Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/nLiayKZkIXP5ufW4hnP8Nv6n2Co.roa
File: nLiayKZkIXP5ufW4hnP8Nv6n2Co.roa (raw, json)
Hash identifier: 4EgeHHWKhP9DqCBkwCHHznn+l7pjA4L+0BhMfmsMGQM=
Subject key identifier: 9C:B8:9A:C8:A6:64:21:73:F9:B9:F5:B8:86:73:FC:36:FE:A7:D8:2A
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C541020F3D47226973C8E871A0BB396
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/nLiayKZkIXP5ufW4hnP8Nv6n2Co.roa
Signing time: Sun 01 Jan 2023 07:55:26 +0000
ROA not before: Sun 01 Jan 2023 07:55:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207803
IP address blocks: 185.224.145.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:54:10:20:f3:d4:72:26:97:3c:8e:87:1a:0b:b3:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9cb89ac8a6642173f9b9f5b88673fc36fea7d82a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8a:c1:57:4b:fa:f4:3f:0b:0d:c0:80:58:95:
4d:86:93:86:3b:0d:62:7f:c9:b8:65:59:fc:34:90:
e0:26:e0:2b:1e:f0:6b:c5:39:74:82:3f:b4:dc:f9:
06:79:c2:75:99:c5:57:c8:c0:f8:70:cd:82:33:9e:
84:d6:f6:25:f4:74:b3:ed:2d:fc:f9:4a:0e:7b:eb:
1a:d8:27:ef:ad:95:78:4c:9d:44:e8:1a:f2:21:03:
38:d9:12:b8:57:8e:85:7c:35:de:57:0c:b5:0e:2d:
b5:f5:66:23:6e:50:6a:e6:a5:a5:fd:56:28:2e:bc:
3c:4c:b4:c8:e2:fc:4c:aa:e1:ad:c4:8c:5b:39:6e:
39:5b:1d:1c:7f:a4:58:d9:66:91:ab:3e:5b:36:a2:
b1:90:37:8e:0d:8e:66:d4:92:f2:35:86:f6:4a:a9:
20:7e:9a:b6:62:9c:4d:cd:ea:08:37:89:e7:c7:c2:
10:7d:1e:2b:64:7c:a5:fc:ac:6b:9b:28:08:d0:07:
c2:3d:e3:8c:b0:c3:9b:ab:33:b4:82:46:00:cf:d1:
00:b2:43:e5:19:83:12:95:c9:cd:7b:e2:b9:db:97:
41:25:0a:d6:a0:cf:e4:10:cf:63:41:ec:92:8f:c4:
f5:30:2b:32:c7:30:41:79:85:b4:01:85:94:98:46:
53:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:B8:9A:C8:A6:64:21:73:F9:B9:F5:B8:86:73:FC:36:FE:A7:D8:2A
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/nLiayKZkIXP5ufW4hnP8Nv6n2Co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.224.145.0/24
Signature Algorithm: sha256WithRSAEncryption
93:87:78:3b:9b:14:20:59:6e:5e:b9:5d:85:b9:cc:7d:7d:6c:
e5:71:dd:19:0b:b2:2c:fc:73:3f:b8:ba:71:0d:82:14:21:8b:
a0:c6:13:82:93:92:fd:10:e1:83:1c:26:af:32:45:71:d1:81:
88:ab:45:ed:d6:0c:ac:e8:a3:92:2d:fd:03:7d:42:71:31:a4:
5c:ba:96:ac:61:14:57:01:f5:d2:8f:c9:f1:6a:c8:0f:94:2c:
ae:4e:3b:1f:69:72:4d:0e:c7:50:c4:2a:20:4a:fc:20:ec:0d:
04:16:df:d0:33:f3:83:7f:1e:74:1a:cc:a2:2c:e5:1a:9e:b3:
4b:8d:2b:1b:c2:5d:8b:01:09:9f:53:97:63:c2:67:7d:1a:0c:
c4:3d:cd:96:6c:7e:5e:fb:f7:cd:1a:1d:86:e8:2a:86:2a:3e:
c9:d9:ea:2a:9a:d0:b1:cb:6e:c0:82:ab:17:f0:82:d6:54:e9:
0c:2e:bf:23:bc:70:01:55:cf:25:06:b5:b2:79:6c:72:fa:4e:
a7:d1:91:a1:d4:16:ae:8a:e0:2a:8c:8d:f7:1f:1d:34:02:78:
93:93:8c:b3:63:6f:48:de:ee:08:85:48:41:40:90:5e:0f:02:
d7:9a:5d:43:b8:b1:75:4a:37:6a:70:56:36:e8:45:2a:61:b2:
ba:6f:ff:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:55 2024 by rpki-client on console-fra.rpki-client.org