Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/8I3iXWmGksmCV7_jGfXZlH8Ncx8.roa
File: 8I3iXWmGksmCV7_jGfXZlH8Ncx8.roa (raw, json)
Hash identifier: C7IhWEl/OFoU1MpBlz8nV/a+meAjeKN9bdrKrH40fkE=
Subject key identifier: F0:8D:E2:5D:69:86:92:C9:82:57:BF:E3:19:F5:D9:94:7F:0D:73:1F
Certificate issuer: /CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Certificate serial: 018BB0F5BF86546018DC80AD19DFDC4EFA6F
Authority key identifier: 65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/8I3iXWmGksmCV7_jGfXZlH8Ncx8.roa
Signing time: Wed 08 Nov 2023 22:02:57 +0000
ROA not before: Wed 08 Nov 2023 22:02:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205147
IP address blocks: 185.8.97.0/24 maxlen: 24
185.8.98.0/24 maxlen: 24
185.8.96.0/24 maxlen: 24
185.8.99.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b0:f5:bf:86:54:60:18:dc:80:ad:19:df:dc:4e:fa:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=658c0c499a8e69d9795f4bd0b5bf1682b1f00f9a
Validity
Not Before: Nov 8 22:02:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f08de25d698692c98257bfe319f5d9947f0d731f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:75:59:c5:32:df:7b:c6:6d:5b:59:3c:cc:57:
2b:c9:d5:23:d3:73:c8:3f:d7:6d:ab:ea:81:d2:06:
62:43:34:b2:46:cb:b5:f9:aa:b7:0e:a1:06:ad:83:
48:e3:4d:c1:c4:2e:bf:5d:47:7d:84:03:4d:72:43:
50:3d:60:2f:23:0d:15:6f:90:92:49:85:da:fc:75:
e4:ba:c7:07:2f:09:6c:bb:52:c4:79:6d:f0:24:02:
57:cc:a4:ec:88:3d:6c:10:95:24:a8:47:35:64:67:
27:35:69:ae:b0:31:f4:6c:3d:dc:3c:92:36:3a:62:
7c:a6:d1:24:32:d2:65:38:ae:e8:92:c8:43:ec:43:
ef:7c:20:38:bd:70:6f:d9:69:ac:7b:41:d9:59:23:
c4:a5:fe:f0:ce:f4:bc:35:3b:13:80:fc:17:d0:9a:
87:6c:51:ca:d5:f0:a1:68:c7:3c:34:42:2e:97:25:
3a:8f:64:37:42:ad:59:8a:96:3a:54:a7:c3:0c:1f:
16:af:4e:c4:ca:24:84:52:dc:43:53:cd:8d:b0:0a:
6c:52:07:05:9d:4c:84:4d:20:ca:ea:ca:c4:9b:45:
60:91:02:b0:ac:d2:53:6e:bc:42:5f:4a:90:fe:50:
ad:56:3a:68:dd:67:eb:d2:db:59:61:b5:a9:23:ce:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8D:E2:5D:69:86:92:C9:82:57:BF:E3:19:F5:D9:94:7F:0D:73:1F
X509v3 Authority Key Identifier:
keyid:65:8C:0C:49:9A:8E:69:D9:79:5F:4B:D0:B5:BF:16:82:B1:F0:0F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYwMSZqOadl5X0vQtb8WgrHwD5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/8I3iXWmGksmCV7_jGfXZlH8Ncx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e66913-8f5f-47ef-a730-32c1b2cee593/1/ZYwMSZqOadl5X0vQtb8WgrHwD5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.8.96.0/22
Signature Algorithm: sha256WithRSAEncryption
63:03:10:c1:a1:09:24:c2:50:63:cd:26:b4:a2:b5:7b:e3:32:
f2:8f:c8:0a:1d:6f:a1:00:69:cf:0a:2b:d2:92:28:93:d1:99:
50:6c:02:d2:e0:1b:28:cc:c5:8f:9a:24:49:1b:b0:9e:62:c8:
40:13:49:e8:38:7d:ff:ae:07:e7:78:5a:a1:66:a6:f9:8e:e5:
7e:ac:c7:58:f9:4c:75:6a:31:ff:16:9c:6b:a0:a1:a8:51:46:
f4:6f:ff:b6:ee:22:92:9c:ea:c6:7a:c0:f9:30:a0:18:97:45:
af:41:0c:3f:89:29:da:a1:c8:17:15:a4:02:fe:f6:32:ee:ad:
c2:6c:27:a3:bb:a5:44:9d:96:94:1b:6d:05:2b:00:f3:74:be:
61:4b:57:10:81:e1:cd:ec:c4:17:b3:6a:99:aa:92:9e:ee:fd:
ca:1b:bd:78:35:80:9a:ec:fa:0b:29:e9:4e:40:5a:3b:ea:51:
ea:40:f9:f3:a9:a7:f0:1a:ef:16:a4:a3:f8:4e:2c:3f:4b:d2:
ba:7a:4f:d8:0f:7c:c2:9c:a4:f4:f6:64:7a:44:0e:4a:00:35:
f6:19:b9:f7:ae:c6:9a:89:d5:a2:0a:7c:7d:d0:74:79:46:17:
b6:11:f0:c9:96:86:e8:06:73:90:75:42:df:2c:3f:bd:da:39:
d4:52:7a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:52 2023 by rpki-client on console.sobornost.net