Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/j27HMXWSiSnb5m9TGUgKEH6_TNU.roa
File: j27HMXWSiSnb5m9TGUgKEH6_TNU.roa (raw, json)
Hash identifier: E7lHEaw0AAh0Thsk8prDARepVOZ3tOVuCvvyA+WMINo=
Subject key identifier: 8F:6E:C7:31:75:92:89:29:DB:E6:6F:53:19:48:0A:10:7E:BF:4C:D5
Certificate issuer: /CN=a316c7659af1d56bc718faf614f092758f5edc7f
Certificate serial: 0191718FEA92FDC2A36AD5E44AE53901D6D1
Authority key identifier: A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/j27HMXWSiSnb5m9TGUgKEH6_TNU.roa
Signing time: Tue 20 Aug 2024 20:52:22 +0000
ROA not before: Tue 20 Aug 2024 20:52:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 185.221.84.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 21 Aug 2024 14:57:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:71:8f:ea:92:fd:c2:a3:6a:d5:e4:4a:e5:39:01:d6:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a316c7659af1d56bc718faf614f092758f5edc7f
Validity
Not Before: Aug 20 20:52:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f6ec73175928929dbe66f5319480a107ebf4cd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4c:0d:fc:53:31:a2:69:24:1d:03:4c:5d:77:
84:9c:8c:99:c1:23:bb:27:d6:c6:46:a5:03:e5:4c:
96:5b:9f:52:6f:72:ce:71:b0:a7:03:0a:5b:74:1a:
a8:42:ab:65:18:e0:c1:48:72:81:b4:e2:cd:b9:27:
c3:66:41:c4:44:7a:bf:1d:93:73:0c:08:06:fd:1b:
81:e4:0e:ff:5e:fd:a1:51:46:0c:bb:00:8f:54:70:
f8:41:d9:1f:55:1a:21:fc:cd:ea:aa:58:fe:0c:9d:
7a:0a:3c:f5:a5:c4:1c:42:96:4d:ff:3c:9f:48:e2:
82:e0:5f:fe:34:e9:3e:51:c3:cc:bf:2c:47:65:a7:
48:86:02:46:a5:5f:cd:04:0d:2d:90:a5:61:21:91:
00:6d:83:13:f8:dd:97:70:61:1c:f9:2f:84:6d:ea:
f8:c2:99:03:7f:40:60:a9:fc:28:bd:2c:b0:ec:03:
3a:47:49:0b:2a:1b:b1:2a:1e:85:68:0f:f4:da:56:
30:9c:2e:0b:19:75:85:44:51:3c:1c:a9:91:ec:b4:
11:6f:f0:e6:6d:51:7c:9b:b4:7e:cd:1d:b5:56:ee:
14:d5:3d:cf:78:71:ba:5f:ef:02:2a:e4:c9:75:3a:
84:5e:78:5c:ef:12:91:15:01:2e:7d:1b:7d:6d:0c:
b0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6E:C7:31:75:92:89:29:DB:E6:6F:53:19:48:0A:10:7E:BF:4C:D5
X509v3 Authority Key Identifier:
keyid:A3:16:C7:65:9A:F1:D5:6B:C7:18:FA:F6:14:F0:92:75:8F:5E:DC:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oxbHZZrx1WvHGPr2FPCSdY9e3H8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/j27HMXWSiSnb5m9TGUgKEH6_TNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/30d4e8-e090-4bf2-8185-3687c818ede5/1/oxbHZZrx1WvHGPr2FPCSdY9e3H8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.84.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:99:19:26:5f:ba:b2:01:25:18:14:c5:2f:87:cd:26:ea:be:
6b:07:ef:cb:2b:8c:20:28:79:16:f3:ce:5f:05:ae:64:06:4a:
4f:5c:af:41:0c:5d:ed:a9:de:fb:a2:40:09:b1:95:ab:83:8a:
3e:e0:db:3a:d1:82:56:fb:80:dd:e7:c4:97:79:bc:8d:a3:8e:
17:35:30:32:5d:9f:41:10:b6:81:d3:01:98:d0:48:1a:3b:f3:
37:e6:25:79:92:86:d2:17:dd:fe:af:94:98:ac:b7:1f:d5:64:
88:e7:e2:05:64:c7:8f:f4:15:6a:29:05:d5:7a:7e:07:50:77:
da:c0:9f:f9:93:37:c0:13:d0:bb:89:d9:a1:1d:51:d9:68:6b:
35:de:97:29:f2:93:a6:b7:1b:d8:71:0d:71:6d:86:00:47:92:
31:71:74:b6:8e:f1:7f:bc:56:3e:93:53:ea:ea:9e:ae:a2:7b:
7e:93:3c:b8:29:f6:26:72:8b:28:5f:12:f3:37:c3:3c:dc:d2:
8c:4e:e1:a8:26:0e:fc:0e:48:65:58:01:cc:38:3b:f9:8b:cf:
97:bc:93:4f:14:d9:d1:a9:fc:38:be:7a:66:20:f7:36:fa:1e:
90:b9:0f:8e:f0:0b:3a:20:4d:2b:80:d5:21:97:05:26:85:3f:
06:ea:b1:09
-----BEGIN CERTIFICATE-----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Generated at Wed Aug 21 19:41:06 2024 by rpki-client on console-fra.rpki-client.org