Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/C8xIgCGgdbHhOFOQa9kE9ITaQgY.roa
File: C8xIgCGgdbHhOFOQa9kE9ITaQgY.roa (raw, json)
Hash identifier: n2iZaPDRwEvwWuyc9y3pNcfjmIcYSws8n8ULV1pTjA4=
Subject key identifier: 0B:CC:48:80:21:A0:75:B1:E1:38:53:90:6B:D9:04:F4:84:DA:42:06
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 0185D00BE2F97EE81B811FB86A63AD0C02D9
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/C8xIgCGgdbHhOFOQa9kE9ITaQgY.roa
Signing time: Fri 20 Jan 2023 16:38:38 +0000
ROA not before: Fri 20 Jan 2023 16:38:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.155.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Jan 2023 10:14:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:d0:0b:e2:f9:7e:e8:1b:81:1f:b8:6a:63:ad:0c:02:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Jan 20 16:38:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bcc488021a075b1e13853906bd904f484da4206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:96:d4:60:18:51:e3:44:a1:50:33:77:73:e8:
ba:f6:e5:73:63:aa:b6:bc:68:19:7f:a1:a4:e2:f1:
f4:eb:08:ff:cb:c1:f3:38:f1:81:36:0a:60:3f:a2:
fe:6d:d9:ef:2b:1a:32:66:50:67:97:fc:c3:17:6d:
33:ae:10:52:c4:00:64:9d:18:15:b2:2f:5f:7f:e4:
8b:1c:e3:99:e6:2b:42:34:ed:2d:6f:9c:78:c1:06:
74:0f:02:d6:ca:eb:4e:16:42:34:a8:e4:24:df:71:
9d:fa:8a:1c:7a:42:fa:c9:d6:01:76:26:bb:26:ca:
5d:22:43:24:fa:d6:d6:02:83:34:bc:d6:22:0b:f8:
cc:5a:e0:5a:90:b8:f7:d9:d1:92:07:3e:4d:1a:bc:
ec:58:02:36:f7:2e:a4:4f:1e:10:c4:58:46:f7:3f:
76:d9:7a:86:19:56:e3:c5:fe:9b:ab:5a:29:44:ee:
40:b5:0e:a0:18:6f:21:9b:b9:f4:23:6f:0d:64:88:
73:93:0c:21:2d:f1:ff:27:76:63:1a:5f:7e:56:08:
9c:51:97:c3:5f:61:7c:6c:39:56:30:35:bd:58:5d:
05:6b:2a:9d:0b:90:91:d8:5b:d5:8b:6a:50:d5:b7:
4d:62:e8:03:51:d1:ef:ad:04:91:f4:61:c5:99:21:
c4:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:CC:48:80:21:A0:75:B1:E1:38:53:90:6B:D9:04:F4:84:DA:42:06
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/C8xIgCGgdbHhOFOQa9kE9ITaQgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.232.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:2c:cb:b9:63:9e:bd:4d:05:e0:43:03:e6:ab:86:05:13:6a:
e1:03:bd:09:1d:6c:ab:5b:93:d4:ae:fe:2b:43:80:f6:f1:e1:
3e:d8:15:b1:39:8b:77:35:71:ac:6a:aa:45:59:f0:21:6a:b7:
96:d8:96:f2:32:36:4a:a6:a5:23:57:d3:43:6c:5b:94:46:31:
7e:19:e8:19:70:2b:cf:8b:5b:fe:d6:b1:ba:01:65:ef:f1:96:
2c:21:92:84:20:bd:71:c8:7c:9d:2b:00:e5:5b:c6:c4:23:15:
e9:2e:d5:f2:11:f0:3d:91:dd:fc:d1:cd:78:c3:fd:65:3c:34:
54:84:41:2d:1e:6b:46:95:ee:dd:c3:40:7b:f3:3b:7c:63:e9:
14:62:a6:c5:a5:33:47:70:9e:c4:e6:17:f1:83:a8:39:12:5d:
24:e8:03:5e:62:31:6e:16:d6:66:89:a6:cb:63:53:61:aa:c8:
56:0e:3d:00:83:9d:12:2f:b2:f2:94:1d:a0:a2:6c:cf:9a:af:
8f:3a:da:cc:74:2b:c8:ac:07:98:d9:d7:6e:94:e8:ca:d9:09:
d8:cb:fd:7c:c4:c2:e2:e4:e0:be:1b:c8:52:71:98:50:8c:cb:
0c:01:e2:f1:f1:03:fd:3c:b9:44:71:c2:2e:ec:30:5a:88:43:
aa:a3:3e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:02 2024 by rpki-client on console-ams.rpki-client.org