Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/B7wGIlMDVrnXpWh058u7qjLpx-c.roa
File: B7wGIlMDVrnXpWh058u7qjLpx-c.roa (raw, json)
Hash identifier: om1hyhccvFX3es0o72VI9BIu3272JVllY+MrcT9mlLQ=
Subject key identifier: 07:BC:06:22:53:03:56:B9:D7:A5:68:74:E7:CB:BB:AA:32:E9:C7:E7
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 0185711E4532FE2C3B9F7FF63D35542526DB
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/B7wGIlMDVrnXpWh058u7qjLpx-c.roa
Signing time: Mon 02 Jan 2023 06:14:47 +0000
ROA not before: Mon 02 Jan 2023 06:14:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200322
IP address blocks: 185.204.160.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:45:32:fe:2c:3b:9f:7f:f6:3d:35:54:25:26:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 2 06:14:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07bc0622530356b9d7a56874e7cbbbaa32e9c7e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:13:93:8e:bf:1a:89:4e:98:3d:4d:db:bc:a4:
5e:c4:4d:f7:b2:3c:5f:c1:00:0e:d7:39:4b:df:4a:
85:f6:f8:a4:39:e6:b2:d7:af:9f:0e:5f:a9:97:57:
80:0f:48:3d:96:e1:2e:61:70:a7:79:13:32:3e:62:
6e:b6:0b:3c:df:47:cb:d7:48:12:ab:40:fd:e1:3c:
ac:53:a7:51:f8:70:cc:00:83:a3:ec:75:0b:cd:f9:
e3:4f:2e:69:7e:43:82:10:c6:16:c2:04:98:0c:04:
62:09:15:7b:dc:43:99:00:fa:7b:0a:72:50:c6:0f:
15:2d:42:25:9f:e9:c5:4b:c3:d5:4c:7f:c4:77:1a:
72:e4:49:b9:91:e1:bf:27:4c:30:f3:5f:4d:8f:35:
53:4a:37:03:7b:e4:b2:03:46:ad:08:ef:3b:6e:3e:
8e:c8:51:cc:af:78:4a:ea:2d:fb:d8:00:7f:fe:e6:
6e:a3:91:df:78:e9:2d:04:7c:84:f5:5d:a1:bc:6b:
7c:7a:f8:95:a8:99:1b:81:2b:82:5c:01:83:44:1c:
2a:39:e6:7b:3b:ca:13:a3:5c:8e:2c:b0:41:c8:af:
28:b7:e3:56:6e:98:9d:92:78:99:0e:aa:dc:c1:28:
b9:78:ce:5d:ee:27:98:ff:fc:56:31:e6:31:c3:d3:
10:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:BC:06:22:53:03:56:B9:D7:A5:68:74:E7:CB:BB:AA:32:E9:C7:E7
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/B7wGIlMDVrnXpWh058u7qjLpx-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.160.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:6d:71:76:e2:02:96:45:d2:3a:4d:5d:c5:cb:57:38:e3:37:
8b:41:15:4d:6d:8f:e9:61:4a:e8:c3:e7:5c:c5:90:1e:15:58:
95:60:67:0f:0c:3e:94:8b:a0:dc:08:0f:ef:aa:ec:8a:5d:97:
72:65:bf:5e:cf:1b:72:d1:04:ab:b8:1b:6f:8c:16:7e:9b:46:
eb:98:85:db:f1:99:f5:6b:b5:32:ff:8f:b1:45:6b:68:7e:33:
29:1c:39:f6:7f:a7:c8:60:3d:41:59:c9:63:23:c8:40:60:da:
f5:a0:80:18:a1:f0:0f:94:22:66:fe:e3:04:77:9e:18:09:15:
aa:7b:a9:2b:0d:44:ac:f7:6a:19:9d:75:5e:c7:30:65:8a:3d:
f3:2e:38:4b:ec:63:1c:d2:94:4b:7f:b0:5c:81:b6:57:1d:59:
a7:5b:26:d2:e1:8b:15:26:8d:d2:71:0a:16:9e:7a:1e:f9:0b:
34:9a:0c:e2:b0:66:f7:f3:83:6c:18:06:d8:bf:d8:e4:b8:5c:
11:98:c3:37:dd:80:19:18:c4:e2:be:cb:45:a9:3d:6d:05:95:
51:39:f2:5f:0d:b8:57:41:f0:9e:84:d8:6b:a9:62:1f:98:1c:
94:5a:98:0d:0a:e1:50:c2:a8:7c:d9:8d:dc:5e:b3:ce:a5:fa:
2f:3e:a4:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:33 2024 by rpki-client on console-fra.rpki-client.org