Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/G8ytmi2dE1caOagE9quUYFnfvyY.roa
File: G8ytmi2dE1caOagE9quUYFnfvyY.roa (raw, json)
Hash identifier: yZWNBqLMwJ3pwzqmW9iwSLJRUwB7iDgY6VAx2i5Jp3M=
Subject key identifier: 1B:CC:AD:9A:2D:9D:13:57:1A:39:A8:04:F6:AB:94:60:59:DF:BF:26
Certificate issuer: /CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Certificate serial: 018CC49396B256FD8750550B9A2AB9F53AB5
Authority key identifier: 12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/G8ytmi2dE1caOagE9quUYFnfvyY.roa
Signing time: Mon 01 Jan 2024 10:30:55 +0000
ROA not before: Mon 01 Jan 2024 10:30:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 997
IP address blocks: 185.243.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 22 Apr 2024 08:40:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:96:b2:56:fd:87:50:55:0b:9a:2a:b9:f5:3a:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1220dd2b92da284c63cec46f6f6a41c013a9c881
Validity
Not Before: Jan 1 10:30:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1bccad9a2d9d13571a39a804f6ab946059dfbf26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:a6:de:87:dc:cc:48:57:d3:f6:ad:71:34:73:
c1:47:9e:75:54:2f:5b:53:40:f6:7e:41:75:50:65:
32:f8:cb:d0:f6:18:4e:00:74:09:e6:da:22:92:9c:
dc:99:60:03:2d:53:5c:d0:df:5c:1e:30:b1:16:b3:
40:71:5a:d6:af:d1:3a:34:a7:2c:27:f9:5e:8f:2c:
fa:27:9e:f6:54:66:23:63:40:8a:58:25:fa:9c:9d:
56:a3:e2:3d:63:3b:36:fc:1c:df:73:50:88:cf:0a:
12:d3:96:df:fb:96:06:3d:ca:7e:f3:c7:7e:23:24:
ae:2f:f6:c0:02:31:d1:ff:3c:1c:a5:a3:67:41:11:
78:18:8e:82:d1:d3:3d:fc:ba:a5:7c:b3:af:e6:b1:
ce:be:cf:18:bd:cb:fa:cf:a0:f3:7f:f9:98:fd:fa:
09:5b:2e:ca:3e:32:9b:4e:a0:a8:16:c2:ee:bd:de:
d8:70:29:27:5b:70:9b:c5:00:23:42:8c:1c:81:52:
b4:4c:29:c8:bc:20:bf:34:e5:d0:22:7f:d4:08:71:
2d:47:7f:8e:ee:86:65:15:a9:9d:bf:7d:59:a0:44:
5c:c0:70:0e:cd:cc:4e:d1:4a:9f:03:ad:88:61:31:
fb:2c:84:fc:3a:4a:ff:4a:aa:d8:2f:57:f4:5a:4a:
be:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:CC:AD:9A:2D:9D:13:57:1A:39:A8:04:F6:AB:94:60:59:DF:BF:26
X509v3 Authority Key Identifier:
keyid:12:20:DD:2B:92:DA:28:4C:63:CE:C4:6F:6F:6A:41:C0:13:A9:C8:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EiDdK5LaKExjzsRvb2pBwBOpyIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/G8ytmi2dE1caOagE9quUYFnfvyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/3b8f3b-ebf0-4cb7-a49b-a8585849be14/1/EiDdK5LaKExjzsRvb2pBwBOpyIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.42.0/24
Signature Algorithm: sha256WithRSAEncryption
78:0a:a2:ae:77:bd:80:9e:77:e6:5b:41:f9:bb:aa:3f:6c:ba:
c0:49:76:fd:0c:f2:1d:ae:52:3f:51:74:ad:89:d2:e5:4e:f6:
37:2e:10:44:17:c0:a7:72:7d:d4:43:bb:46:00:d1:29:af:3f:
db:2c:9d:6b:82:c6:6d:ad:72:91:25:7d:ce:bc:f2:6b:13:0d:
56:f4:f8:7d:39:a9:d5:ec:09:c8:c4:97:57:02:29:38:c3:f7:
0e:09:96:22:77:4a:09:94:f2:96:28:c0:06:07:5b:87:e8:3e:
ca:61:87:c0:ea:41:64:88:51:25:e2:7d:1e:81:60:b5:1a:07:
9b:d2:05:10:cd:60:d4:6f:7a:31:85:d7:2c:a6:fe:c3:4c:0f:
c2:1d:6b:8e:92:7d:0f:f5:83:55:22:8b:98:f6:42:8d:fe:96:
0e:b3:78:e8:51:67:0d:d3:c4:f4:f4:bb:ac:f0:23:68:f9:1f:
44:64:82:8d:37:1d:49:fd:e1:3b:44:b8:74:fc:91:60:37:1e:
b5:84:bf:98:ae:b0:64:62:73:00:b1:88:92:a1:c1:b2:20:18:
fe:d8:45:98:0d:4b:88:c9:c6:78:df:61:c6:31:80:f0:2a:a2:
d0:e4:60:92:95:1c:32:97:ec:c1:a7:a3:23:7e:f2:04:74:63:
29:62:77:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org