Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Y29sEK9sTqbqQ54p5Ee6dzyiAvg.roa
File: Y29sEK9sTqbqQ54p5Ee6dzyiAvg.roa (raw, json)
Hash identifier: fAM53oJJCuZ77iaQ8gLI5ekRSS9Z/adXf4NQmT1hrOI=
Subject key identifier: 63:6F:6C:10:AF:6C:4E:A6:EA:43:9E:29:E4:47:BA:77:3C:A2:02:F8
Certificate issuer: /CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Certificate serial: 018C3197CF2C59A8A9563B48333D2826130C
Authority key identifier: DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Y29sEK9sTqbqQ54p5Ee6dzyiAvg.roa
Signing time: Sun 03 Dec 2023 21:31:21 +0000
ROA not before: Sun 03 Dec 2023 21:31:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.255.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:31:97:cf:2c:59:a8:a9:56:3b:48:33:3d:28:26:13:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff24726df3e77f6f4c8e0436613b35110eeaf38
Validity
Not Before: Dec 3 21:31:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=636f6c10af6c4ea6ea439e29e447ba773ca202f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:e6:92:9e:ff:90:a1:6f:53:d6:4f:61:13:ef:
d1:15:0e:8c:02:5e:55:5e:3d:56:14:f7:81:ac:d7:
75:f9:e9:11:f5:f7:66:c6:b8:3e:cb:ae:bf:8c:b5:
75:79:01:42:00:db:75:f9:4d:f9:9c:11:44:e7:8e:
ad:a1:a5:6a:89:ab:a5:52:d9:65:44:9a:4f:85:d1:
a7:c9:a2:f2:92:c2:03:8a:fe:33:3f:89:11:fd:99:
78:65:85:5b:6d:11:34:a6:78:0e:7f:27:24:84:fb:
ee:55:e2:5b:29:d1:9c:8c:8f:5f:2f:50:8a:a9:85:
0e:cc:05:29:24:11:29:04:47:e0:68:f9:db:6b:0d:
da:da:30:fc:63:34:ff:76:5b:8f:c1:c4:f6:bb:ed:
e4:93:94:d2:43:d7:40:2a:37:79:eb:4f:d1:6a:e0:
c3:70:66:01:56:d3:0c:2f:1f:dc:e4:29:31:23:53:
91:a5:69:b3:bb:e9:5c:8a:7f:0b:f2:08:08:6f:a3:
bd:87:6a:47:61:09:07:84:1f:e2:54:39:41:3d:59:
b5:81:43:73:5a:4b:47:3a:74:68:46:38:08:83:06:
b8:52:35:2c:cf:e1:90:e1:c8:92:86:32:0f:5b:a4:
be:de:f1:4f:4b:7d:7b:ed:46:9a:ac:cf:cd:be:47:
fc:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:6F:6C:10:AF:6C:4E:A6:EA:43:9E:29:E4:47:BA:77:3C:A2:02:F8
X509v3 Authority Key Identifier:
keyid:DF:F2:47:26:DF:3E:77:F6:F4:C8:E0:43:66:13:B3:51:10:EE:AF:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_JHJt8-d_b0yOBDZhOzURDurzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/Y29sEK9sTqbqQ54p5Ee6dzyiAvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a96024-6555-4e8d-af37-62bb6d63e59d/1/3_JHJt8-d_b0yOBDZhOzURDurzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.7.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:8e:27:9b:b7:d5:b0:39:2e:0f:39:bd:d2:47:80:ee:c4:ff:
b7:7b:15:92:4c:90:3d:06:34:0a:ca:2e:02:87:e6:fb:b3:f2:
10:35:ce:02:82:20:55:a0:f9:48:89:ef:3c:3a:2c:ea:98:b3:
a8:27:bd:4a:52:a9:89:24:f5:f2:69:95:4a:83:b0:c1:4e:19:
cb:cb:88:2b:0e:e2:a0:5c:7d:dd:29:7f:c6:79:12:c4:f4:10:
e8:a1:71:25:4b:b8:60:4c:d2:c8:a5:19:86:41:e4:45:e9:75:
59:4a:0a:5f:64:29:80:bd:57:83:71:7c:8e:33:f6:85:2e:74:
00:7a:00:55:fb:c5:36:c2:98:3a:ea:21:f6:48:47:ac:26:bc:
d5:13:d8:33:5c:1c:e6:42:58:26:98:a8:15:1f:58:95:f0:5f:
d7:b5:52:7f:7c:a6:38:f0:32:84:0a:b4:92:57:69:89:22:00:
97:dd:13:e0:93:85:b3:56:13:3f:46:74:97:e5:f7:71:26:21:
d4:d8:5b:1d:25:a0:f6:a9:26:0f:c0:56:a9:97:0d:ba:5d:b4:
5e:23:66:72:d2:8d:e7:4c:76:16:cd:cf:af:25:da:ea:37:5b:
ad:85:42:a7:d8:13:61:04:a5:3b:de:9d:b2:35:5a:ee:da:4a:
2f:07:d1:13
-----BEGIN CERTIFICATE-----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Generated at Mon Dec 4 22:17:47 2023 by rpki-client on console-fra.rpki-client.org