1:48:
0b:21:3b:90:f9:1d:19:18:63:f2:54:d7:e4:2a:d6:
55:aa:98:a7:39:aa:dc:86:07:a5:4d:45:aa:52:6a:
cd:bf:13:cf:d5:44:72:f9:bb:79:58:8f:0c:1b:3c:
47:b6:8d:d0:b7:13:3f:59:46:59:7e:f0:83:fa:12:
34:3e:2b:60:72:c9:ee:7d:9c:58:22:44:f5:0e:44:
dc:25:3a:92:84:23:48:9d:cf:5a:4f:9f:f0:f4:12:
41:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D3:B6:43:81:75:3E:D9:6E:67:C5:9F:B9:D8:4E:1B:9A:0F:13:F4
X509v3 Authority Key Identifier:
keyid:C7:22:1E:40:29:98:AB:C1:F0:35:47:5E:15:8B:74:E8:C7:69:20:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xyIeQCmYq8HwNUdeFYt06MdpIMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/itO2Q4F1PtluZ8WfudhOG5oPE_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e9ca7a-411c-43a8-952f-cc540608c41d/1/xyIeQCmYq8HwNUdeFYt06MdpIMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.133.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:d9:cd:34:77:39:e4:f5:ad:aa:30:87:40:d2:57:2e:fd:b8:
56:ca:99:41:68:77:2c:09:7b:df:20:0a:a3:45:89:00:80:59:
8c:c6:3e:5f:87:ae:dc:0e:4b:09:b7:63:af:f4:b9:dc:10:e7:
9e:71:cd:a2:73:e1:90:44:77:de:88:42:92:41:f8:7b:7d:8f:
ca:1d:47:5a:ad:11:64:3c:83:a9:68:88:c3:9f:10:4f:8d:df:
c3:c1:b2:59:51:28:4b:54:f9:38:a9:0f:0f:80:ba:5c:6a:35:
8e:30:ad:71:9d:25:3a:ae:cc:41:0a:34:ff:7b:39:59:28:52:
c4:58:1d:40:1d:e7:33:bd:49:35:6f:98:13:96:7b:bc:9c:eb:
07:1d:b5:15:29:5c:46:08:c1:b5:3e:a8:7c:d0:2f:05:7c:b9:
20:1c:9f:d3:48:4e:d6:a9:b5:de:d5:0d:5b:6b:a6:6b:d3:4e:
42:39:f3:7b:c9:f8:7f:99:a3:37:03:70:c2:0b:7c:b7:8f:7b:
c8:5f:73:20:09:27:26:8d:00:71:db:20:6d:bb:d1:5c:b3:2a:
2d:63:4d:07:35:b7:6f:0b:47:ca:49:20:f8:6f:7e:74:e3:e7:
eb:9a:5c:5e:64:1c:9c:a2:fc:5d:1c:65:19:16:11:7c:15:ab:
b0:a5:5e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:19 2024 by rpki-client on console-ams.rpki-client.org