Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/8WtBCQG79B2Ql9y3Yuw4AwR-5Gg.roa
File: 8WtBCQG79B2Ql9y3Yuw4AwR-5Gg.roa (raw, json)
Hash identifier: WozZJVNczTyPjdluO19IS5haQMSFyyT3kYqJ3PtUIpM=
Subject key identifier: F1:6B:41:09:01:BB:F4:1D:90:97:DC:B7:62:EC:38:03:04:7E:E4:68
Certificate issuer: /CN=d78a4914d96009b6822d168a0ed53e936d3a41f8
Certificate serial: 01856FE71820ABCF3302BC646ACF9884D738
Authority key identifier: D7:8A:49:14:D9:60:09:B6:82:2D:16:8A:0E:D5:3E:93:6D:3A:41:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14pJFNlgCbaCLRaKDtU-k206Qfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/8WtBCQG79B2Ql9y3Yuw4AwR-5Gg.roa
Signing time: Mon 02 Jan 2023 00:34:54 +0000
ROA not before: Mon 02 Jan 2023 00:34:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206575
IP address blocks: 185.98.12.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:18:20:ab:cf:33:02:bc:64:6a:cf:98:84:d7:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d78a4914d96009b6822d168a0ed53e936d3a41f8
Validity
Not Before: Jan 2 00:34:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f16b410901bbf41d9097dcb762ec3803047ee468
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:68:7a:69:43:d8:20:ef:6c:3c:a6:58:4b:f0:
0e:88:69:6c:e5:9b:32:32:36:1b:68:9c:08:a7:3d:
72:df:87:37:c8:7b:00:0f:c0:15:4d:78:f4:71:0e:
e5:f8:c1:1c:0f:53:19:21:18:28:ce:2e:fb:3b:c2:
1a:98:1f:55:95:39:86:cb:16:74:78:f7:11:d3:af:
19:cf:ae:e1:3b:fa:f9:90:f4:6e:95:86:03:94:e0:
42:58:31:bd:5b:c4:d4:3d:a5:84:4e:f7:30:0a:de:
d1:e6:cb:48:34:9e:33:fe:9c:ad:32:7a:6b:76:1a:
70:05:55:e8:61:85:54:42:18:35:7d:b3:70:de:5b:
1c:b8:47:b6:b9:b5:4c:dc:14:7b:f7:d8:b6:ee:0e:
7e:09:46:af:b2:03:84:31:49:6e:a8:1b:2a:bc:4a:
bd:cf:37:f3:4a:2f:8d:cd:17:52:ac:13:56:4e:48:
e2:50:f2:cb:79:88:7f:4b:49:aa:c1:3c:8f:e6:2a:
38:00:0d:db:62:42:d8:cc:8f:ec:82:c9:61:64:69:
a5:68:3c:5a:71:66:77:b0:6e:e0:f8:5a:0e:18:d0:
02:4b:af:27:73:f8:b4:7f:f5:05:86:76:eb:e9:04:
29:a0:d1:04:60:db:c7:99:52:3d:97:41:28:16:8a:
73:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6B:41:09:01:BB:F4:1D:90:97:DC:B7:62:EC:38:03:04:7E:E4:68
X509v3 Authority Key Identifier:
keyid:D7:8A:49:14:D9:60:09:B6:82:2D:16:8A:0E:D5:3E:93:6D:3A:41:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14pJFNlgCbaCLRaKDtU-k206Qfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/8WtBCQG79B2Ql9y3Yuw4AwR-5Gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/7cf43d-8c85-4817-bd75-230fda66abcb/1/14pJFNlgCbaCLRaKDtU-k206Qfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.98.12.0/23
Signature Algorithm: sha256WithRSAEncryption
67:f3:f8:a0:66:c3:05:0a:b4:fa:28:28:9f:2b:1e:db:87:0a:
76:ad:96:44:03:9d:fc:30:16:45:30:aa:0a:14:72:8d:02:7c:
b5:34:8d:85:05:b3:8f:b6:3b:78:58:00:79:91:ed:59:a2:9a:
78:33:a3:0d:3a:88:6a:0b:28:fa:72:95:0b:1c:dd:a5:44:47:
ca:20:81:9d:e1:20:fd:cd:b7:dc:43:fb:96:f9:c7:b9:5c:98:
b0:49:48:db:6e:94:37:ca:43:69:2f:ab:60:ee:f8:cd:5e:9e:
2e:e3:24:ae:46:9f:f9:fd:e5:b3:5f:14:75:cc:e3:2b:50:32:
02:5d:2f:74:30:97:16:07:8f:b7:62:18:81:db:6c:be:07:53:
55:1e:4e:11:82:e9:44:7c:1f:78:a5:a0:58:2e:b7:15:c9:db:
ed:9b:34:a4:64:7d:6c:e9:f4:36:fe:a6:41:a9:f8:61:90:47:
ff:5f:9f:67:3a:52:3b:cb:77:b5:d7:c6:81:d4:c7:b6:1e:db:
11:4c:b9:30:3c:65:23:b1:c3:03:b2:95:b7:53:53:a4:62:b1:
19:63:8f:32:af:2a:b4:14:a0:ac:38:ee:49:2e:4d:92:68:34:
b8:a3:0d:16:2d:55:8a:8a:de:23:1b:14:f9:62:6a:67:fc:65:
04:ea:ff:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:26 2024 by rpki-client on console-fra.rpki-client.org