Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/9KgRpXYBkr3SV56AWPTWF0hbAP8.roa
File: 9KgRpXYBkr3SV56AWPTWF0hbAP8.roa (raw, json)
Hash identifier: W/repzP0Hq/8r7/ByDhzlIR/xyCDjxalJSoT1c6FOyY=
Subject key identifier: F4:A8:11:A5:76:01:92:BD:D2:57:9E:80:58:F4:D6:17:48:5B:00:FF
Certificate issuer: /CN=22f344a63dcb70e89057deb8e2761dc45165881a
Certificate serial: 018659E56A6196CC60812935EBAEA12F565D
Authority key identifier: 22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/9KgRpXYBkr3SV56AWPTWF0hbAP8.roa
Signing time: Thu 16 Feb 2023 11:04:12 +0000
ROA not before: Thu 16 Feb 2023 11:04:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 38337
IP address blocks: 85.28.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:59:e5:6a:61:96:cc:60:81:29:35:eb:ae:a1:2f:56:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22f344a63dcb70e89057deb8e2761dc45165881a
Validity
Not Before: Feb 16 11:04:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f4a811a5760192bdd2579e8058f4d617485b00ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:9f:4b:2a:f1:b7:79:d5:88:69:dd:2a:83:e4:
47:cc:63:72:f8:3e:32:9d:9d:5d:a3:42:cf:ac:3e:
ee:7f:e7:6a:7a:98:dd:67:8a:33:cf:f1:66:7c:02:
02:c4:ae:66:ed:0b:c2:bb:72:12:5e:ac:6d:2a:2b:
17:2a:78:a1:a0:7c:e5:6d:4a:98:2b:b3:31:17:f1:
a6:62:6d:53:1b:81:cb:56:e8:06:75:84:6d:a4:27:
06:58:17:47:b1:6e:8f:07:71:cd:52:4a:94:bb:b1:
a4:8a:8d:8f:42:8c:99:e2:d5:b6:51:ea:57:06:25:
ca:f5:cd:34:a9:b3:20:35:c4:f6:f5:d4:64:20:f4:
1a:3a:7c:c6:be:e7:5b:d9:af:12:c8:22:e4:54:ac:
3b:d9:f6:a5:84:09:bf:64:9d:65:8b:c8:e6:29:1b:
cd:06:d5:33:e1:0b:af:88:6a:c8:ff:ad:41:cd:de:
cd:b1:0c:14:05:a1:a4:55:43:a2:1d:47:09:cb:0f:
74:51:30:77:4b:9e:6b:09:33:e2:1c:a7:e9:06:0b:
41:fe:0c:f6:4f:13:e9:95:48:e4:c3:b6:cd:ec:d0:
7e:62:c8:ef:2a:e9:71:ac:d7:94:11:2e:d0:b2:50:
89:2d:83:01:81:ae:1e:17:dc:6a:b4:ae:98:37:d5:
26:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:A8:11:A5:76:01:92:BD:D2:57:9E:80:58:F4:D6:17:48:5B:00:FF
X509v3 Authority Key Identifier:
keyid:22:F3:44:A6:3D:CB:70:E8:90:57:DE:B8:E2:76:1D:C4:51:65:88:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IvNEpj3LcOiQV9644nYdxFFliBo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/9KgRpXYBkr3SV56AWPTWF0hbAP8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/5360e7-f02a-4737-99c7-febb64b5e164/1/IvNEpj3LcOiQV9644nYdxFFliBo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.28.60.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:0c:d9:08:bd:b0:64:0f:b5:61:b8:b3:ca:c7:c0:39:e7:97:
aa:7c:bf:1f:80:26:c5:11:67:86:4a:aa:0f:ca:cf:6b:38:0e:
94:56:d2:4d:e6:56:f9:a7:31:d3:4d:45:c8:d0:50:24:19:22:
15:f3:e4:fd:92:fd:61:27:2b:62:e8:02:69:a9:7d:3e:0d:e5:
c3:c6:27:6a:a0:71:de:ee:94:03:ec:73:b2:d7:74:74:12:93:
ab:10:e4:68:b3:b7:aa:1d:32:6c:8c:d1:8c:e4:8b:35:7f:43:
06:32:9a:ea:be:98:ca:2d:74:cc:dd:21:f4:55:b6:32:7c:8f:
ec:a6:51:29:ea:99:35:e0:e3:e2:2f:50:4e:a8:9d:8d:5c:27:
5c:1f:e3:cc:e6:d9:01:1c:de:5a:37:b8:a9:ef:e3:44:e2:b8:
a3:2a:ed:c9:be:fc:40:7b:1c:79:a3:f0:22:e0:51:c0:40:0a:
e7:dd:af:8e:a5:f3:e0:4d:66:d0:85:7b:ec:29:1a:d1:0c:20:
9c:80:e0:a1:48:93:cb:59:33:94:dd:f7:de:06:c6:8b:6b:01:
d7:12:9d:ac:2f:ec:5c:c2:0b:06:0c:f5:90:72:76:bd:23:21:
5f:a7:92:e2:4b:85:4f:25:c7:03:16:af:c6:e0:d3:5a:eb:66:
26:21:1e:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:32 2023 by rpki-client on console-ams.rpki-client.org