Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/80hifPo2wGBiAd8jWd5YtC-GXwk.roa
File: 80hifPo2wGBiAd8jWd5YtC-GXwk.roa (raw, json)
Hash identifier: b+20hLDLXLxXZdgnSlVZTgdsIveF9T/gtwY8y1uKcVU=
Subject key identifier: F3:48:62:7C:FA:36:C0:60:62:01:DF:23:59:DE:58:B4:2F:86:5F:09
Certificate issuer: /CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Certificate serial: 018570796650DBE69B9EDF530510D8BAB6FA
Authority key identifier: E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/80hifPo2wGBiAd8jWd5YtC-GXwk.roa
Signing time: Mon 02 Jan 2023 03:14:42 +0000
ROA not before: Mon 02 Jan 2023 03:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202551
IP address blocks: 185.160.208.0/22 maxlen: 22
2a07:c000::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:66:50:db:e6:9b:9e:df:53:05:10:d8:ba:b6:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e88c04771e2bfac8f60f1b4c9cbd093aafea974e
Validity
Not Before: Jan 2 03:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f348627cfa36c0606201df2359de58b42f865f09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:81:8e:43:7d:7f:ea:c7:59:85:cd:4b:60:6c:
1b:81:21:b2:fd:1e:e9:cc:b9:bf:a4:b4:9e:2f:01:
b3:60:51:de:f8:c7:57:dd:a7:11:c5:77:c0:09:04:
d2:73:b4:39:46:88:fd:c3:56:1a:51:c8:ec:b0:71:
fe:5e:bc:85:7a:0a:a8:f8:7e:da:eb:1a:d5:82:66:
85:09:66:4a:b5:2a:16:f2:f5:31:e6:e8:6d:99:80:
5b:71:39:ca:ec:3c:b3:fe:74:2b:c2:9b:fe:4e:01:
7a:84:c0:69:99:d4:ce:49:3f:da:e8:c0:ab:82:c0:
0a:ba:c6:99:47:90:d8:5a:4b:12:32:05:7e:79:03:
ab:10:d2:c1:ca:37:4e:01:6b:70:f8:6e:08:18:93:
77:5c:a0:d3:77:0d:94:31:7d:77:c1:04:b3:37:dc:
85:64:11:f3:36:26:d8:d7:45:eb:2c:63:12:05:19:
b0:e4:49:b7:e3:f8:89:ad:a0:14:61:9a:49:71:80:
f4:e6:0c:d0:03:c9:f3:f9:6d:0e:f1:80:24:96:18:
18:ea:74:ab:c3:ae:9e:25:e5:67:c6:e4:41:c9:da:
b9:ab:dc:f7:c5:8b:9f:97:0a:29:8b:f9:55:8b:25:
0f:19:f9:2d:ac:1c:19:78:d6:72:a6:cb:a7:0f:89:
9e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:48:62:7C:FA:36:C0:60:62:01:DF:23:59:DE:58:B4:2F:86:5F:09
X509v3 Authority Key Identifier:
keyid:E8:8C:04:77:1E:2B:FA:C8:F6:0F:1B:4C:9C:BD:09:3A:AF:EA:97:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IwEdx4r-sj2DxtMnL0JOq_ql04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/80hifPo2wGBiAd8jWd5YtC-GXwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/2ae7c3-98a5-4cda-9bae-ba645f19915a/1/6IwEdx4r-sj2DxtMnL0JOq_ql04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.208.0/22
IPv6:
2a07:c000::/29
Signature Algorithm: sha256WithRSAEncryption
17:f2:6c:3d:33:6d:6c:cf:67:ce:e3:8f:b4:15:13:53:82:0a:
ac:f4:c6:6d:44:64:e6:11:16:7c:3a:c3:b1:e1:97:2f:52:ab:
6c:7c:f4:e8:fc:e3:14:1f:5e:c2:76:c2:06:d2:90:ca:4b:cf:
cd:5c:f0:bb:5d:9e:96:2b:d9:1a:ee:97:04:ed:86:d9:a6:47:
9c:c4:1e:84:42:40:ae:08:21:a8:e2:b1:b1:09:62:dc:6d:84:
67:ec:49:5d:d0:e3:b2:65:e4:49:c2:74:eb:1d:b9:11:c3:d1:
4a:7e:52:54:e5:bb:70:e6:78:60:35:9e:bf:98:78:9d:a6:bc:
71:2a:4a:df:ed:d8:05:a4:81:e6:97:a4:3e:c2:a5:a6:1f:4c:
98:0d:81:40:f4:69:47:ee:fb:83:f3:b1:c3:b5:4d:78:b3:4f:
57:24:d6:d7:38:ce:b7:6d:9e:17:7a:23:4c:fc:30:93:c1:1d:
5e:56:c3:36:8a:b0:42:89:86:de:26:45:9f:4f:06:57:b3:2f:
79:30:f0:11:34:a7:d8:57:e8:18:6c:24:fa:56:d8:dd:c1:74:
81:7f:0b:21:3e:00:58:79:fd:93:72:95:91:f8:ea:32:5c:8c:
87:d4:23:93:55:73:1b:88:0d:4a:a6:16:14:77:e9:75:1c:07:
5c:56:59:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:00 2023 by rpki-client on console-fra.rpki-client.org