Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/17b797-2e66-40df-868a-0a275a6763ce/1/cWWgH82dGYao5LtLjk-VBO1oatQ.roa
File: cWWgH82dGYao5LtLjk-VBO1oatQ.roa (raw, json)
Hash identifier: SUFzPA+Vfx8ofqRVrqHfAPr/VczmeiZJEZiy6xI6dPk=
Subject key identifier: 71:65:A0:1F:CD:9D:19:86:A8:E4:BB:4B:8E:4F:95:04:ED:68:6A:D4
Certificate issuer: /CN=bfe57cc3db1840470c73a09605d187d7bd9595cb
Certificate serial: 018A7E6FD3205567C2A0CE25D67695A43F1B
Authority key identifier: BF:E5:7C:C3:DB:18:40:47:0C:73:A0:96:05:D1:87:D7:BD:95:95:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-V8w9sYQEcMc6CWBdGH172Vlcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/17b797-2e66-40df-868a-0a275a6763ce/1/cWWgH82dGYao5LtLjk-VBO1oatQ.roa
Signing time: Sun 10 Sep 2023 09:32:52 +0000
ROA not before: Sun 10 Sep 2023 09:32:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 185.245.124.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 12 Sep 2023 16:12:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:7e:6f:d3:20:55:67:c2:a0:ce:25:d6:76:95:a4:3f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe57cc3db1840470c73a09605d187d7bd9595cb
Validity
Not Before: Sep 10 09:32:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7165a01fcd9d1986a8e4bb4b8e4f9504ed686ad4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:eb:1d:c1:f5:e6:68:32:78:e1:ce:8f:19:19:
5b:eb:d6:4e:f4:7e:94:79:b7:fc:59:0e:02:05:f1:
07:a7:6b:40:85:82:23:12:bb:e1:81:f0:8e:27:05:
01:41:cb:67:8b:e4:c2:5e:6b:06:e2:6b:66:2e:f4:
f6:a7:27:e9:d4:64:7e:03:b2:1a:5f:5b:40:ed:7f:
e4:bc:4f:8c:3c:11:45:fd:ed:c0:68:34:a6:61:8f:
c5:e4:3b:5e:1c:24:57:1e:25:8a:96:17:2e:f9:9f:
06:a1:47:8b:f4:03:26:89:f1:17:38:38:3d:ee:bb:
63:7c:d9:56:32:da:f9:fd:37:9a:3d:94:12:53:99:
3d:20:ee:f7:da:ea:6e:c7:59:af:85:87:e0:c1:51:
bd:d5:83:dd:10:ba:cd:15:0d:0a:42:54:05:fe:67:
75:9e:31:55:25:82:c0:ac:32:12:a2:8b:73:f5:61:
ca:57:14:e7:64:e5:04:21:f1:85:0e:36:5e:5f:9c:
8d:c6:66:37:c7:22:57:24:5e:3f:f9:d8:c5:eb:f3:
63:ba:2f:5d:d7:3c:11:c4:d8:e0:72:ab:9f:64:fc:
54:5b:15:fb:61:2a:5b:47:f9:00:12:43:58:ef:99:
49:19:ca:de:4d:23:73:3b:4c:ec:40:8b:b7:4f:d6:
84:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:65:A0:1F:CD:9D:19:86:A8:E4:BB:4B:8E:4F:95:04:ED:68:6A:D4
X509v3 Authority Key Identifier:
keyid:BF:E5:7C:C3:DB:18:40:47:0C:73:A0:96:05:D1:87:D7:BD:95:95:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-V8w9sYQEcMc6CWBdGH172Vlcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/17b797-2e66-40df-868a-0a275a6763ce/1/cWWgH82dGYao5LtLjk-VBO1oatQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/17b797-2e66-40df-868a-0a275a6763ce/1/v-V8w9sYQEcMc6CWBdGH172Vlcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.124.0/22
Signature Algorithm: sha256WithRSAEncryption
6e:e3:09:5e:58:fe:ac:b2:03:ab:9e:af:4f:a7:db:e6:8e:67:
e0:e6:18:00:ff:88:88:a8:c1:be:2c:52:fb:3d:04:0c:bf:fe:
f2:39:b8:44:ff:fb:f5:b3:ba:a7:d8:be:29:44:b8:ef:4b:57:
16:c6:ea:5f:3b:0f:9e:aa:15:1c:58:c8:e6:bc:30:ad:88:89:
34:18:ba:b2:75:e6:b0:b2:93:d9:95:05:c1:b3:fd:7f:0e:1b:
9e:d8:af:48:1b:5e:97:03:22:b5:a2:5b:98:3e:20:17:d1:38:
49:14:7b:e3:ac:fb:ac:14:dd:ee:e4:b5:fa:49:f7:6d:3f:b9:
54:70:ba:1b:07:04:2e:9f:8e:6c:77:3f:8d:25:de:28:e1:49:
c2:dc:46:52:9f:8d:79:02:9e:df:56:d9:19:0e:3b:4b:16:f9:
f8:78:ae:10:07:11:1e:8e:e6:4d:b7:b9:5a:bc:33:0f:d2:18:
3c:94:18:94:db:5e:ee:9f:68:5e:1e:51:82:33:cc:17:10:a3:
97:13:a8:70:99:74:94:82:d6:67:13:cd:9d:cb:7c:b8:a7:5e:
e0:1f:c3:0d:e1:f2:a3:74:05:94:4d:1f:9d:25:90:ac:28:ae:
e2:39:d8:19:3a:51:df:aa:2e:2b:60:35:48:6a:1f:27:0e:7f:
ae:fb:9d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:42 2024 by rpki-client on console-ams.rpki-client.org