Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/0bEMb_lxnIUZVebzxVyjAgmpOto.roa
File: 0bEMb_lxnIUZVebzxVyjAgmpOto.roa (raw, json)
Hash identifier: THYn3Kqw3y9ncT8H2xSj1BV+IIN/sulFkVMiL8h2Vik=
Subject key identifier: D1:B1:0C:6F:F9:71:9C:85:19:55:E6:F3:C5:5C:A3:02:09:A9:3A:DA
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B23CA87989398256E716DC64DDC0D
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/0bEMb_lxnIUZVebzxVyjAgmpOto.roa
Signing time: Sun 01 Jan 2023 18:14:50 +0000
ROA not before: Sun 01 Jan 2023 18:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34962
IP address blocks: 193.38.248.0/24 maxlen: 24
185.255.112.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:23:ca:87:98:93:98:25:6e:71:6d:c6:4d:dc:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1b10c6ff9719c851955e6f3c55ca30209a93ada
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:70:2c:71:5f:e6:23:b3:84:26:b0:96:ef:79:
ae:1d:72:04:a6:0a:d8:7f:d9:fe:4c:e1:02:8f:f1:
43:4f:9c:47:2f:07:04:63:f9:09:dc:44:fc:4a:f2:
a6:c8:30:8c:fc:95:80:4f:ef:49:ab:49:f6:ff:da:
5f:35:83:85:bf:55:d0:bb:2c:7d:e1:d0:c3:50:73:
14:9a:a5:4d:93:7f:69:78:74:32:99:4f:7d:98:b7:
20:be:cb:0f:ae:f0:bb:68:03:31:0d:4d:02:e2:61:
3d:88:1f:ac:cd:f0:55:5a:40:fb:34:1d:c4:c2:18:
34:09:54:17:b4:e0:3e:54:d7:c7:a5:e8:66:46:11:
d6:5f:aa:ea:6a:41:a6:50:cd:4c:a0:9b:dd:d1:bf:
bc:b8:33:7b:30:37:b7:48:c0:56:8d:73:0f:f3:b0:
7d:b6:6b:a6:47:1c:a1:07:19:c1:2d:cf:5b:17:cc:
a3:4f:52:68:0c:55:44:d0:5e:0e:55:20:8f:c6:7d:
e8:73:9b:dd:ed:0a:02:0a:b8:e0:7c:cb:9f:3f:0b:
51:57:6d:49:84:09:42:62:89:3f:cf:7b:ee:5e:7a:
98:6a:c5:cf:f7:b9:d0:e1:95:b6:76:b8:4d:d4:d9:
a6:e9:de:ef:58:c5:54:5d:d3:29:c8:fc:6e:98:ca:
89:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:B1:0C:6F:F9:71:9C:85:19:55:E6:F3:C5:5C:A3:02:09:A9:3A:DA
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/0bEMb_lxnIUZVebzxVyjAgmpOto.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.112.0/24
193.38.248.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:ad:5b:62:74:05:db:59:8f:68:74:4e:08:e1:1f:86:48:9b:
18:7a:5a:34:6e:38:7a:ad:28:ca:9b:58:07:21:d4:28:23:34:
d2:73:47:94:3c:94:b9:7e:a8:3b:12:a0:93:d1:a8:85:b8:43:
a6:e7:68:80:88:0e:d5:7e:e9:e0:3e:e4:ea:cf:9a:0f:80:5c:
ed:7d:95:6b:84:70:14:3f:6f:c8:b2:d8:bc:18:57:da:35:9c:
ae:37:cc:e1:42:1c:79:bf:04:d7:9b:9b:60:19:42:9f:e0:76:
66:6e:da:0a:90:72:b1:f1:bc:4c:8f:ae:a2:a7:cd:1b:ac:ba:
21:8b:ca:1b:7a:c4:d0:4a:4f:33:f3:8c:1e:8e:9b:b2:13:85:
f4:b8:9c:ea:50:4b:d7:71:da:9e:e8:4f:1a:07:1d:76:41:57:
ec:0d:cd:45:2b:2b:18:a2:c8:f3:97:36:11:d2:6f:52:52:29:
8a:b2:ff:c2:12:96:6f:36:59:08:2d:08:84:2e:39:3a:ff:5f:
d4:3c:1a:ed:09:30:1e:c8:fe:e0:0b:f6:b7:82:d4:55:7c:4f:
24:18:ae:eb:e8:bd:05:ff:da:ca:3c:b8:78:ec:04:f9:3a:41:
a0:d4:67:e3:7f:d3:56:08:97:16:89:99:60:dd:f4:76:7a:9e:
82:32:a6:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:27 2023 by rpki-client on console-ams.rpki-client.org