Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/B0S2OAhDfLYU06KwC82QfF1aVHE.roa
File: B0S2OAhDfLYU06KwC82QfF1aVHE.roa (raw, json)
Hash identifier: L0PhZGpB15prj16kuYOw5JT8vcOtCv+2rPgJf8+YzeY=
Subject key identifier: 07:44:B6:38:08:43:7C:B6:14:D3:A2:B0:0B:CD:90:7C:5D:5A:54:71
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AD57118D1731C715AFF68DA9C9D39
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/B0S2OAhDfLYU06KwC82QfF1aVHE.roa
Signing time: Mon 02 Jan 2023 17:15:07 +0000
ROA not before: Mon 02 Jan 2023 17:15:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205537
IP address blocks: 185.214.204.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:d5:71:18:d1:73:1c:71:5a:ff:68:da:9c:9d:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0744b63808437cb614d3a2b00bcd907c5d5a5471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:82:09:f1:e1:5f:6c:32:91:c4:16:73:ad:9c:
54:69:35:fe:fd:5f:cb:5c:47:3e:23:d6:94:4b:32:
1b:1b:ad:04:77:a0:95:c5:af:a3:8c:b3:5e:3c:d0:
32:74:f0:5c:5d:b0:d3:ba:92:7b:a9:2c:6b:8c:4e:
87:90:2a:24:21:e7:77:93:21:4c:c0:5d:a6:1c:e1:
25:6a:b0:b7:36:fd:8d:dd:05:7b:1c:ed:7a:c6:cb:
b4:ca:1b:09:07:ab:99:61:8f:60:f5:dd:6a:11:a7:
74:0e:eb:10:ee:83:8a:7f:1f:ec:22:d4:69:68:40:
09:04:1e:1b:c5:c0:e4:37:05:12:4d:7f:4e:1d:29:
43:a6:58:9d:cf:26:f6:b6:4a:be:d9:cb:4e:f7:ed:
5c:69:97:c4:64:d8:2e:4d:71:6b:81:02:cc:57:24:
bc:bf:4d:cb:84:fb:b5:be:e2:2d:7d:13:25:bc:2a:
bb:73:65:57:28:6d:0c:59:5f:d3:28:8d:3a:42:80:
ef:e1:61:8b:1c:69:f4:19:2b:2b:9a:29:df:9b:ad:
95:f8:58:6a:e6:ff:9a:f8:de:ca:ad:2c:1f:a3:17:
d9:06:07:5b:57:c4:74:85:03:00:26:12:ad:80:0a:
ff:f8:95:cf:6c:23:d5:fc:21:5b:32:71:c8:dd:c4:
44:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:44:B6:38:08:43:7C:B6:14:D3:A2:B0:0B:CD:90:7C:5D:5A:54:71
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/B0S2OAhDfLYU06KwC82QfF1aVHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.204.0/22
Signature Algorithm: sha256WithRSAEncryption
66:79:07:28:b4:58:8f:26:b6:55:54:38:67:77:f0:7c:48:39:
8a:83:32:64:26:17:6d:af:55:5d:da:a3:bc:f1:f1:67:1a:bf:
9c:16:fa:6c:b7:cb:17:f1:6d:82:0c:47:97:13:5b:39:e1:43:
21:7b:83:13:a3:f1:48:38:e2:2a:9c:f0:c7:4c:d9:9e:b0:48:
86:f6:5d:93:82:52:89:ae:2b:31:32:78:f1:ed:8d:19:a9:7a:
d7:bc:e9:c0:dd:70:b7:a7:14:84:8a:a4:1a:ff:82:2f:91:51:
16:23:90:07:69:31:87:e0:63:4b:01:29:34:ae:99:43:c5:0b:
e0:02:8f:34:b9:f7:82:4e:a1:9d:ff:3d:8b:ef:0a:a6:4b:4f:
7b:3e:19:89:3c:e7:61:52:49:64:34:93:f1:15:d4:8c:70:cc:
f6:b1:de:8b:22:e6:1a:1f:0b:9c:9b:eb:47:39:34:ea:65:cc:
71:a7:09:09:99:87:03:b3:09:45:4d:4b:97:71:b3:c0:e3:6e:
0c:81:96:a4:c5:48:31:96:78:ab:e7:74:7f:cd:bd:77:ee:e0:
cc:cf:f7:a3:ee:26:ac:4a:36:72:2a:48:70:91:6c:d0:df:3e:
83:0c:a8:bd:65:ce:0d:5f:65:54:1f:c5:3c:63:c1:cf:b2:b0:
a7:14:97:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org