Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/tJ0FiVTTXKMrKozp-DI_YnfAM5c.roa
File: tJ0FiVTTXKMrKozp-DI_YnfAM5c.roa (raw, json)
Hash identifier: 5e9JFD5SYsDR/Zf0NXMxsrjvuNPur2kDrV+LG84KSSI=
Subject key identifier: B4:9D:05:89:54:D3:5C:A3:2B:2A:8C:E9:F8:32:3F:62:77:C0:33:97
Certificate issuer: /CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Certificate serial: 01877A13F725A6A4910407C0E02C1B1B8D52
Authority key identifier: D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/tJ0FiVTTXKMrKozp-DI_YnfAM5c.roa
Signing time: Thu 13 Apr 2023 10:05:41 +0000
ROA not before: Thu 13 Apr 2023 10:05:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42313
IP address blocks: 185.171.146.0/24 maxlen: 24
185.171.144.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 13 Apr 2023 22:26:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:7a:13:f7:25:a6:a4:91:04:07:c0:e0:2c:1b:1b:8d:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d794e81d72f59c65a0d18144a1b2607983536b4a
Validity
Not Before: Apr 13 10:05:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b49d058954d35ca32b2a8ce9f8323f6277c03397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e2:98:61:be:da:c1:66:ec:f5:19:bb:31:71:
0a:66:a7:0d:b0:34:5d:f6:dd:6b:04:19:93:7d:7c:
1d:28:2a:01:4b:91:42:9f:c3:a6:d4:13:47:36:e4:
eb:21:88:43:cf:72:e2:45:0d:bf:61:a1:18:f9:5a:
e4:05:86:57:34:d4:01:23:10:80:a2:4a:6d:94:6f:
a5:16:02:79:c8:4c:e7:01:9b:21:08:46:bc:ee:67:
ca:36:a1:c8:38:c4:95:96:7d:60:c4:b5:af:9c:8f:
37:d2:74:be:83:38:01:5b:3b:99:9e:c1:05:a2:24:
c5:ea:0a:7c:1f:23:bc:f0:42:09:c1:93:e4:47:ac:
d2:ba:67:47:a3:3d:63:87:0b:80:1d:68:e7:49:92:
f6:e4:75:9c:a9:2d:92:17:0e:6f:ea:b7:53:bd:68:
f4:fa:49:51:3d:09:d8:7c:50:9e:a2:37:0f:f9:ff:
97:f5:09:83:c6:f6:81:d9:93:a3:f3:a1:25:b6:21:
5c:5e:78:4f:d7:2f:20:c6:07:cf:73:43:20:54:03:
74:40:20:8b:bd:1b:32:8e:15:58:e2:ca:61:9c:d1:
e4:c0:57:b8:09:cb:6f:4e:81:ea:29:5a:31:88:7f:
9c:0e:2e:f2:0f:a9:f1:6b:d8:fb:65:af:50:85:da:
15:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9D:05:89:54:D3:5C:A3:2B:2A:8C:E9:F8:32:3F:62:77:C0:33:97
X509v3 Authority Key Identifier:
keyid:D7:94:E8:1D:72:F5:9C:65:A0:D1:81:44:A1:B2:60:79:83:53:6B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/15ToHXL1nGWg0YFEobJgeYNTa0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/tJ0FiVTTXKMrKozp-DI_YnfAM5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f6a124-7f01-4e40-b796-cca52b626fca/1/15ToHXL1nGWg0YFEobJgeYNTa0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.144.0-185.171.146.255
Signature Algorithm: sha256WithRSAEncryption
94:b6:02:61:00:10:e0:a1:16:d9:e3:bb:04:ae:a3:85:29:a0:
bc:da:ea:50:2f:28:fd:18:42:7c:ad:ea:fc:ad:c9:6f:fa:c4:
11:f1:c9:6a:26:6a:0d:0b:07:7f:88:d8:ae:48:e2:7d:57:71:
4e:ed:11:54:59:62:72:e3:22:50:86:72:e9:df:77:c9:78:d6:
e1:78:f0:cf:8f:82:e6:6c:b7:68:18:e7:e5:83:05:5f:17:fe:
fe:6f:d8:38:a3:c2:6d:36:a5:79:25:01:45:b4:8c:e7:e5:7a:
1a:ba:aa:7c:ec:8f:fa:1a:07:b2:1f:8d:6d:4d:a6:1b:e1:89:
0b:37:68:14:bc:40:3b:a3:ae:8a:e7:51:44:e2:e5:83:36:34:
ee:bd:51:78:a1:7b:c8:bc:f0:33:d2:ac:a9:87:d9:b5:cc:96:
16:94:4d:34:45:7e:5f:fe:6e:62:6c:78:6b:52:8e:3e:21:9e:
7b:26:b8:7b:62:f7:e6:b2:61:bd:16:2a:ce:d6:c3:73:d2:21:
f9:79:8d:df:23:2b:cb:09:21:05:31:24:8b:63:79:64:e3:e2:
ac:e0:6e:5b:d4:b3:76:44:d9:39:19:16:2d:a4:b1:55:c4:58:
3c:dd:d7:36:c9:41:b3:42:54:4f:37:48:56:68:ea:24:97:3b:
a6:22:30:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:59 2024 by rpki-client on console-ams.rpki-client.org