Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/i0YXC62RGDmeuSbBbaSflE8okXY.roa
File: i0YXC62RGDmeuSbBbaSflE8okXY.roa (raw, json)
Hash identifier: yS/Jdz0Fv3P6S54cWXvfWfIgRug/UgMGoN6Dfiu+Ft0=
Subject key identifier: 8B:46:17:0B:AD:91:18:39:9E:B9:26:C1:6D:A4:9F:94:4F:28:91:76
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 018C4495861C6E0A4D944429AFD78B2CCB11
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/i0YXC62RGDmeuSbBbaSflE8okXY.roa
Signing time: Thu 07 Dec 2023 14:01:38 +0000
ROA not before: Thu 07 Dec 2023 14:01:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47687
IP address blocks: 185.225.207.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:44:95:86:1c:6e:0a:4d:94:44:29:af:d7:8b:2c:cb:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Dec 7 14:01:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b46170bad9118399eb926c16da49f944f289176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ba:0c:d5:26:90:9e:a9:54:23:c5:31:61:e8:
87:32:77:b3:25:bb:8b:92:80:fa:cc:b7:0c:24:81:
b3:e0:53:6d:a4:3e:56:37:9b:e6:32:e6:eb:46:52:
d2:2a:36:87:2c:a1:7c:77:6a:3b:23:6c:78:36:b3:
a8:88:78:09:03:5c:70:e2:f7:3d:3c:22:7b:bf:fc:
09:e1:6e:d3:02:e8:f8:ed:42:52:c1:dd:a9:bd:c4:
f0:14:89:84:11:4c:94:ef:1d:1c:25:b2:c5:27:04:
6e:40:b9:4f:a9:27:da:76:19:61:c9:c5:4c:15:8e:
11:9a:e3:82:ba:c5:f8:d1:3f:06:61:ca:d2:77:bc:
ac:eb:6a:02:e6:ee:84:24:a7:4e:f1:85:ee:f6:d7:
92:46:48:06:44:dc:33:95:6a:c7:ec:65:62:40:39:
25:2f:b6:e5:40:a6:04:4d:0c:bb:0d:7f:ed:76:fb:
70:8a:45:be:7c:b3:61:be:32:39:3a:80:60:df:d7:
9b:cf:72:49:16:2c:69:ef:75:bd:b3:46:ff:60:60:
d3:33:70:84:0a:ad:0b:ab:96:ca:b7:90:79:69:5e:
b7:f8:d5:ab:79:ed:20:55:e6:9d:a5:05:fe:a3:bc:
a3:78:c3:08:97:c6:cf:b8:20:5e:e7:e3:33:80:f9:
fd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:46:17:0B:AD:91:18:39:9E:B9:26:C1:6D:A4:9F:94:4F:28:91:76
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/i0YXC62RGDmeuSbBbaSflE8okXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.207.0/24
Signature Algorithm: sha256WithRSAEncryption
10:fe:fa:d2:b2:ea:51:30:de:bc:1c:a1:f0:c5:2e:7d:aa:3c:
89:0b:b4:09:84:2a:89:3c:10:72:03:e3:37:07:71:f4:d5:94:
34:cb:59:9e:39:79:68:a0:1f:7f:1e:b0:bb:ad:c9:30:d4:07:
36:f5:10:94:66:50:35:a1:7e:12:8d:ef:02:ce:15:fa:8e:46:
06:f2:dc:9c:09:97:b3:75:87:62:81:b7:ec:fe:7b:56:e6:dd:
87:e4:3f:31:a8:41:eb:4b:f1:4d:a5:df:d0:d8:7b:de:2e:8d:
fd:85:81:52:74:9d:51:69:0f:b9:a4:87:2a:cc:4e:f1:43:f7:
f3:de:d8:b7:05:fc:9d:ab:64:44:4d:31:a8:20:d6:86:b9:7a:
c6:c7:7a:a5:33:1f:f2:35:4f:e8:e8:a0:67:5a:71:af:a7:d2:
d1:78:21:11:b7:28:90:a0:f2:fc:ea:58:a4:d8:fc:5c:e4:b1:
1e:69:74:8c:1d:6b:c0:11:09:b4:d7:1a:a1:14:20:b1:b7:27:
c5:cc:21:6e:f4:9a:1c:ec:5c:4c:c5:63:71:af:92:00:aa:f8:
e1:e0:85:70:f5:39:1e:64:32:f4:04:b9:8d:8a:67:51:71:69:
a9:40:f8:37:ce:3a:4e:d6:ce:e4:b7:b9:9c:c0:50:97:3e:be:
ba:41:5b:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:18 2024 by rpki-client on console-fra.rpki-client.org