Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9v7pmNQ1IRW9jdSBgAjerfizfWo.roa
File: 9v7pmNQ1IRW9jdSBgAjerfizfWo.roa (raw, json)
Hash identifier: oYKADnPZ/obj3qaKA4Jbfels4BywfhW/ZQUeI3zWdNo=
Subject key identifier: F6:FE:E9:98:D4:35:21:15:BD:8D:D4:81:80:08:DE:AD:F8:B3:7D:6A
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF5768B6F5F80C5D574110FE18117
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9v7pmNQ1IRW9jdSBgAjerfizfWo.roa
Signing time: Sun 01 Jan 2023 11:15:12 +0000
ROA not before: Sun 01 Jan 2023 11:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207168
IP address blocks: 85.142.180.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f5:76:8b:6f:5f:80:c5:d5:74:11:0f:e1:81:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f6fee998d4352115bd8dd4818008deadf8b37d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:a3:6d:02:84:76:64:c2:60:c5:f1:94:ae:fc:
24:c9:78:91:30:1c:74:b9:b2:db:f4:50:bb:c8:1f:
4d:2a:f5:ea:e1:40:53:83:b8:c2:cd:cb:cc:23:40:
9b:3a:48:b1:5d:93:73:87:17:14:86:18:6d:17:86:
3f:15:c6:2a:38:dc:1d:41:e0:8e:97:cd:e6:2d:77:
95:33:30:8f:13:08:7f:cb:fa:e2:50:ba:43:50:9a:
49:80:bf:33:ef:5d:b3:12:c0:ef:0d:87:d5:b7:3e:
96:c6:8b:d3:8b:fe:c2:17:6d:0b:a5:ca:a4:ee:d9:
0b:d3:7e:49:ae:6c:a2:11:81:5a:fb:64:f2:6c:29:
d7:08:ae:7e:18:24:bc:a1:c7:d7:5a:60:fc:31:8e:
a2:2d:66:37:aa:f3:15:d2:8a:33:98:f3:db:99:a8:
bd:2f:ff:65:83:b5:be:c0:ef:d7:d2:13:9e:c7:86:
b8:a3:9f:bd:5c:69:fc:d0:1a:c7:f8:6c:36:73:f5:
cb:3e:35:fc:64:f2:ca:d6:92:f4:c5:83:2c:ab:1e:
52:df:bb:5f:d5:56:9c:8d:af:92:e3:76:ac:3f:59:
f9:3b:d4:25:b7:0a:24:29:fa:09:d3:d0:e5:ce:c6:
70:0a:04:52:45:31:5c:48:f1:ad:3b:74:5d:af:22:
47:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:FE:E9:98:D4:35:21:15:BD:8D:D4:81:80:08:DE:AD:F8:B3:7D:6A
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/9v7pmNQ1IRW9jdSBgAjerfizfWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.142.180.0/22
Signature Algorithm: sha256WithRSAEncryption
03:6a:29:db:32:53:97:63:c3:3b:09:ca:39:87:4a:dc:71:98:
63:9d:00:d1:13:5a:26:05:52:23:10:76:1e:b7:af:b4:9a:a5:
ee:a2:2f:be:c5:5a:15:51:9c:7b:40:ff:d2:df:29:93:f1:0e:
20:84:7a:ae:7a:b5:8f:28:af:33:81:37:02:8f:11:bb:97:ca:
6e:31:c3:2c:0a:e3:68:e1:a1:78:d8:b8:02:8c:82:7f:db:83:
9d:d7:55:68:3b:4c:c1:fc:0d:e5:e2:39:b4:18:08:3a:71:50:
74:5f:8a:5d:8f:4d:71:e1:1f:f2:7a:ab:09:b2:0b:d3:2c:e3:
03:b7:d2:e4:70:d8:bd:4f:51:1e:4c:e4:4c:70:eb:a5:8e:5b:
ca:76:47:98:d1:39:a2:94:e3:15:18:a5:a6:c5:2c:4b:f2:a1:
db:5b:a4:e6:0b:c9:8a:cf:77:90:45:6f:0b:26:8b:71:b0:2d:
98:f0:1a:76:16:11:a4:ec:99:fc:f2:0a:e4:de:b8:01:0e:fd:
f3:a9:c5:56:e0:50:96:fe:7c:5c:23:70:a6:ac:92:93:a8:db:
20:eb:be:3f:8d:73:ea:12:33:a9:76:49:95:47:72:f8:3b:30:
e9:19:fb:98:ec:3a:1f:fe:3d:41:d5:36:b9:1b:37:28:7f:ab:
fd:5c:05:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org