Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/795774-fb9e-413f-9f70-7d3efb4a6a7f/1/7oMqaQrOIAqdsLCEsA9_Bgxx4iU.roa
File: 7oMqaQrOIAqdsLCEsA9_Bgxx4iU.roa (raw, json)
Hash identifier: 6jE+PJpQJFt9JULnnMRbwVaSz0kBM7ynjOwPL4Gu/MU=
Subject key identifier: EE:83:2A:69:0A:CE:20:0A:9D:B0:B0:84:B0:0F:7F:06:0C:71:E2:25
Certificate issuer: /CN=bab232c1d72dc1cabbda16c870ec941d458a9fdc
Certificate serial: 018571FA194830BF13B5F64802FBC7FBAC36
Authority key identifier: BA:B2:32:C1:D7:2D:C1:CA:BB:DA:16:C8:70:EC:94:1D:45:8A:9F:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/urIywdctwcq72hbIcOyUHUWKn9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/795774-fb9e-413f-9f70-7d3efb4a6a7f/1/7oMqaQrOIAqdsLCEsA9_Bgxx4iU.roa
Signing time: Mon 02 Jan 2023 10:14:53 +0000
ROA not before: Mon 02 Jan 2023 10:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41488
IP address blocks: 185.214.80.0/24 maxlen: 24
185.214.83.0/24 maxlen: 24
185.214.82.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:19:48:30:bf:13:b5:f6:48:02:fb:c7:fb:ac:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bab232c1d72dc1cabbda16c870ec941d458a9fdc
Validity
Not Before: Jan 2 10:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee832a690ace200a9db0b084b00f7f060c71e225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:de:16:68:db:8e:c4:d4:4e:41:94:a2:95:06:
bf:e1:e2:9d:b0:c0:0a:16:a3:6e:53:28:15:87:20:
9b:89:b3:5d:07:4d:58:13:88:44:37:c6:38:12:70:
6d:d2:57:ac:83:df:ca:47:2e:50:cc:81:f8:c6:b2:
53:4a:5b:30:15:93:57:f4:0b:b8:c0:2b:ba:70:54:
cb:bf:79:5b:8a:f7:9b:a6:13:3b:3c:97:94:af:55:
66:40:cc:90:0c:b7:1b:d3:0e:c6:5b:60:19:9c:f4:
25:98:e7:fc:ea:b6:17:e5:3f:c0:ac:62:f4:ab:cb:
3c:d0:f5:8c:5f:d2:24:f9:81:89:ef:57:6f:96:69:
64:fb:9b:de:2b:3b:76:ae:c2:cb:52:7a:1e:34:06:
2e:b9:62:f0:c7:dd:3f:1a:4c:30:16:83:03:ba:cf:
be:cd:4e:00:a3:a6:cf:8f:d8:f7:26:74:e4:b7:de:
9f:73:b0:f0:1e:44:d3:d6:52:d0:98:36:4d:77:50:
03:53:7c:2c:a0:25:28:67:76:ff:1f:fe:72:6d:4a:
4d:28:03:e4:cc:e0:dd:47:33:32:0f:20:e1:c7:84:
41:c2:9d:f5:64:f6:b4:4f:ab:96:e0:01:e6:46:eb:
e5:f7:83:fe:f0:00:a9:33:55:30:9f:41:dd:5f:dd:
2e:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:83:2A:69:0A:CE:20:0A:9D:B0:B0:84:B0:0F:7F:06:0C:71:E2:25
X509v3 Authority Key Identifier:
keyid:BA:B2:32:C1:D7:2D:C1:CA:BB:DA:16:C8:70:EC:94:1D:45:8A:9F:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/urIywdctwcq72hbIcOyUHUWKn9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/795774-fb9e-413f-9f70-7d3efb4a6a7f/1/7oMqaQrOIAqdsLCEsA9_Bgxx4iU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/795774-fb9e-413f-9f70-7d3efb4a6a7f/1/urIywdctwcq72hbIcOyUHUWKn9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.80.0/24
185.214.82.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:fe:be:b7:70:e0:19:7e:6d:a2:65:36:b4:b7:cc:53:31:41:
0f:b0:39:e0:6a:9b:6f:ee:1a:ce:7e:57:08:b9:dc:a2:96:85:
07:72:01:44:db:8c:c7:ee:7f:4b:96:a8:14:e8:4a:d9:0c:2c:
07:7a:e8:80:f7:a7:c7:34:98:d3:aa:39:0c:e3:dd:a6:f7:62:
25:de:81:d7:8f:1b:69:89:c9:77:6a:68:82:c6:f9:06:fd:77:
95:8b:15:00:3a:84:f1:4f:6b:cf:a8:26:1a:3b:96:24:5a:56:
e2:b2:a8:bf:8a:c8:56:9a:45:28:c4:23:b6:cc:cf:5d:76:ff:
74:1a:dd:ad:db:73:82:fb:5d:5f:98:cb:39:9a:97:c5:ff:b3:
e3:43:3f:05:ec:84:b8:7b:16:b9:b4:43:da:a0:0b:b9:42:48:
cf:f7:90:53:07:14:d3:a7:84:97:20:43:61:0c:8a:a6:22:46:
12:a4:da:e0:5f:b0:32:83:27:6b:cb:fa:1f:23:f2:f5:ff:8a:
6f:86:84:aa:c8:a6:2f:99:d3:d5:97:02:b3:42:11:24:88:48:
96:68:d6:36:89:e9:ca:8f:a3:8c:9e:25:07:e2:8b:b8:e1:03:
a6:55:65:27:7c:a8:a0:77:81:1c:a1:8d:6c:8c:c2:9c:e9:81:
a4:fd:fb:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:34 2024 by rpki-client on console-ams.rpki-client.org