Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/_JRtSNsww56uJX5u2GNiM7x0rEM.roa
File: _JRtSNsww56uJX5u2GNiM7x0rEM.roa (raw, json)
Hash identifier: OlZ4K/z0FEywVNgQuxwN+de+mdCuo9jg0OTY5ILmqYw=
Subject key identifier: FC:94:6D:48:DB:30:C3:9E:AE:25:7E:6E:D8:63:62:33:BC:74:AC:43
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF455FC34D71A5BABD7C48AFD5C05
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/_JRtSNsww56uJX5u2GNiM7x0rEM.roa
Signing time: Sun 01 Jan 2023 11:15:12 +0000
ROA not before: Sun 01 Jan 2023 11:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202989
IP address blocks: 85.143.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f4:55:fc:34:d7:1a:5b:ab:d7:c4:8a:fd:5c:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc946d48db30c39eae257e6ed8636233bc74ac43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ed:eb:79:c0:7d:46:ab:be:3b:2f:4b:f9:81:
be:52:20:3d:be:28:f1:63:36:a3:22:48:de:72:1e:
70:37:8b:49:41:49:6a:8e:25:47:eb:b7:e6:f0:36:
ce:4b:fb:50:db:ce:5b:25:38:d8:36:b1:7c:63:67:
a6:b6:70:45:c8:82:2b:36:10:5f:7c:d5:53:97:a1:
17:22:61:52:b7:d4:75:03:a8:4d:f4:ee:4b:45:0f:
e6:83:8c:50:13:df:fb:a9:d2:86:c3:ea:61:34:53:
39:5b:b1:19:35:da:b2:96:fe:69:39:af:8b:f7:41:
41:b0:b8:ad:1a:2c:62:86:71:68:e9:7b:5d:f5:22:
dd:dc:e8:f8:59:e4:82:a3:02:26:87:ca:97:4f:db:
c3:e9:75:43:de:2b:5c:d8:dd:e9:0c:db:0b:fc:51:
4f:42:59:41:ee:be:a1:e6:24:13:54:23:63:0e:38:
f8:18:a9:d9:34:51:02:e9:ec:fa:96:08:a8:cc:e2:
dc:5a:07:50:2b:df:24:6c:b2:c6:30:98:ae:1a:4b:
99:f9:77:1f:65:ff:6f:bc:b0:66:4a:47:77:a9:bf:
39:6b:13:6b:57:3d:96:4f:c5:3d:92:21:ad:ff:12:
46:db:b8:34:e7:d8:4c:86:e6:70:09:e9:58:5d:13:
09:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:94:6D:48:DB:30:C3:9E:AE:25:7E:6E:D8:63:62:33:BC:74:AC:43
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/_JRtSNsww56uJX5u2GNiM7x0rEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.248.0/24
Signature Algorithm: sha256WithRSAEncryption
48:75:9f:8c:e2:13:eb:3f:c2:2a:e2:9b:6d:8d:39:6f:0d:64:
ce:75:64:e8:a5:3e:0c:8b:d4:ed:62:c7:00:ab:cb:b3:ce:fa:
2e:e8:ca:c6:f5:b2:d3:84:25:4b:40:e3:eb:66:18:43:d8:f1:
74:39:e3:35:6a:7b:1c:15:3a:27:fa:82:d3:5c:2a:94:9c:ab:
4f:76:3b:cc:a7:dd:f7:62:51:aa:b4:72:df:8d:52:fc:a7:b4:
b4:a4:25:b9:b4:71:86:5a:70:c9:9c:58:bb:dc:44:34:67:5a:
02:08:aa:f1:07:8d:b8:99:91:8f:4b:c2:ef:3e:6b:73:67:fc:
d3:49:da:97:83:3d:e2:38:5f:87:cb:38:76:12:f7:fd:b3:7b:
59:3c:cf:bf:8f:32:ff:ce:53:b3:f7:e4:40:a1:70:c3:28:98:
a1:f0:57:9b:88:16:f9:1a:28:7a:b1:b1:ee:ef:a0:02:b6:bf:
32:3b:ca:e6:76:f3:e5:58:90:c4:67:07:84:c0:7c:f8:c8:aa:
10:48:57:3d:a2:b0:05:fa:fd:76:5d:31:36:eb:c5:f1:9d:af:
c3:a1:20:57:e8:91:67:95:f7:d7:f7:d7:e0:10:5a:21:49:3e:
62:9e:44:57:70:21:97:e5:68:3b:c4:13:ac:74:1f:02:50:86:
3f:af:f6:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org