Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/m2RmIRDXndhywbZKHRouAEM_FV8.roa
File: m2RmIRDXndhywbZKHRouAEM_FV8.roa (raw, json)
Hash identifier: p1+liuzwiEh7ejz8dOG6J25sP1+0WXD152xTD126rls=
Subject key identifier: 9B:64:66:21:10:D7:9D:D8:72:C1:B6:4A:1D:1A:2E:00:43:3F:15:5F
Certificate issuer: /CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Certificate serial: 018571155D78479B46C96393407C6F9F6914
Authority key identifier: 1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/m2RmIRDXndhywbZKHRouAEM_FV8.roa
Signing time: Mon 02 Jan 2023 06:05:03 +0000
ROA not before: Mon 02 Jan 2023 06:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205738
IP address blocks: 85.219.216.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:5d:78:47:9b:46:c9:63:93:40:7c:6f:9f:69:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1aca63df248b7adf3ddd07e8c2d3eedd02cef933
Validity
Not Before: Jan 2 06:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b64662110d79dd872c1b64a1d1a2e00433f155f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:d6:b7:d8:18:08:66:51:60:45:55:3c:76:6c:
11:aa:d2:cb:ff:ea:de:bf:fc:9e:19:28:a2:b4:20:
7b:97:48:fa:3e:8e:57:b2:2b:95:84:2b:6a:fe:31:
af:10:ae:7e:34:bb:14:4d:ca:01:f1:de:58:67:e4:
e6:f7:a4:28:a8:f0:b8:a0:59:1e:7c:86:39:cf:e6:
e6:9d:d7:b3:8f:b2:7b:ee:8e:90:6f:0a:d3:75:a0:
b7:bf:67:86:73:2a:46:be:b2:a5:44:78:d1:55:5c:
b0:b8:76:c4:e6:ae:7b:44:c9:69:6a:95:24:73:2b:
07:75:18:22:a5:49:13:63:0a:3d:95:fa:64:a3:b3:
98:c5:2e:07:79:bf:54:29:fe:a9:82:69:fd:15:31:
92:2d:15:22:79:23:56:87:bc:b8:19:73:7a:52:06:
85:15:8a:93:6a:2e:8b:b1:63:d8:05:1c:28:d8:bd:
aa:9b:1c:bb:82:e3:1c:4b:35:51:fa:dc:df:8d:9c:
b9:8a:53:09:74:cb:d8:18:3b:fb:f9:92:e4:4c:b3:
03:7e:85:12:90:60:b0:ca:29:83:b7:5c:e3:9f:2b:
6f:f7:1f:a6:0e:c0:ae:72:a0:39:85:e5:31:ca:ee:
94:34:a4:b3:17:1d:2d:cb:e7:1a:e4:8a:61:04:bb:
27:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:64:66:21:10:D7:9D:D8:72:C1:B6:4A:1D:1A:2E:00:43:3F:15:5F
X509v3 Authority Key Identifier:
keyid:1A:CA:63:DF:24:8B:7A:DF:3D:DD:07:E8:C2:D3:EE:DD:02:CE:F9:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gspj3ySLet893QfowtPu3QLO-TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/m2RmIRDXndhywbZKHRouAEM_FV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/1f6458-dc75-4add-ae72-91e3184bb0ab/1/Gspj3ySLet893QfowtPu3QLO-TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.219.216.0/24
Signature Algorithm: sha256WithRSAEncryption
06:bb:3b:5d:05:4d:9e:46:c5:09:44:ee:2b:9f:c4:2c:ff:0d:
d4:13:8d:34:51:73:5e:40:43:c3:ff:d5:18:0a:1e:90:e2:cb:
bc:30:2d:73:30:04:5b:22:a1:f9:07:74:19:f4:e6:86:e8:d4:
ae:dc:3d:40:c2:d9:61:12:1a:d2:28:95:62:a3:bb:4a:66:36:
49:c6:d9:6e:e4:2d:64:11:ce:00:0b:82:40:c1:ca:b6:bb:a0:
4a:8a:b7:43:ec:4c:0c:ad:a8:3c:2f:1a:5f:a7:b9:47:3e:d8:
71:af:52:15:87:50:a7:5c:57:93:cc:8f:d7:2d:05:8f:aa:92:
92:ec:48:b7:d3:2c:93:08:12:b0:6b:7d:d1:00:49:ae:06:5d:
95:01:b3:27:d5:84:eb:a8:66:51:ef:98:a0:97:c5:1b:87:1b:
3c:6b:fe:de:7d:84:45:51:a8:27:e4:11:6a:d6:4b:c8:1d:15:
45:13:ef:fd:5f:ee:22:55:b7:b5:98:11:de:8e:01:80:09:23:
5c:19:56:14:80:7b:2d:e1:51:6a:61:37:12:8b:cb:33:00:e3:
45:76:73:c6:5e:45:15:51:1d:8e:db:d8:cb:90:ef:41:b8:0c:
2f:6b:e2:fa:05:85:50:3d:7e:03:8b:12:3a:d4:6a:65:66:f1:
01:7e:7d:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:41:22 2024 by rpki-client on console-ams.rpki-client.org