Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/jCqWdrjHKOF6jb12HGMnldwApgU.roa
File: jCqWdrjHKOF6jb12HGMnldwApgU.roa (raw, json)
Hash identifier: MluEbqMh5JZejPAjjGYQHxHEdFJD2eB3Ya4LGVtOP34=
Subject key identifier: 8C:2A:96:76:B8:C7:28:E1:7A:8D:BD:76:1C:63:27:95:DC:00:A6:05
Certificate issuer: /CN=17511fe8f054c639663529938aebeda4d3ef8068
Certificate serial: 018572713045FF287D5C1233C5F02D022D23
Authority key identifier: 17:51:1F:E8:F0:54:C6:39:66:35:29:93:8A:EB:ED:A4:D3:EF:80:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1Ef6PBUxjlmNSmTiuvtpNPvgGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/jCqWdrjHKOF6jb12HGMnldwApgU.roa
Signing time: Mon 02 Jan 2023 12:24:58 +0000
ROA not before: Mon 02 Jan 2023 12:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210984
IP address blocks: 185.159.110.0/24 maxlen: 24
2a0d:b700::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:30:45:ff:28:7d:5c:12:33:c5:f0:2d:02:2d:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17511fe8f054c639663529938aebeda4d3ef8068
Validity
Not Before: Jan 2 12:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c2a9676b8c728e17a8dbd761c632795dc00a605
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:69:c1:17:e3:ae:89:60:27:a6:13:e3:31:77:
e5:c5:e1:a2:a3:cc:b5:72:c5:79:5b:8b:11:3b:06:
6c:5c:a0:d2:e8:16:e6:5d:db:fc:34:e8:f0:8b:f8:
47:58:2e:a4:d4:4b:e9:1d:f2:02:fe:11:2e:f6:a7:
86:62:3f:5b:db:5c:31:8d:ab:91:45:39:04:1d:a3:
3d:3e:41:ba:f0:2d:22:3f:6e:cb:23:78:11:1e:ff:
e1:6c:e7:e0:2f:f7:cb:28:be:aa:7f:aa:11:8a:af:
a2:c2:03:f8:56:9d:c6:c1:49:ac:ac:76:ad:47:b5:
5b:b8:18:14:3a:67:64:05:0b:b5:ef:58:dc:30:9c:
4e:12:0e:bb:6e:ae:3c:cc:a4:4c:9a:d5:77:d8:ba:
db:ab:cc:6b:69:40:a5:52:42:db:24:77:dc:5e:6b:
db:89:bd:89:c4:e8:2e:d2:1c:72:8d:ca:c7:cf:07:
77:09:bb:ee:90:d4:33:72:7d:bc:3a:10:85:06:3e:
87:77:f5:96:32:e5:46:8c:ad:fa:2d:35:ca:1b:58:
4e:0f:90:8c:d3:b0:17:c9:74:07:50:3e:52:06:9d:
e5:1f:a9:4a:3e:bf:65:60:21:d3:3b:da:2a:a9:c9:
9b:f8:67:cc:58:6b:41:aa:ed:a8:b1:95:e8:89:ba:
c3:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:2A:96:76:B8:C7:28:E1:7A:8D:BD:76:1C:63:27:95:DC:00:A6:05
X509v3 Authority Key Identifier:
keyid:17:51:1F:E8:F0:54:C6:39:66:35:29:93:8A:EB:ED:A4:D3:EF:80:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1Ef6PBUxjlmNSmTiuvtpNPvgGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/jCqWdrjHKOF6jb12HGMnldwApgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/de2896-ef1b-4a3c-82c4-889ab1a0a47f/1/F1Ef6PBUxjlmNSmTiuvtpNPvgGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.110.0/24
IPv6:
2a0d:b700::/48
Signature Algorithm: sha256WithRSAEncryption
b1:f8:18:0a:7e:cf:be:12:7b:a3:5d:1e:1c:20:ee:e2:80:a5:
8f:6c:c3:79:7e:2e:f5:2f:d4:22:27:ca:db:8c:c5:c7:cc:81:
f5:09:de:89:05:18:45:59:12:9d:8e:18:11:2a:7b:cc:40:a0:
72:a6:da:5d:8e:4a:c7:02:6e:42:34:2e:75:4d:f7:d6:5b:e2:
f4:6d:91:cc:cd:ab:10:00:cc:fa:89:b9:03:c7:a3:89:18:b1:
3b:84:da:6c:02:65:8a:68:81:07:5b:cd:a6:17:36:0d:d4:91:
4c:29:b2:e3:8c:e7:67:39:d5:36:88:81:26:34:db:52:6a:e3:
c0:67:69:d8:c9:a2:d8:ed:29:d0:03:ac:6b:ff:cf:bd:dc:18:
ef:61:fd:8c:18:7f:9e:08:5f:fd:f3:a6:76:a2:8a:ac:5b:46:
e6:be:0d:1a:a3:d3:63:da:cd:9d:4d:93:4c:08:51:a3:d6:d6:
c5:f0:53:32:66:e7:16:66:9a:a0:b0:b2:f1:83:c9:d6:f8:e2:
83:8b:2f:32:13:f2:a7:2f:21:2b:29:15:c9:eb:56:eb:07:c4:
0d:c1:40:a9:3a:48:5d:37:7e:83:4b:b4:e6:1c:65:cd:ed:4f:
44:a7:25:f4:9b:6d:d5:ab:7d:9b:99:87:6c:01:d1:00:d1:35:
a3:47:c5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:21 2024 by rpki-client on console-fra.rpki-client.org