Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/T7JANI3mj817ycHRIv4ukc6s7dY.roa
File: T7JANI3mj817ycHRIv4ukc6s7dY.roa (raw, json)
Hash identifier: sRZrNM8YuFtqMgM5Y5Wa2qrJCteXzFNSTGcQRREaLUE=
Subject key identifier: 4F:B2:40:34:8D:E6:8F:CD:7B:C9:C1:D1:22:FE:2E:91:CE:AC:ED:D6
Certificate issuer: /CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Certificate serial: 018D7ED0E4291FE73E4E92332BADFBA05402
Authority key identifier: 0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/T7JANI3mj817ycHRIv4ukc6s7dY.roa
Signing time: Tue 06 Feb 2024 14:27:15 +0000
ROA not before: Tue 06 Feb 2024 14:27:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210893
IP address blocks: 185.210.170.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Feb 2024 16:29:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7e:d0:e4:29:1f:e7:3e:4e:92:33:2b:ad:fb:a0:54:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ff80cbdfe18354a3cfdba2fe079aa2ebc58dcd4
Validity
Not Before: Feb 6 14:27:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4fb240348de68fcd7bc9c1d122fe2e91ceacedd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:74:67:02:14:2f:ac:cc:4e:99:83:8b:a4:70:
7c:59:e3:7b:0d:eb:82:cb:9b:20:55:ea:79:8e:e9:
87:77:d5:86:2b:99:a3:a0:c9:b4:5f:2f:3f:86:51:
0b:9b:23:ae:f8:d0:b8:8c:e3:7b:1b:42:a0:ef:f1:
85:ab:c1:f5:fd:ed:d4:10:ec:6c:0d:d3:38:82:0c:
cb:9b:56:18:c2:2b:0d:ca:3d:ee:cb:b7:9e:16:33:
30:ad:e9:eb:60:26:a0:fa:e4:19:a5:cf:4d:b7:da:
d9:28:cd:2b:85:b5:0e:0e:bd:92:2b:8f:1b:21:85:
61:ed:72:79:d6:14:20:f1:56:18:be:1f:51:01:b8:
b0:06:3f:68:0b:04:6f:0d:77:f6:22:0c:4f:75:4e:
95:c5:84:e8:c7:58:e0:4e:a6:93:30:8c:8b:ec:21:
72:e6:7b:80:b2:f6:4e:da:7b:3e:68:3d:42:be:71:
de:7d:5e:b5:f3:f6:f2:5a:e8:80:d8:7d:a6:2a:f5:
1f:fd:33:04:b6:6b:89:8f:cb:84:a7:1e:02:fc:e5:
bc:9c:96:d1:e9:13:a4:79:d5:8e:1b:de:59:ba:e9:
b0:bc:4a:d4:19:89:3c:fc:04:5e:6c:42:79:47:ef:
94:a4:97:a8:0e:2a:93:f5:94:05:24:03:7e:35:a5:
10:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:B2:40:34:8D:E6:8F:CD:7B:C9:C1:D1:22:FE:2E:91:CE:AC:ED:D6
X509v3 Authority Key Identifier:
keyid:0F:F8:0C:BD:FE:18:35:4A:3C:FD:BA:2F:E0:79:AA:2E:BC:58:DC:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D_gMvf4YNUo8_bov4HmqLrxY3NQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/T7JANI3mj817ycHRIv4ukc6s7dY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/129564-f1db-4dc5-8906-6fcdcd5ab660/1/D_gMvf4YNUo8_bov4HmqLrxY3NQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.170.0/23
Signature Algorithm: sha256WithRSAEncryption
31:ad:b2:91:29:fc:64:1c:37:3f:d7:1a:a5:c4:37:c4:de:5a:
77:f1:45:8c:6c:5b:34:86:87:5b:e7:36:3a:0e:97:50:6f:60:
f1:09:40:45:34:3c:c7:35:b3:8b:30:1c:52:2d:62:d0:23:32:
33:91:a9:1f:b8:7b:70:49:66:81:f2:09:32:af:92:6e:49:4b:
56:d5:b2:c0:ac:31:e3:e3:4e:ba:c5:71:9b:14:de:1e:d7:ba:
fd:32:7e:a7:6d:3e:8b:13:3a:92:78:27:62:fa:98:7f:45:f6:
39:ef:b3:17:eb:94:93:a7:92:eb:2b:cd:ac:05:33:8f:73:33:
92:b1:aa:3c:28:dd:d5:96:67:3e:44:f1:50:18:f1:7d:9c:d2:
14:ee:34:b3:64:0b:2c:3a:c0:de:70:a1:60:13:1e:23:82:bb:
06:ef:fc:40:aa:c7:a7:70:d6:5e:d4:64:d9:37:d5:67:d2:8a:
ee:d1:7d:86:f0:97:6e:a4:22:69:44:c9:f2:d6:42:f1:cc:20:
a1:22:8c:e3:16:69:84:98:d2:39:c2:8d:4d:19:0d:42:0c:0c:
70:78:79:90:e5:01:97:9f:33:98:f9:23:f0:91:4f:47:a5:bf:
b2:84:e7:f7:c5:07:b6:29:6c:49:c3:aa:13:be:70:8a:ad:a9:
28:a5:1f:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 6 21:25:08 2024 by rpki-client on console-fra.rpki-client.org