Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/SobCN42rDJbZYgghNdZKhFn2RWQ.roa
File: SobCN42rDJbZYgghNdZKhFn2RWQ.roa (raw, json)
Hash identifier: +l56GHDudhuCTw4eF0bF6g2Xuj2i4vXq/JoAgtuOJFs=
Subject key identifier: 4A:86:C2:37:8D:AB:0C:96:D9:62:08:21:35:D6:4A:84:59:F6:45:64
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C5402AF1119643CDA1759B2BB6446F1
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/SobCN42rDJbZYgghNdZKhFn2RWQ.roa
Signing time: Sun 01 Jan 2023 07:55:23 +0000
ROA not before: Sun 01 Jan 2023 07:55:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62468
IP address blocks: 185.223.165.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:02:af:11:19:64:3c:da:17:59:b2:bb:64:46:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a86c2378dab0c96d962082135d64a8459f64564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:8b:3e:6b:42:08:0c:b0:4a:b0:dd:ad:40:
4f:f6:fe:ff:d2:17:78:4a:ba:c8:e1:47:2f:49:af:
05:a4:3c:38:c7:bc:d4:b6:66:3e:7b:57:fe:5a:4a:
52:eb:28:5c:6e:30:45:ca:88:f4:d4:25:1a:8b:26:
0c:cc:01:e1:9f:67:42:68:f5:04:22:c2:2a:7c:10:
15:1b:13:54:0a:de:9d:4d:0c:45:5d:23:f9:98:ac:
9f:e3:33:c8:e5:28:28:f4:4d:92:19:cb:9d:43:95:
b5:f9:f3:67:60:2e:5f:0f:3a:c0:3f:28:18:18:8e:
a4:ae:08:73:21:3c:85:f1:78:a1:db:2a:ce:a6:5a:
5c:ad:8b:e9:a6:c4:d3:2b:a8:78:f3:8a:47:ed:6c:
13:c7:3f:3b:af:4f:6b:a2:bd:fe:90:27:47:26:8b:
9f:fa:63:bd:60:ed:84:af:34:aa:8e:ba:2e:47:3b:
98:db:66:e3:06:0e:24:60:20:fd:91:e5:e9:b1:e4:
3c:a8:9a:28:37:5d:fe:1f:57:02:2a:87:44:d1:5c:
c9:69:f5:4c:f7:09:1b:c7:f0:02:77:25:c1:7e:4a:
7b:57:8a:84:69:1c:e3:94:46:02:f7:c3:33:5b:5a:
92:22:93:12:cd:c5:1d:c5:9c:df:c3:4b:32:e3:3a:
df:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:86:C2:37:8D:AB:0C:96:D9:62:08:21:35:D6:4A:84:59:F6:45:64
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/SobCN42rDJbZYgghNdZKhFn2RWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.165.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:f3:c4:98:24:2d:76:2b:7c:46:c5:81:e0:f9:ba:f9:5f:f8:
60:4c:3d:47:3c:f3:5c:83:ce:be:73:c3:ab:40:6e:2b:68:ea:
43:1e:1c:30:3a:79:de:c7:54:c3:c4:69:63:6d:3c:ee:4d:55:
20:68:94:68:78:a7:af:5a:49:4e:89:f9:18:44:6f:b4:b9:6b:
9a:a7:57:e4:66:c1:2a:a7:10:1e:bf:37:ae:24:eb:42:6c:5d:
d3:1d:3d:cc:3c:94:07:ba:4c:9e:fe:b5:b6:a1:b6:19:59:d8:
d0:0b:0f:e7:9e:df:4a:22:bc:65:b6:bd:2c:22:ac:de:65:c0:
70:b4:42:d4:c5:a3:4e:31:8b:af:a6:79:fc:46:9f:d1:a2:78:
c8:15:57:04:7c:54:b7:86:e2:f5:7c:e0:51:07:93:4a:78:0f:
01:06:35:bd:9b:a3:8d:62:85:e1:6c:e5:f5:e1:7f:de:dd:7b:
41:3e:4d:dc:4e:6d:33:8c:5b:fe:d3:2a:23:bd:35:fa:76:50:
0a:ac:ca:68:b9:f3:aa:34:dc:b1:cd:d5:b7:9d:13:8e:e5:51:
7a:56:b1:56:62:14:b4:9a:20:0c:a1:3f:e1:26:62:a0:f3:85:
90:69:52:48:aa:5f:ee:eb:42:ae:cc:55:2e:a3:b7:09:78:e5:
20:a5:74:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:23:00 2024 by rpki-client on console-ams.rpki-client.org