Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/_bCFIJMmwQwTC32EDOc83lyCzUU.roa
File: _bCFIJMmwQwTC32EDOc83lyCzUU.roa (raw, json)
Hash identifier: dYmYLogJCL6lD45wiZXt2YuqvehZnB9ddA32Plcd4Mo=
Subject key identifier: FD:B0:85:20:93:26:C1:0C:13:0B:7D:84:0C:E7:3C:DE:5C:82:CD:45
Certificate issuer: /CN=56cc7f4ac700bb5ad7f4b21c11111493ff6977a4
Certificate serial: 01857130A1803BA4CBC3D8A73524799C4070
Authority key identifier: 56:CC:7F:4A:C7:00:BB:5A:D7:F4:B2:1C:11:11:14:93:FF:69:77:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vsx_SscAu1rX9LIcEREUk_9pd6Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/_bCFIJMmwQwTC32EDOc83lyCzUU.roa
Signing time: Mon 02 Jan 2023 06:34:50 +0000
ROA not before: Mon 02 Jan 2023 06:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199403
IP address blocks: 185.17.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:a1:80:3b:a4:cb:c3:d8:a7:35:24:79:9c:40:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56cc7f4ac700bb5ad7f4b21c11111493ff6977a4
Validity
Not Before: Jan 2 06:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdb085209326c10c130b7d840ce73cde5c82cd45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f3:fe:2f:d2:3f:68:4b:b2:44:42:dc:39:07:
dd:45:fa:9a:74:bf:a4:53:9f:ff:86:97:aa:38:c8:
bd:89:82:cb:91:ef:d2:bb:56:21:01:18:45:20:e1:
45:2f:1d:9b:01:23:f9:1e:0e:e3:70:cf:60:82:cf:
29:4d:1b:5b:e7:58:63:f8:50:7e:32:46:94:c7:a3:
3a:63:5a:ae:da:a1:b7:2f:b7:d8:28:54:67:c4:21:
14:6f:84:25:90:17:97:08:6d:aa:e5:9e:f6:14:f8:
9f:b5:ed:a7:3a:8c:8d:5b:f0:48:27:98:12:ac:e6:
29:dc:13:c3:97:0b:ab:32:41:22:0e:5c:12:4b:fc:
12:c2:d7:d5:73:8a:52:0c:e7:e2:15:8e:21:b4:bd:
ff:89:f7:5a:5e:ee:da:ed:44:9a:7e:5f:98:92:5e:
1d:37:91:1f:17:ae:ea:c2:f7:e5:24:e0:af:58:ab:
79:8d:2d:96:71:11:ef:75:1d:a4:81:ba:cc:ac:8f:
0f:6c:9e:43:b2:5b:79:ec:35:e0:3b:26:57:ac:46:
80:ab:33:a4:6a:6c:b8:65:8f:8e:ed:f6:ed:18:bb:
8c:8c:f7:4c:48:93:f2:fb:ac:8a:ea:ad:51:bd:23:
f9:95:b6:fa:cd:fc:db:40:ce:3b:54:7f:18:2f:41:
a4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:B0:85:20:93:26:C1:0C:13:0B:7D:84:0C:E7:3C:DE:5C:82:CD:45
X509v3 Authority Key Identifier:
keyid:56:CC:7F:4A:C7:00:BB:5A:D7:F4:B2:1C:11:11:14:93:FF:69:77:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vsx_SscAu1rX9LIcEREUk_9pd6Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/_bCFIJMmwQwTC32EDOc83lyCzUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/09bf98-590d-4ad5-9eb3-9b86bffc833c/1/Vsx_SscAu1rX9LIcEREUk_9pd6Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.208.0/22
Signature Algorithm: sha256WithRSAEncryption
98:d8:da:c3:8b:d1:23:a8:85:e4:20:c0:6e:4c:62:0f:28:95:
27:b5:0f:5c:79:1d:2b:b8:2d:ff:2d:6c:fd:87:b9:f7:a7:c4:
90:e5:a2:fa:e4:21:b1:e5:f0:8c:4e:bd:03:45:1a:a8:47:8d:
f0:31:fb:1b:17:24:02:5b:44:30:fb:fb:4a:3b:65:a1:73:35:
c9:d5:5c:80:0e:08:a7:de:dd:9a:a3:4f:e7:d4:61:47:93:47:
b5:a2:a8:27:be:bc:1c:da:b0:9f:3e:6e:30:a3:af:53:d6:76:
68:c8:02:3a:30:ac:74:f0:1e:7d:e8:27:13:a7:d2:53:97:d9:
b2:3c:46:e3:85:33:4e:8c:e5:62:a6:23:76:24:d7:51:e9:f0:
0a:3c:33:f5:ea:d4:a4:f4:19:15:6c:2d:68:21:d0:3f:51:63:
ce:52:93:6f:71:15:d1:f9:e4:9f:4f:c8:7f:6a:8e:04:2b:0d:
01:5e:79:45:ac:c3:5b:64:da:86:f4:f0:8f:24:f0:ca:4e:c8:
0e:50:5e:9f:f9:83:b3:05:2e:67:03:1e:10:fd:48:1b:6b:72:
cb:9a:ba:69:76:4c:df:a6:ce:c0:e9:dc:cb:11:98:c4:c6:d9:
0b:f5:f0:8f:96:5d:67:a8:90:71:e2:1b:72:51:68:ff:94:87:
19:60:b2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:16 2024 by rpki-client on console-fra.rpki-client.org