Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/SFASM0N0BhqF9yapEaL7yZPQzdM.roa
File: SFASM0N0BhqF9yapEaL7yZPQzdM.roa (raw, json)
Hash identifier: Nzxq6BJUoT6JCRjwGyzMOdNi0VDLRoSHW1jbwPM1Zlo=
Subject key identifier: 48:50:12:33:43:74:06:1A:85:F7:26:A9:11:A2:FB:C9:93:D0:CD:D3
Certificate issuer: /CN=b9de70122e49285d05b05f9bbf4449bfc80830e5
Certificate serial: 018CC8703B95D9C68FFB6EDD1C88686DE683
Authority key identifier: B9:DE:70:12:2E:49:28:5D:05:B0:5F:9B:BF:44:49:BF:C8:08:30:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/SFASM0N0BhqF9yapEaL7yZPQzdM.roa
Signing time: Tue 02 Jan 2024 04:30:47 +0000
ROA not before: Tue 02 Jan 2024 04:30:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212324
IP address blocks: 185.217.141.0/24 maxlen: 24
2a10:c700::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 03 Jul 2024 14:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:70:3b:95:d9:c6:8f:fb:6e:dd:1c:88:68:6d:e6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9de70122e49285d05b05f9bbf4449bfc80830e5
Validity
Not Before: Jan 2 04:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=485012334374061a85f726a911a2fbc993d0cdd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:97:6b:ce:fe:8f:fd:a0:cd:43:da:e3:29:e6:
9f:27:87:31:e5:63:07:65:58:ba:23:a3:7c:c1:6c:
69:ea:a2:2f:02:60:45:75:f2:f8:ff:04:75:ee:57:
1b:a3:0c:ef:2a:65:cc:60:55:b6:b6:2b:49:a5:1a:
37:70:0e:a2:fe:cb:b8:13:a2:eb:50:c7:93:0b:31:
aa:f2:9b:cc:9b:d3:d1:cc:cf:3d:b5:83:b9:e6:dc:
cb:64:bc:7d:66:98:c9:da:54:29:ba:35:22:6c:52:
c9:af:74:d9:38:17:01:0d:cc:2b:2d:ca:89:b6:03:
22:c6:bf:49:45:13:7d:fe:9e:75:48:be:0b:fd:39:
37:cb:e9:ff:7d:e8:04:0a:f7:76:e0:55:f5:f6:a1:
75:99:68:24:a6:5e:c9:11:97:91:76:aa:6e:61:dc:
bf:71:68:a1:10:06:c8:fc:d0:e3:20:03:41:2e:63:
95:c8:79:c7:d7:e3:ca:6d:6d:26:b0:3b:4e:31:97:
1a:80:fe:91:7c:55:88:e2:c0:90:c7:b0:64:6e:71:
c5:2f:04:c5:44:6f:7d:f2:3b:db:92:04:28:55:a7:
ca:0b:63:c1:bf:08:f2:23:47:c5:82:e3:02:10:b9:
85:d0:23:c4:78:90:24:33:77:65:6d:be:97:c3:84:
39:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:50:12:33:43:74:06:1A:85:F7:26:A9:11:A2:FB:C9:93:D0:CD:D3
X509v3 Authority Key Identifier:
keyid:B9:DE:70:12:2E:49:28:5D:05:B0:5F:9B:BF:44:49:BF:C8:08:30:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ud5wEi5JKF0FsF-bv0RJv8gIMOU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/SFASM0N0BhqF9yapEaL7yZPQzdM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/afae6c-2982-4119-906f-895f86287506/1/ud5wEi5JKF0FsF-bv0RJv8gIMOU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.141.0/24
IPv6:
2a10:c700::/32
Signature Algorithm: sha256WithRSAEncryption
3e:fc:10:79:c9:3b:c1:48:95:f7:0a:1b:bb:9a:33:57:51:90:
11:88:4d:05:13:b0:2e:bf:22:7c:10:bd:ad:a9:81:24:6e:6a:
b9:25:6d:6c:05:13:d3:0a:8d:88:b5:c7:a2:e3:22:f2:e5:67:
29:3a:ae:c1:c7:2b:45:cb:8c:32:c1:3f:38:1c:14:dd:eb:ee:
f4:38:d5:8d:05:b6:cd:f5:f4:e5:fb:fb:36:3b:ab:f0:e1:98:
e5:50:e9:fc:18:30:0a:9b:17:f3:76:ab:31:c2:bd:29:77:07:
e3:d8:45:3b:cb:66:55:cb:23:72:5d:e6:9f:ce:c6:a1:e8:1f:
09:36:a0:40:26:e3:bb:bf:ef:fe:a6:7a:57:7b:0f:cf:3b:96:
60:86:56:e3:d9:02:44:e4:bb:ae:05:e4:4f:a0:c7:9a:e7:78:
45:ae:f3:13:20:e2:3a:e1:05:19:4d:4d:d4:12:d5:c7:0e:45:
df:b9:2f:6a:56:0e:b5:e0:87:62:71:d7:d4:01:ec:d4:62:e8:
00:64:64:18:c8:48:b9:38:19:e3:25:d8:41:01:0d:3e:1b:31:
68:1f:c3:24:e4:1e:4e:b3:d5:56:35:53:46:bb:01:16:e7:83:
8c:ff:bf:53:0a:b0:f0:1b:46:db:93:c2:da:ef:d6:45:34:63:
b8:f7:25:2f
-----BEGIN CERTIFICATE-----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 at Wed Jul 3 16:42:01 2024 by rpki-client on console-ams.rpki-client.org