Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/nS9VCxok55KJjpVrypaEGfzGgVA.roa
File: nS9VCxok55KJjpVrypaEGfzGgVA.roa (raw, json)
Hash identifier: 3pTV9t3l2PVUK3FV38FgvFUJDbnSI4qSyXPQjrh8Nb0=
Subject key identifier: 9D:2F:55:0B:1A:24:E7:92:89:8E:95:6B:CA:96:84:19:FC:C6:81:50
Certificate issuer: /CN=c8c2c7314593042cf74210f7f03be7106c224f89
Certificate serial: 01856C65FF310B834F51A404A45B6179FDFD
Authority key identifier: C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/nS9VCxok55KJjpVrypaEGfzGgVA.roa
Signing time: Sun 01 Jan 2023 08:15:01 +0000
ROA not before: Sun 01 Jan 2023 08:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208972
IP address blocks: 185.233.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:ff:31:0b:83:4f:51:a4:04:a4:5b:61:79:fd:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8c2c7314593042cf74210f7f03be7106c224f89
Validity
Not Before: Jan 1 08:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9d2f550b1a24e792898e956bca968419fcc68150
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d3:cd:9d:c0:aa:f1:46:b3:7d:e7:89:4a:1b:
c4:ea:1d:20:44:a1:7d:20:33:e9:49:6a:f6:69:34:
1b:60:f1:13:b5:4a:df:ba:67:89:18:47:6a:11:fe:
fe:ba:2e:34:e8:3e:c7:9c:51:3a:bd:4f:08:96:e8:
9b:56:d0:82:55:27:88:a9:aa:b0:23:d1:b5:6e:85:
07:ec:d0:73:35:8d:72:ba:e2:b2:89:22:f3:1e:5c:
55:af:6e:d1:12:6a:a3:5e:b3:a4:41:5c:d1:c0:31:
21:a1:32:3f:69:7e:3e:27:63:99:d8:97:03:65:58:
66:7c:f0:c9:ea:3a:69:bc:6b:ae:59:36:eb:58:80:
d5:e3:e4:2a:b2:4b:b8:dd:a3:d8:ae:6e:59:00:4d:
a3:25:ed:44:2d:b1:72:43:9e:29:e2:f9:3a:8c:71:
e3:69:9d:c9:12:17:9a:4e:37:27:95:87:48:7d:93:
a2:42:f2:11:6f:c3:5c:74:fb:4a:5c:ba:00:5f:ef:
1e:11:9b:9d:64:3e:b8:2b:26:ea:44:cd:3a:39:d2:
99:56:a4:aa:39:02:36:3a:38:15:83:74:34:97:8a:
8f:5e:65:c9:58:ca:ae:0a:bf:56:11:b9:22:12:22:
da:b6:ad:a1:47:6b:7a:cc:13:c2:87:ca:fd:d8:bd:
d1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:2F:55:0B:1A:24:E7:92:89:8E:95:6B:CA:96:84:19:FC:C6:81:50
X509v3 Authority Key Identifier:
keyid:C8:C2:C7:31:45:93:04:2C:F7:42:10:F7:F0:3B:E7:10:6C:22:4F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yMLHMUWTBCz3QhD38DvnEGwiT4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/nS9VCxok55KJjpVrypaEGfzGgVA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b2dbe0-04c5-41ba-ac62-3a53d0ef8b5a/1/yMLHMUWTBCz3QhD38DvnEGwiT4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:02:c7:b8:2a:e7:1e:cd:6d:c0:2f:3a:8e:3e:b3:af:02:ba:
ec:e1:ef:3c:f6:ee:f5:af:41:32:38:8c:ad:5f:71:45:d7:78:
0d:18:7b:7f:e4:ca:fd:04:0a:e5:9e:d0:87:74:82:f2:db:38:
90:f6:9e:c2:cc:d1:3c:bd:c1:c9:6e:ca:20:3c:db:eb:72:33:
a0:83:9c:db:1d:44:69:f6:9b:f3:a9:20:c6:11:cf:e1:1a:15:
61:37:d0:b7:f9:ec:4a:d8:d2:b8:e3:83:90:4e:b8:62:fd:31:
5b:1e:5b:0d:03:e1:fe:07:39:75:61:c8:2c:4d:cf:ed:6e:a3:
e5:98:6f:90:df:52:6e:30:43:b4:3a:03:df:6e:08:1f:2d:20:
26:71:0e:3a:fc:de:67:61:4f:f8:18:93:64:d0:fd:45:af:cb:
a2:e8:41:09:ba:f6:f4:20:48:63:59:98:c1:95:18:35:88:e4:
fa:ab:73:88:74:62:c1:d1:76:f2:76:06:8c:58:3f:06:ba:b7:
52:ea:b7:94:55:3d:9f:aa:88:3b:6f:b3:9f:71:f6:48:cf:d9:
68:2e:fe:0e:50:1d:bc:19:38:21:42:bf:b4:2d:96:4b:72:55:
d5:40:5e:cf:ec:55:08:17:53:ee:aa:2b:f7:f9:c1:44:94:87:
5a:ca:4f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:15 2024 by rpki-client on console-fra.rpki-client.org