Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/i2lqFLLOzrzTAVh0wZxfLnsDqC4.roa
File: i2lqFLLOzrzTAVh0wZxfLnsDqC4.roa (raw, json)
Hash identifier: orlms/5aI0N0hLEaAfmvzZa8We0yOtCRTHdCjBvdOjc=
Subject key identifier: 8B:69:6A:14:B2:CE:CE:BC:D3:01:58:74:C1:9C:5F:2E:7B:03:A8:2E
Certificate issuer: /CN=febf30201f12a040d386d2b4eed4484623e4d11b
Certificate serial: 01857246E783F53632228CA41381307FE326
Authority key identifier: FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/i2lqFLLOzrzTAVh0wZxfLnsDqC4.roa
Signing time: Mon 02 Jan 2023 11:38:47 +0000
ROA not before: Mon 02 Jan 2023 11:38:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199048
IP address blocks: 85.187.223.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:e7:83:f5:36:32:22:8c:a4:13:81:30:7f:e3:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=febf30201f12a040d386d2b4eed4484623e4d11b
Validity
Not Before: Jan 2 11:38:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b696a14b2cecebcd3015874c19c5f2e7b03a82e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:13:83:ca:e5:25:cc:fc:62:01:18:7e:c2:7d:
aa:02:b4:bd:d8:d9:7b:a6:d1:75:9f:84:ce:0f:8c:
17:a2:37:7b:e1:fa:a1:cd:06:45:36:47:79:98:71:
6e:6e:bc:d8:26:6c:13:16:ed:bc:67:57:7f:3e:ec:
0b:77:54:3e:1a:dc:2c:c8:7a:b6:8e:7a:52:31:77:
87:8f:2b:41:9d:f7:33:9d:d6:5d:8a:2e:5b:9a:47:
a3:6d:a0:f2:2d:6c:23:c2:0c:39:75:eb:f7:2d:e0:
2e:7f:f8:03:56:fa:05:85:ce:69:fd:e3:9d:50:2b:
02:50:29:b1:84:d1:40:bb:be:2d:cf:fe:f1:77:58:
2f:22:57:18:43:06:50:7b:2a:9b:f5:1c:74:d3:9f:
e2:21:16:2a:b8:02:bc:a7:e4:3a:9c:8e:85:cd:78:
a2:8e:36:40:60:27:a8:1f:71:95:12:61:16:f9:aa:
99:20:be:b0:3b:08:9b:0f:ed:02:c7:74:fb:7a:a3:
d0:0e:9c:78:b8:46:ed:0c:b6:21:2a:27:50:17:c0:
c5:01:0a:bc:c0:a9:4d:f5:d7:14:77:8f:ca:2c:d3:
91:99:59:cb:1e:f6:1a:5e:8a:6c:ca:10:57:25:0b:
f9:a6:3b:0b:75:76:15:6a:be:72:76:b7:e2:94:d0:
73:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:69:6A:14:B2:CE:CE:BC:D3:01:58:74:C1:9C:5F:2E:7B:03:A8:2E
X509v3 Authority Key Identifier:
keyid:FE:BF:30:20:1F:12:A0:40:D3:86:D2:B4:EE:D4:48:46:23:E4:D1:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_r8wIB8SoEDThtK07tRIRiPk0Rs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/i2lqFLLOzrzTAVh0wZxfLnsDqC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/f8c4a2-96ac-4b4e-a195-a97c0dc0a749/1/_r8wIB8SoEDThtK07tRIRiPk0Rs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.187.223.0/24
Signature Algorithm: sha256WithRSAEncryption
91:e6:ad:78:71:2a:ed:40:c5:3c:74:02:24:a6:ea:62:ee:f1:
30:de:e9:7f:43:36:29:7e:83:a6:f0:cc:41:49:2e:b5:ca:7d:
7f:21:99:2b:10:70:d1:87:59:15:ab:b7:0a:01:79:be:ba:4e:
e5:72:3f:db:64:86:90:2b:97:59:21:c4:2d:f1:34:22:61:c6:
a8:a6:68:84:e2:9d:94:59:d1:59:c0:47:3a:29:14:12:11:2e:
07:f8:30:90:40:15:50:f3:cd:e8:10:be:24:9f:62:90:5a:a1:
d2:89:dd:d2:2e:3d:ff:ef:38:f0:54:99:d2:c4:6a:5e:c4:f7:
00:ea:b2:63:3f:34:6f:0a:ca:0c:26:60:52:75:95:9e:dc:bb:
31:0a:8b:a4:5b:34:91:c9:9b:a5:37:7d:e3:2e:e4:49:a0:0b:
ae:5c:f8:bd:67:90:b8:f2:94:db:c5:02:02:b1:28:7f:72:9d:
33:dd:ca:fa:42:82:3c:b0:fe:9f:78:d3:59:ed:2f:91:fc:f9:
22:9d:c1:1a:89:60:08:89:11:65:e7:75:cb:94:7a:6b:b7:3e:
a2:c6:3d:df:7c:18:79:4b:27:e9:78:90:7c:a1:d1:d1:b6:26:
6c:d0:98:72:42:93:0c:23:12:d9:92:b1:b3:73:94:9a:6a:f7:
c0:14:f1:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org