Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/fBpy_p6ylkhAas3S8vCDgLYNcMs.roa
File: fBpy_p6ylkhAas3S8vCDgLYNcMs.roa (raw, json)
Hash identifier: v5ZBReMnsOmuHOzIpGPPXvYOdxoZCA58NjfG925ueUY=
Subject key identifier: 7C:1A:72:FE:9E:B2:96:48:40:6A:CD:D2:F2:F0:83:80:B6:0D:70:CB
Certificate issuer: /CN=08af091858bb99651764399c6565df7a0834dbad
Certificate serial: 01879A7702DEFDA1038E10BB3065E33E0160
Authority key identifier: 08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/fBpy_p6ylkhAas3S8vCDgLYNcMs.roa
Signing time: Wed 19 Apr 2023 17:01:43 +0000
ROA not before: Wed 19 Apr 2023 17:01:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61101
IP address blocks: 185.41.20.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9a:77:02:de:fd:a1:03:8e:10:bb:30:65:e3:3e:01:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08af091858bb99651764399c6565df7a0834dbad
Validity
Not Before: Apr 19 17:01:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c1a72fe9eb29648406acdd2f2f08380b60d70cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:01:36:6a:21:33:fe:6d:fe:42:09:ba:1b:c9:
58:36:8e:a3:c4:5e:09:0f:a5:a3:7d:06:9d:17:94:
19:13:8c:d6:3c:fd:da:87:66:62:90:2f:82:25:15:
29:90:d7:14:69:7b:5a:95:2a:27:fd:4b:32:dc:8e:
a5:75:23:ab:0c:16:43:ea:d7:0a:cc:72:73:ba:9c:
e9:55:ab:00:88:6c:73:12:ff:b8:55:7a:dd:e0:71:
49:f0:83:99:8a:31:77:77:0d:94:36:0a:7d:d2:c0:
fc:a5:53:64:58:fe:bb:d4:bc:94:e6:64:67:bc:34:
2f:7f:a4:4c:f6:60:4a:3d:41:a9:1e:cf:f7:9b:a1:
ae:35:99:4e:80:a1:d0:af:2c:39:70:a9:bf:da:f3:
3e:4e:a2:12:0d:c9:61:62:df:0e:ff:1f:54:4c:99:
d0:62:b8:f7:30:78:4e:05:8c:41:98:10:1f:80:a0:
03:72:8f:39:c5:58:12:d7:69:b1:25:2d:c9:7e:3b:
84:d5:78:19:fe:f0:80:89:80:22:aa:93:a9:49:c7:
40:e8:88:36:95:9a:24:90:82:48:d3:16:fb:67:f6:
e6:71:c8:ca:7b:b9:a9:2a:00:75:aa:81:a0:98:61:
da:d6:f1:a6:2f:e7:2e:47:e6:b2:89:2d:62:35:0b:
c4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:1A:72:FE:9E:B2:96:48:40:6A:CD:D2:F2:F0:83:80:B6:0D:70:CB
X509v3 Authority Key Identifier:
keyid:08:AF:09:18:58:BB:99:65:17:64:39:9C:65:65:DF:7A:08:34:DB:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CK8JGFi7mWUXZDmcZWXfegg0260.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/fBpy_p6ylkhAas3S8vCDgLYNcMs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/700fd3-c360-48ab-8a06-56129b7dc018/1/CK8JGFi7mWUXZDmcZWXfegg0260.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.20.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:e6:cb:a0:90:8a:fe:ea:46:57:65:90:66:fd:56:8e:4f:78:
ce:c4:37:f1:87:da:1a:01:e8:91:81:59:63:75:80:58:7f:4d:
51:b9:f4:46:56:db:04:64:a4:52:18:d4:e1:92:dc:4c:0d:3e:
34:71:3e:41:e2:06:04:2a:cd:99:4b:d2:78:b1:14:db:c8:41:
6f:03:d3:7f:27:d6:00:46:d9:4b:47:0c:0b:23:3d:f5:f8:22:
ec:28:11:a5:d3:7f:e6:9b:e5:12:19:f0:5e:d3:37:af:49:ef:
a4:6d:d2:02:71:4a:49:e4:37:f5:14:1a:94:80:ad:34:c1:a4:
9b:57:b2:3a:18:4f:1a:29:2b:9a:fd:21:e4:4d:d6:0c:d7:04:
5a:a8:71:46:8e:05:67:70:61:96:c6:4a:cf:a2:fc:06:d5:03:
29:f7:8f:c0:d9:97:59:f6:b7:92:ce:56:55:f6:ec:78:9b:a4:
86:7a:a1:aa:a3:4d:cc:5b:68:7b:c3:07:05:05:09:28:b7:ca:
39:4e:72:c8:cb:05:66:ad:ea:c8:65:c5:69:69:46:35:d1:eb:
9e:7e:81:5f:49:0b:cd:a4:d5:fb:42:ad:25:aa:6b:96:5c:d4:
f7:8e:be:e1:27:39:f6:b9:f7:eb:16:e3:ab:36:02:3f:d4:6b:
5b:9d:bc:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:49 2024 by rpki-client on console-ams.rpki-client.org