Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/IOJ2mw3bstkDAdZrPotNMQBEQqw.roa
File: IOJ2mw3bstkDAdZrPotNMQBEQqw.roa (raw, json)
Hash identifier: o0RY7a/RkYKJZ0w9QnHmXVcvLbH3EK42luvUy5yRpd8=
Subject key identifier: 20:E2:76:9B:0D:DB:B2:D9:03:01:D6:6B:3E:8B:4D:31:00:44:42:AC
Certificate issuer: /CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Certificate serial: 0187DAB53C09AA8DC71653FC9450AB1E02E2
Authority key identifier: 1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/IOJ2mw3bstkDAdZrPotNMQBEQqw.roa
Signing time: Tue 02 May 2023 04:25:23 +0000
ROA not before: Tue 02 May 2023 04:25:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.20.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:da:b5:3c:09:aa:8d:c7:16:53:fc:94:50:ab:1e:02:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c06a82bb115d7393e39fd58b73bbf20f6cd0b1f
Validity
Not Before: May 2 04:25:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=20e2769b0ddbb2d90301d66b3e8b4d31004442ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d0:d3:64:11:f5:e7:c9:36:fd:71:a0:b6:78:
71:4d:69:13:f8:7d:59:4c:51:c1:ae:55:52:a8:5a:
b6:79:3f:4b:23:ad:19:26:14:42:ee:c8:af:4d:f2:
d3:98:03:93:23:5b:82:39:c8:1f:e1:b8:17:87:68:
be:a8:2e:ae:c3:de:5e:c1:a9:91:29:90:4c:7d:ae:
6b:e9:75:b9:77:d5:f0:25:1f:c4:7e:33:c5:4b:a9:
b9:a6:07:cb:da:7c:04:07:64:7a:96:25:be:c7:aa:
9e:d4:b5:0a:72:2e:c2:f1:da:01:3f:08:75:d1:3d:
dd:5c:f6:3a:f5:5f:ba:fb:09:80:ac:59:df:f2:f3:
e3:e5:c4:86:ef:74:8b:95:78:44:e5:c2:90:a8:29:
f4:0d:cd:b6:d3:a8:6c:f9:bb:61:02:17:08:10:3f:
ba:5a:4e:c6:e6:ba:8e:02:20:ce:13:68:ed:43:11:
93:8e:1a:c0:73:25:38:7e:66:dd:a4:10:19:60:10:
f4:24:1b:c3:3a:da:5e:26:78:9e:a8:1b:0f:92:ba:
62:78:2a:ef:56:da:47:1d:01:bd:45:e1:8e:f0:c2:
7b:a8:0e:09:52:43:cd:10:99:a5:7f:58:a2:74:2f:
16:d5:4b:23:76:1a:d0:e1:36:d3:f0:4f:e5:86:c0:
e0:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:E2:76:9B:0D:DB:B2:D9:03:01:D6:6B:3E:8B:4D:31:00:44:42:AC
X509v3 Authority Key Identifier:
keyid:1C:06:A8:2B:B1:15:D7:39:3E:39:FD:58:B7:3B:BF:20:F6:CD:0B:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/IOJ2mw3bstkDAdZrPotNMQBEQqw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/12eaad-8a45-4789-bab5-726057a1f2a4/1/HAaoK7EV1zk-Of1Ytzu_IPbNCx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.255.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:dc:e9:98:bd:08:2a:22:8b:80:20:81:a6:c2:a9:fe:59:cd:
84:24:2c:2f:64:26:5a:1b:dd:81:2e:6d:e9:94:27:11:51:b3:
b2:eb:25:b6:e1:29:4b:1c:fb:da:a0:10:f7:86:50:02:30:c1:
0b:ec:bc:b5:36:81:5b:09:06:a3:45:9d:5b:fa:1b:76:4e:c3:
6b:6b:29:de:53:b8:b4:79:51:83:53:20:d5:47:35:08:a8:42:
94:b7:cb:eb:19:fd:75:06:2f:b5:31:e1:89:0c:07:31:9f:9d:
fd:db:fd:af:5a:22:17:ee:3b:3d:b3:a1:a5:01:4f:ab:84:bd:
59:85:9c:f0:cf:90:6c:7c:0c:c2:27:05:49:3d:42:bd:43:01:
a9:81:1f:75:4f:9a:6a:44:23:d6:73:ad:ff:0f:c6:8e:ab:9d:
84:d7:f0:05:e4:80:07:47:8d:64:93:15:ef:c3:ac:6f:a3:16:
d1:c9:ee:d7:d4:b1:84:b0:1f:c6:d8:2c:2e:45:1a:79:21:b9:
31:0d:3a:61:0e:7f:42:b3:f1:34:b3:e0:15:d7:8a:ba:b8:20:
5d:6e:27:07:2d:f4:bf:bb:82:e6:51:f2:b0:70:e5:e3:2f:48:
71:e5:f1:6d:ce:cd:a9:79:c6:97:d9:69:38:34:09:e4:08:d2:
aa:48:d2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:58 2023 by rpki-client on console-fra.rpki-client.org