Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/i2fHZrMzBT8snQRNkc0Obu4-fV0.roa
File: i2fHZrMzBT8snQRNkc0Obu4-fV0.roa (raw, json)
Hash identifier: T8WDGc+M8A9VjgDcwNPhnBCt8EZUF2Nhr+04h5N8FBI=
Subject key identifier: 8B:67:C7:66:B3:33:05:3F:2C:9D:04:4D:91:CD:0E:6E:EE:3E:7D:5D
Certificate issuer: /CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Certificate serial: 01856D0AF5C86B11989C5B2FEE77087A691B
Authority key identifier: 38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/i2fHZrMzBT8snQRNkc0Obu4-fV0.roa
Signing time: Sun 01 Jan 2023 11:15:12 +0000
ROA not before: Sun 01 Jan 2023 11:15:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207184
IP address blocks: 85.143.250.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:0a:f5:c8:6b:11:98:9c:5b:2f:ee:77:08:7a:69:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b22023b6ead4c29683a9fed4493d03dee2c685
Validity
Not Before: Jan 1 11:15:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b67c766b333053f2c9d044d91cd0e6eee3e7d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:e0:82:01:5f:01:cf:44:7e:e5:16:c4:36:43:
aa:3f:ea:59:a8:10:d1:d4:7b:de:b8:bc:a8:f6:6f:
3c:b1:66:08:d5:69:be:eb:70:57:6e:7f:a8:ee:5c:
f8:14:c7:eb:af:bf:51:97:ef:46:db:de:ad:43:91:
92:26:46:8e:67:29:40:01:3a:98:73:57:8f:a2:c1:
d6:e4:e1:ba:40:df:56:37:ef:45:20:65:a5:d0:e1:
bc:f2:47:d5:1d:2b:6e:05:21:37:67:58:5c:56:1a:
21:59:7a:aa:2b:9c:a8:bd:71:c1:f8:c4:14:34:11:
9f:c9:33:70:1c:d8:92:34:b5:20:db:e2:b9:ca:cc:
d2:f1:0e:3a:66:ea:ce:86:6d:4e:29:ea:0b:cb:8e:
2d:2d:a0:35:a4:a5:a6:b6:0e:15:a7:46:35:5a:b9:
b2:95:ad:90:e5:2b:48:1d:a7:88:ca:4c:97:11:af:
2c:16:c1:7a:6e:85:3e:f2:86:3e:43:6c:50:38:3e:
34:fc:bb:50:30:62:84:8f:a8:c6:45:e0:f3:cb:55:
41:eb:38:ad:0d:f2:6b:9b:75:fb:b3:04:9a:c0:cd:
26:a0:22:02:9a:28:54:81:4f:e6:81:14:7e:57:76:
46:ce:31:5c:c5:13:f9:31:c3:33:98:05:72:b2:5c:
be:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:67:C7:66:B3:33:05:3F:2C:9D:04:4D:91:CD:0E:6E:EE:3E:7D:5D
X509v3 Authority Key Identifier:
keyid:38:B2:20:23:B6:EA:D4:C2:96:83:A9:FE:D4:49:3D:03:DE:E2:C6:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLIgI7bq1MKWg6n-1Ek9A97ixoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/i2fHZrMzBT8snQRNkc0Obu4-fV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/8813f5-4e7b-4d51-b5f3-40d95bd33fcb/1/OLIgI7bq1MKWg6n-1Ek9A97ixoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.143.250.0/24
Signature Algorithm: sha256WithRSAEncryption
18:af:19:09:23:06:a8:ec:8d:47:da:b0:53:55:5f:04:f4:00:
2b:a6:a9:dc:93:ff:ba:bb:a8:ed:fd:d2:31:58:59:e6:e7:39:
12:e1:0e:08:6d:0b:b4:21:5a:4b:0f:67:04:77:5e:8b:4a:d0:
75:26:33:4f:9e:8a:cb:d5:fa:99:b3:5f:ab:d2:ee:8d:8b:9d:
0c:84:3d:3b:69:87:8d:0b:52:a5:5d:af:bd:6f:76:eb:5c:1f:
86:56:38:49:d2:23:1a:9d:dc:6a:1a:84:c2:62:1b:0b:43:32:
d5:37:0a:3a:8b:57:c9:ed:7c:08:9c:6b:65:69:67:6f:79:7d:
00:ad:c2:1f:20:3f:ae:47:94:27:10:58:e3:22:c1:e0:80:d8:
54:ad:37:10:90:4d:6f:e8:2f:b2:d0:dc:80:32:dd:e7:46:cb:
5d:bc:d6:44:9a:a8:60:a7:41:37:52:ad:c7:01:6b:33:63:05:
70:34:9a:3f:2a:9f:b5:00:f1:83:f1:bb:00:ed:f4:cd:14:26:
e7:1d:85:89:16:22:79:0b:dd:6b:47:f5:5e:b8:c1:5b:46:b7:
f5:07:93:40:a3:f0:92:03:e9:84:1b:2f:ca:5a:10:56:cd:50:
f5:ce:e7:a0:ae:dc:ef:9f:a9:91:ef:25:70:28:61:96:6b:8f:
ff:39:a6:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:01 2024 by rpki-client on console-ams.rpki-client.org