Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/ciW_wHuaSxir1UEREqr0EzH0-3g.roa
File: ciW_wHuaSxir1UEREqr0EzH0-3g.roa (raw, json)
Hash identifier: Z4zluFe+pfTC+uXcceHJ3mDrd5YCMPUxHWA/WOldV7M=
Subject key identifier: 72:25:BF:C0:7B:9A:4B:18:AB:D5:41:11:12:AA:F4:13:31:F4:FB:78
Certificate issuer: /CN=169260a06dc844b454c60074daed54e09d58f0a7
Certificate serial: 0185729EBD7C0CA7DA95E2071FBBFB316CAA
Authority key identifier: 16:92:60:A0:6D:C8:44:B4:54:C6:00:74:DA:ED:54:E0:9D:58:F0:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpJgoG3IRLRUxgB02u1U4J1Y8Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/ciW_wHuaSxir1UEREqr0EzH0-3g.roa
Signing time: Mon 02 Jan 2023 13:14:43 +0000
ROA not before: Mon 02 Jan 2023 13:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211020
IP address blocks: 185.222.212.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:9e:bd:7c:0c:a7:da:95:e2:07:1f:bb:fb:31:6c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=169260a06dc844b454c60074daed54e09d58f0a7
Validity
Not Before: Jan 2 13:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7225bfc07b9a4b18abd5411112aaf41331f4fb78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:7c:bf:33:91:52:bb:f0:5a:de:35:9b:f4:
6a:f0:d8:48:1c:28:45:0c:11:eb:85:68:69:7d:28:
ea:b6:92:a3:c9:a2:70:13:f1:00:ac:55:fa:ac:3f:
53:8a:96:c0:1b:77:43:c6:f4:6b:ab:75:57:e4:fd:
0d:96:16:1b:fa:3a:b4:bf:98:33:95:93:76:ef:2a:
5e:ae:b1:9f:9b:80:b4:3b:53:83:b9:7e:d2:ae:94:
08:0b:3b:26:0e:0a:f4:8e:67:1e:05:77:95:c7:85:
cb:51:72:57:30:62:03:5b:fd:b1:b1:51:55:cf:53:
a4:13:53:13:66:22:7e:18:f5:47:56:4a:05:33:88:
64:f1:bd:62:46:4b:ef:84:0a:e4:8d:1b:23:0f:d3:
0f:45:08:fa:20:73:49:2f:2a:98:d8:10:66:9d:82:
c7:08:cd:a0:d0:ad:29:1b:8b:09:15:92:ac:e4:b9:
39:4e:85:4e:de:68:9a:1b:3e:ba:d9:a4:59:69:aa:
0a:bb:18:ec:a5:11:6e:22:07:93:3a:02:37:e3:f3:
1f:60:83:d0:2f:ce:96:41:76:e6:d0:d5:33:2b:53:
53:91:9d:87:4f:d5:54:d3:23:84:8c:db:ca:8f:a4:
e4:b5:14:83:5a:17:1d:af:3a:be:c6:8b:4a:88:e8:
50:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:25:BF:C0:7B:9A:4B:18:AB:D5:41:11:12:AA:F4:13:31:F4:FB:78
X509v3 Authority Key Identifier:
keyid:16:92:60:A0:6D:C8:44:B4:54:C6:00:74:DA:ED:54:E0:9D:58:F0:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpJgoG3IRLRUxgB02u1U4J1Y8Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/ciW_wHuaSxir1UEREqr0EzH0-3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/FpJgoG3IRLRUxgB02u1U4J1Y8Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.212.0/24
Signature Algorithm: sha256WithRSAEncryption
66:97:d7:a5:1d:e0:fb:d9:d2:c7:fb:a1:8f:a9:fd:66:b1:34:
b7:99:c0:96:a1:4f:dc:7d:e9:36:b3:76:aa:3c:c9:06:09:ce:
02:b2:aa:b7:7f:f2:da:31:60:60:b8:84:37:b5:bc:39:9c:e6:
ab:e9:e6:f3:ae:b3:72:b5:fc:63:90:3e:fd:82:58:ab:ac:b9:
a8:e8:57:46:56:36:8f:4f:4e:b8:b9:36:3e:c1:31:2e:73:dc:
28:47:a5:87:83:3e:71:3b:b2:71:59:f9:4d:8a:3c:b3:7b:46:
47:90:20:39:f6:ef:e7:22:14:9d:e6:54:fc:f0:a6:58:39:ef:
30:64:d8:bc:f7:21:3e:38:3e:e8:fe:33:aa:c3:60:34:fe:ab:
4f:f3:30:55:e7:27:38:98:11:ba:2e:3b:eb:9b:17:a4:35:94:
b2:53:da:29:30:f4:4e:48:f1:2b:e3:8a:0a:41:40:cc:04:6f:
ea:fd:71:8d:1e:43:9d:eb:26:c7:81:cc:30:44:fb:8e:73:f6:
fd:44:0d:b4:a6:e8:35:d5:84:85:58:54:5a:b7:6d:46:c5:cc:
d8:41:e9:09:e5:5d:38:0c:31:ae:dc:d6:55:4a:97:df:80:d3:
fc:1a:10:54:9b:9a:df:5c:80:6f:27:50:b8:e1:e1:42:ff:32:
9b:1c:1c:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:44 2023 by rpki-client on console-ams.rpki-client.org