Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/n0gTvhkXxzytxE5Mrdr-0yU_SfM.roa
File: n0gTvhkXxzytxE5Mrdr-0yU_SfM.roa (raw, json)
Hash identifier: QC3hNQhfeanC7oSt/vhJXUMzOVsMzI6TokZpjOTxHjA=
Subject key identifier: 9F:48:13:BE:19:17:C7:3C:AD:C4:4E:4C:AD:DA:FE:D3:25:3F:49:F3
Certificate issuer: /CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Certificate serial: 018571C3186960157F3BE822B4139AB9D0EB
Authority key identifier: B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/n0gTvhkXxzytxE5Mrdr-0yU_SfM.roa
Signing time: Mon 02 Jan 2023 09:14:49 +0000
ROA not before: Mon 02 Jan 2023 09:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56382
IP address blocks: 185.133.208.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:c3:18:69:60:15:7f:3b:e8:22:b4:13:9a:b9:d0:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8074b419ead4cefea2f2ad2c259d978c5ed7954
Validity
Not Before: Jan 2 09:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f4813be1917c73cadc44e4caddafed3253f49f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e3:1e:92:47:d9:05:75:98:4d:a7:30:49:e8:
7a:df:da:c6:b3:a7:65:6d:c1:f6:03:6d:d6:26:a6:
d7:be:d7:be:c8:a1:0e:d5:7b:75:75:fd:18:b1:ef:
9e:38:80:a9:a0:b8:1c:30:23:b4:0a:4b:8e:bc:5c:
bb:95:fc:c5:36:ab:a9:94:3e:78:a6:58:4b:21:24:
5a:ae:3d:c9:99:e3:a1:85:54:73:7d:76:2e:55:6f:
64:51:27:67:0e:ab:dc:06:3b:40:1c:be:55:2a:c4:
c4:b1:3d:f5:3d:cd:68:da:e1:c8:29:75:7a:7f:ca:
87:b1:6c:f5:a0:80:77:e6:0f:9b:b6:fa:0c:39:b2:
e5:ca:ae:f8:ec:20:8b:83:3b:91:12:9e:d1:53:a9:
65:0c:66:5d:1d:89:71:2b:43:df:db:3b:4c:0d:ac:
81:4b:6c:db:ea:d8:f9:33:99:f2:45:94:16:db:df:
16:bf:73:c2:e0:db:10:3d:ac:d5:c8:eb:b2:1b:c6:
1b:2a:7e:f6:da:60:c0:de:25:ec:29:ec:c3:e1:e1:
21:7b:11:17:23:0d:22:dd:6d:d0:a7:a6:a5:68:e9:
59:92:a6:1b:76:8b:8a:03:5d:4b:17:50:1b:b4:97:
58:e0:66:7a:94:e5:1f:c3:79:9e:d7:c6:b5:b3:44:
fe:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:48:13:BE:19:17:C7:3C:AD:C4:4E:4C:AD:DA:FE:D3:25:3F:49:F3
X509v3 Authority Key Identifier:
keyid:B8:07:4B:41:9E:AD:4C:EF:EA:2F:2A:D2:C2:59:D9:78:C5:ED:79:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/n0gTvhkXxzytxE5Mrdr-0yU_SfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/1e43e4-d06e-4a55-bdb6-3d91ede5b2b1/1/uAdLQZ6tTO_qLyrSwlnZeMXteVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.208.0/24
Signature Algorithm: sha256WithRSAEncryption
71:21:d9:fd:32:c5:2c:2e:70:9c:09:d8:31:56:25:f6:9a:ff:
56:59:45:36:51:9b:f9:a4:97:8a:0b:16:f8:24:88:c4:c8:be:
66:40:13:eb:d3:c1:67:57:1c:44:02:ba:34:09:39:fb:b9:73:
f1:e0:33:1b:dd:68:e0:04:2e:61:cb:6f:b3:2b:69:aa:e9:cd:
8c:a0:b8:b9:ee:bb:c2:89:3b:65:b7:9a:d3:1f:72:f8:83:05:
24:23:f9:13:b4:2a:86:56:c9:28:d1:9b:ec:8a:47:52:48:2d:
f3:47:0f:14:08:9a:14:21:70:b9:6d:7d:45:a9:5c:0d:5f:48:
22:c7:13:ff:cd:44:3e:d0:7c:59:4a:d5:e7:22:62:40:91:fc:
45:c7:31:27:2d:49:13:36:10:19:e6:af:6b:99:fd:be:73:d4:
d4:4d:ab:15:2f:8a:aa:a6:01:f7:cd:e0:2f:9d:45:23:50:ff:
94:e8:8e:fb:23:2d:d5:96:9e:0b:66:e0:f2:b1:1a:06:2c:27:
3f:a2:97:f8:ef:89:34:86:84:5f:ed:11:4c:50:6f:7e:5c:11:
32:0d:ca:51:f1:c4:76:20:31:25:29:70:cf:6b:5f:61:26:59:
bb:27:89:19:60:c2:d0:06:a4:89:50:06:96:39:64:ea:9e:86:
41:10:88:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:04 2024 by rpki-client on console-ams.rpki-client.org