Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/Ia6HyQ8q0K-1-ErP1Uyi2MRvmWA.roa
File: Ia6HyQ8q0K-1-ErP1Uyi2MRvmWA.roa (raw, json)
Hash identifier: JVJ/33BZjI8GB6GXmqDSo/rfy5hIFX+lB1Wfq3BjMgk=
Subject key identifier: 21:AE:87:C9:0F:2A:D0:AF:B5:F8:4A:CF:D5:4C:A2:D8:C4:6F:99:60
Certificate issuer: /CN=d83c5c31a2d9bfc4e010214a652dbd657d93b243
Certificate serial: 01856D6F568561EEC891EB1F51C55A35AB9A
Authority key identifier: D8:3C:5C:31:A2:D9:BF:C4:E0:10:21:4A:65:2D:BD:65:7D:93:B2:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DxcMaLZv8TgECFKZS29ZX2TskM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/Ia6HyQ8q0K-1-ErP1Uyi2MRvmWA.roa
Signing time: Sun 01 Jan 2023 13:04:51 +0000
ROA not before: Sun 01 Jan 2023 13:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211165
IP address blocks: 185.22.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:56:85:61:ee:c8:91:eb:1f:51:c5:5a:35:ab:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d83c5c31a2d9bfc4e010214a652dbd657d93b243
Validity
Not Before: Jan 1 13:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21ae87c90f2ad0afb5f84acfd54ca2d8c46f9960
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:86:53:b5:1f:74:5e:75:37:71:5e:38:19:37:
f4:9f:e6:00:eb:7c:a5:9b:13:5f:e8:48:9f:4d:67:
b1:5a:5a:dc:73:e2:40:e2:29:07:b1:9f:a5:cd:a4:
d7:c0:a8:e2:7b:8c:2f:ce:84:9b:15:6c:13:bc:f1:
a8:bc:76:52:be:e2:4d:e7:cd:23:d8:69:74:85:c3:
4d:ad:46:6d:a4:ba:7d:41:13:68:3e:06:88:0a:73:
6e:64:c0:93:7d:c1:95:00:1d:c7:36:9f:a5:7f:bd:
a3:f7:9f:0b:1c:d4:4b:22:46:4d:f3:ec:62:88:a2:
2d:e8:e9:5c:5b:a1:f2:81:b5:b1:27:2c:db:a6:c2:
29:a0:06:55:7f:48:ed:7e:c4:98:e4:2e:a5:1d:c7:
bc:12:51:2e:23:ca:25:f1:25:f0:15:1e:5e:77:8a:
d7:5a:ab:19:fb:69:a5:ac:3b:fc:9d:27:d4:d0:c9:
1d:f3:4d:8a:87:97:31:e5:2c:8d:e8:df:9e:8c:24:
f0:22:6b:d9:b6:99:ea:ca:06:9d:79:5b:11:d7:97:
66:d6:96:45:c1:12:66:45:de:36:df:60:2d:b1:ed:
be:84:ce:7f:ce:4e:88:4c:fa:e0:3f:b1:23:8b:6a:
f3:79:ed:a3:09:e9:6f:d0:9b:90:76:19:f3:f8:3a:
4c:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AE:87:C9:0F:2A:D0:AF:B5:F8:4A:CF:D5:4C:A2:D8:C4:6F:99:60
X509v3 Authority Key Identifier:
keyid:D8:3C:5C:31:A2:D9:BF:C4:E0:10:21:4A:65:2D:BD:65:7D:93:B2:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DxcMaLZv8TgECFKZS29ZX2TskM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/Ia6HyQ8q0K-1-ErP1Uyi2MRvmWA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ba3adf-f655-455c-9e83-cc0fe473c37d/1/2DxcMaLZv8TgECFKZS29ZX2TskM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.22.229.0/24
Signature Algorithm: sha256WithRSAEncryption
16:bb:79:56:a1:64:98:b3:21:f9:e4:c8:d8:bf:7a:85:4f:2a:
89:13:54:58:d0:7a:78:1e:85:67:f2:9c:ac:e7:f8:eb:67:c3:
af:c9:81:5f:1b:4f:4a:55:46:72:26:29:39:8f:5b:54:d2:d8:
6c:de:a5:b5:14:53:a0:76:a5:8a:d7:7b:9b:17:32:88:1f:ed:
c4:08:a9:4f:ac:c4:8e:aa:7a:9f:b2:78:0a:51:0d:7b:80:6d:
db:50:ed:3f:de:9b:6b:d0:f3:c6:59:ec:88:a9:ba:eb:4f:b8:
6b:a6:97:e8:0f:56:58:ca:1e:04:88:d8:fa:59:ba:c4:97:8b:
7a:eb:80:54:64:13:41:a2:a6:2a:aa:8a:c9:6f:21:46:95:9b:
64:70:b9:45:95:d3:c8:c4:20:b3:29:37:da:bc:fe:8a:f0:0f:
a1:8d:93:fa:7e:dd:eb:ec:f8:51:6d:37:35:0e:0f:6d:01:08:
df:6a:b9:47:d1:e1:00:4d:2b:06:48:da:2c:fb:17:02:94:77:
46:9a:ca:5e:d7:be:47:b2:11:a2:e7:95:34:80:06:cd:e3:8f:
f9:d5:98:5e:6c:ed:af:37:f5:1d:d2:52:d3:27:7a:c2:03:4f:
cf:8d:b5:80:c2:31:42:7e:13:3b:1b:a7:b1:38:37:d1:27:9c:
2e:77:c0:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:22:10 2024 by rpki-client on console-ams.rpki-client.org