Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/N8IBODGGc4g1AgUPOW-zaRyzE_Q.roa
File: N8IBODGGc4g1AgUPOW-zaRyzE_Q.roa (raw, json)
Hash identifier: rB26vdcV3bRnyU45q4GB06ULkfXKwGIBORKPf3d0xfc=
Subject key identifier: 37:C2:01:38:31:86:73:88:35:02:05:0F:39:6F:B3:69:1C:B3:13:F4
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 0185737AD149D12AAC4FBA449D8C0AE6D4CD
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/N8IBODGGc4g1AgUPOW-zaRyzE_Q.roa
Signing time: Mon 02 Jan 2023 17:15:06 +0000
ROA not before: Mon 02 Jan 2023 17:15:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202599
IP address blocks: 185.159.212.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:d1:49:d1:2a:ac:4f:ba:44:9d:8c:0a:e6:d4:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Jan 2 17:15:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=37c20138318673883502050f396fb3691cb313f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:86:79:ed:b6:aa:c3:dc:28:65:cf:8c:4c:b4:
6c:8a:c4:ad:de:85:87:91:92:d0:40:71:3c:39:05:
40:d6:c2:8b:f1:05:89:94:3f:ac:3a:14:c1:88:08:
cd:91:71:c1:f2:9a:16:86:f3:3e:a7:65:24:09:dd:
f1:f2:2a:d8:27:d3:bd:0d:3e:87:b6:96:dc:75:b1:
a9:c3:c8:b9:85:5c:a4:90:51:f8:88:59:2c:ef:50:
71:e3:de:7d:2a:47:1b:f3:f2:c3:d7:30:49:94:16:
50:7a:ac:84:74:b6:60:4b:1c:31:a3:e7:cb:9a:e1:
14:b0:bf:1d:b8:c2:f3:ef:0f:da:56:c9:e8:e2:5a:
9d:3b:8b:df:15:25:94:07:d4:ac:79:7e:d5:cb:78:
17:83:a2:43:01:fd:b6:6f:92:8b:f7:c4:83:86:04:
20:e4:58:96:3c:77:34:6a:7a:e0:89:21:9c:82:d4:
07:c2:40:75:50:b2:5a:c1:1f:18:c6:e8:df:3d:64:
15:4a:82:2e:09:36:d7:db:ee:08:27:82:d0:60:a0:
a9:80:ba:fc:17:d4:99:40:a0:7b:a9:8e:3f:19:17:
05:5b:13:d9:d1:6b:8f:96:46:8c:d9:10:0e:ed:fc:
56:aa:32:82:70:0d:2a:c7:00:ac:cf:8b:44:43:0d:
89:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C2:01:38:31:86:73:88:35:02:05:0F:39:6F:B3:69:1C:B3:13:F4
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/N8IBODGGc4g1AgUPOW-zaRyzE_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.212.0/22
Signature Algorithm: sha256WithRSAEncryption
82:ae:a4:98:ba:de:aa:1f:e0:f3:e7:2e:65:27:60:a4:a0:80:
7a:6b:28:b0:74:40:fc:00:26:79:7d:30:94:19:41:a6:d7:34:
47:58:bf:30:51:85:92:fb:26:59:c9:54:8b:ed:cf:d3:e1:37:
7a:75:cb:fd:4c:da:54:9e:97:33:75:0b:02:4a:0b:59:49:f4:
9e:5a:ff:10:10:01:31:71:bb:da:7e:74:58:00:e1:4d:8b:fe:
54:c1:ab:e5:12:3f:b9:a6:96:f3:9c:4e:72:f0:f2:2a:63:60:
a2:6c:d3:aa:60:06:8d:56:c2:c2:05:c1:ed:fe:98:d2:1c:e3:
25:fd:7c:b0:c6:6d:89:73:79:67:0a:09:eb:08:15:a1:75:bd:
20:12:c3:04:2b:a6:8a:63:6b:67:89:61:4a:16:76:2e:8b:d0:
15:c2:60:b9:fc:7a:ef:6a:97:81:bb:d9:32:46:7a:b4:02:10:
2a:a0:43:29:41:2f:1e:28:d0:70:37:62:2a:c2:ba:87:01:e5:
5e:91:45:2c:19:01:22:4c:dc:c0:73:ed:d4:f9:09:58:84:9a:
60:ba:9f:2d:9b:ee:24:f9:bc:fe:19:26:7d:20:fb:41:a6:d5:
fb:57:90:d0:c1:cd:5a:55:aa:12:80:49:36:c4:9f:56:64:44:
6e:cb:c8:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:36 2024 by rpki-client on console-fra.rpki-client.org