Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/87aHq_b0Rn5Z3UU0OuSgAxs4Lc0.roa
File: 87aHq_b0Rn5Z3UU0OuSgAxs4Lc0.roa (raw, json)
Hash identifier: PzyW46HQN/++qezApYs5vc/aVeeX1Us4RFEN2vTsTsE=
Subject key identifier: F3:B6:87:AB:F6:F4:46:7E:59:DD:45:34:3A:E4:A0:03:1B:38:2D:CD
Certificate issuer: /CN=3092b117062f6065faa1cdfd38915e4bb9c924bb
Certificate serial: 01856FB112DD78A4867E96AC840054966E8D
Authority key identifier: 30:92:B1:17:06:2F:60:65:FA:A1:CD:FD:38:91:5E:4B:B9:C9:24:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MJKxFwYvYGX6oc39OJFeS7nJJLs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/87aHq_b0Rn5Z3UU0OuSgAxs4Lc0.roa
Signing time: Sun 01 Jan 2023 23:35:53 +0000
ROA not before: Sun 01 Jan 2023 23:35:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203745
IP address blocks: 185.121.140.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 20 Jan 2023 09:24:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:12:dd:78:a4:86:7e:96:ac:84:00:54:96:6e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3092b117062f6065faa1cdfd38915e4bb9c924bb
Validity
Not Before: Jan 1 23:35:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3b687abf6f4467e59dd45343ae4a0031b382dcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:24:f1:66:82:85:1e:eb:10:42:43:15:cd:69:
d4:c5:0a:a5:65:20:99:19:c5:47:b3:d7:ad:97:a5:
1e:81:39:b8:8b:b2:39:bc:d0:38:cf:36:b2:f6:9c:
a8:95:b4:d6:16:1e:87:1e:8e:f0:cb:9a:4e:6f:67:
d6:1a:b8:2c:1c:26:aa:ab:41:6e:ec:b7:47:4a:20:
70:b9:bf:9e:81:35:df:e5:b1:29:b5:78:4d:92:18:
f5:0e:db:89:18:bd:ea:50:bc:c1:a1:c1:b7:6f:f7:
ae:ec:73:21:05:a0:43:c5:91:9e:41:7c:0c:b1:fa:
ec:2b:73:51:0a:93:5c:72:f9:99:53:a8:63:0b:1c:
de:ff:b1:4b:f1:24:da:34:2f:e3:ac:83:74:71:98:
b1:45:7c:ed:2a:e6:30:a9:66:4c:cf:02:f7:35:03:
93:de:1f:29:9e:e2:50:24:d2:2e:58:d1:3b:27:98:
ca:b4:40:39:be:28:a8:1e:59:9d:27:e3:47:b2:72:
0b:1c:76:92:13:e4:75:c0:e3:0e:9f:24:4f:2c:8f:
4d:83:3b:18:81:5a:b6:a9:79:71:3b:fd:ec:07:26:
aa:4b:ba:f8:3b:f2:26:a0:ec:5a:a9:06:d0:1d:6b:
9c:b7:d6:c5:41:dc:03:f8:c0:8b:fa:73:e8:43:c0:
43:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:B6:87:AB:F6:F4:46:7E:59:DD:45:34:3A:E4:A0:03:1B:38:2D:CD
X509v3 Authority Key Identifier:
keyid:30:92:B1:17:06:2F:60:65:FA:A1:CD:FD:38:91:5E:4B:B9:C9:24:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MJKxFwYvYGX6oc39OJFeS7nJJLs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/87aHq_b0Rn5Z3UU0OuSgAxs4Lc0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e74b81-5ff7-4823-9267-0d3e662b0ee0/1/MJKxFwYvYGX6oc39OJFeS7nJJLs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.140.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:af:d2:b8:7b:7b:f0:df:de:44:44:63:02:24:33:38:3a:21:
78:c5:6a:a6:3e:f5:c3:da:03:fd:52:7d:89:3d:a4:48:da:74:
d5:31:bd:3f:a6:df:94:83:5b:01:18:fb:58:9a:40:1a:44:5b:
94:2c:f4:96:09:7e:78:9c:f1:67:c3:08:4c:49:26:8c:52:89:
e9:2b:bc:0a:4c:c6:85:d8:6f:91:6c:3a:53:97:85:a4:18:28:
b7:7f:54:e5:b4:90:7a:c1:4c:f9:cb:f7:ac:99:02:53:2b:00:
48:de:26:fc:30:dc:30:6e:e1:55:34:5f:64:db:80:60:17:36:
40:de:d3:2e:d4:2a:ef:ac:38:72:41:33:17:aa:41:ed:6e:a6:
18:bb:f5:62:3a:48:ee:2b:a3:a6:14:fa:63:58:9a:bd:51:6c:
dd:db:e6:e2:de:4e:e3:f4:37:7c:a2:91:47:2e:41:91:c5:50:
bb:14:11:aa:22:8b:68:1c:9b:b6:af:7b:b1:f8:89:95:c9:eb:
0a:d9:f9:c1:bb:d7:3c:89:1d:ce:2c:52:0d:bd:c9:72:4c:f6:
46:c4:07:4c:ca:1d:ab:4a:5d:64:cc:c6:33:d5:89:4c:f0:9a:
04:95:7b:10:8f:0e:61:fc:a5:47:29:8e:a9:02:34:97:ce:d0:
0c:f6:65:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:25 2024 by rpki-client on console-ams.rpki-client.org