Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/IXFmlSVaRczeD4U7RQoUlVtSy6M.roa
File: IXFmlSVaRczeD4U7RQoUlVtSy6M.roa (raw, json)
Hash identifier: QZRY2M1W1jD8D8aY7QaHQooGmNFnoy7FuZyL/1RVzQg=
Subject key identifier: 21:71:66:95:25:5A:45:CC:DE:0F:85:3B:45:0A:14:95:5B:52:CB:A3
Certificate issuer: /CN=a748fbe1d7d3a6aa474de43fa885ce2d091c529b
Certificate serial: 018A41C5EB454ECC9AF9159E57EE58615FDF
Authority key identifier: A7:48:FB:E1:D7:D3:A6:AA:47:4D:E4:3F:A8:85:CE:2D:09:1C:52:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0j74dfTpqpHTeQ_qIXOLQkcUps.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/IXFmlSVaRczeD4U7RQoUlVtSy6M.roa
Signing time: Tue 29 Aug 2023 14:50:04 +0000
ROA not before: Tue 29 Aug 2023 14:50:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203206
IP address blocks: 185.204.101.0/24 maxlen: 24
2a10:8400::/29 maxlen: 48
2a10:8403::/32 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:41:c5:eb:45:4e:cc:9a:f9:15:9e:57:ee:58:61:5f:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a748fbe1d7d3a6aa474de43fa885ce2d091c529b
Validity
Not Before: Aug 29 14:50:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=21716695255a45ccde0f853b450a14955b52cba3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:51:68:ba:bd:8d:fb:00:a3:21:1b:3d:9c:88:
ac:5f:04:cd:44:ef:43:9e:f5:2e:58:10:20:5b:7e:
b8:d6:72:c8:e4:23:cf:2e:b0:f4:f1:96:31:08:e5:
6f:f7:b7:81:8b:1d:aa:20:21:4a:f4:cb:43:f8:ba:
a0:73:12:93:4e:11:ae:6e:c6:0c:96:98:fa:45:6f:
67:45:a1:78:f7:bf:0f:4f:88:57:a4:73:46:c4:0d:
be:82:d9:12:cf:51:ea:a5:61:cf:ce:80:f0:c7:50:
67:c9:37:35:a3:f0:2f:90:d4:6d:9c:e4:d3:b9:cd:
5b:76:b7:3a:af:46:eb:39:a0:56:90:88:68:fc:f7:
50:26:a3:a6:6b:21:f8:3f:c1:75:ab:9d:c4:eb:76:
67:71:7b:20:84:45:5a:6d:1e:4c:3a:36:74:40:20:
d8:93:31:c4:6a:4f:54:8c:65:5b:95:bf:65:a3:ac:
4d:91:84:ea:b1:30:28:64:eb:89:f9:6c:28:0e:a3:
d0:d8:fb:ba:24:be:65:3d:a5:ff:df:12:37:50:7e:
31:38:52:a8:53:27:ef:2f:8b:58:8d:24:4c:8f:5b:
c3:a6:c2:5d:96:58:6c:19:b0:94:6a:61:24:c2:dc:
d5:6a:42:e8:46:08:38:07:bc:a0:bd:fb:ce:26:d9:
e0:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:71:66:95:25:5A:45:CC:DE:0F:85:3B:45:0A:14:95:5B:52:CB:A3
X509v3 Authority Key Identifier:
keyid:A7:48:FB:E1:D7:D3:A6:AA:47:4D:E4:3F:A8:85:CE:2D:09:1C:52:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0j74dfTpqpHTeQ_qIXOLQkcUps.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/IXFmlSVaRczeD4U7RQoUlVtSy6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a723d8-d8cc-4e60-85ab-6c9b5c9bfa75/1/p0j74dfTpqpHTeQ_qIXOLQkcUps.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.101.0/24
IPv6:
2a10:8400::/29
Signature Algorithm: sha256WithRSAEncryption
0b:62:b4:82:40:76:69:59:31:b3:11:4f:eb:80:b1:42:f2:47:
7e:3c:91:66:e8:08:dd:94:a2:28:ca:13:a6:90:7f:38:61:12:
e3:0c:43:01:96:0e:07:4e:da:3b:53:7e:dc:13:20:08:c0:20:
69:d4:63:b6:74:87:2d:d0:52:f8:ae:d4:98:06:b6:71:fb:e8:
4e:60:b0:76:11:45:db:9e:84:1b:f4:cc:51:81:07:43:0f:04:
b3:ef:f0:c7:c3:6d:f6:89:93:1b:3e:7f:9f:42:96:25:b3:0f:
aa:e5:28:80:89:da:98:40:7f:11:2f:00:06:86:17:fe:c5:98:
9d:fc:f6:31:79:7f:8a:47:e5:1d:a9:d7:b0:e9:fd:aa:a0:df:
b1:2f:6f:3a:3f:42:68:12:5c:23:42:64:6e:76:38:4e:b9:a7:
51:bf:5a:7a:59:50:d7:78:28:ad:67:e9:87:ea:a9:7e:02:7c:
90:2a:3b:b7:0f:16:ac:a9:d7:73:04:72:23:17:2f:b2:2c:af:
4c:47:63:5e:dc:4e:55:e7:6e:9a:42:75:81:22:31:42:5b:59:
6e:f0:b4:4c:75:f6:fe:c8:50:fb:b2:c4:f1:1d:78:f9:37:18:
b9:48:d3:48:d4:89:4a:af:3f:ba:fe:a3:26:bb:96:b4:15:9b:
6b:c2:61:77
-----BEGIN CERTIFICATE-----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 at Tue Aug 29 20:00:02 2023 by rpki-client on console-fra.rpki-client.org