Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rgUSMkuU1v71UgSd8k3z1howXvM.roa
File: rgUSMkuU1v71UgSd8k3z1howXvM.roa (raw, json)
Hash identifier: lDJoQbTIUQGqxm1oYics+wzJdPu/sqSX61nD+xTNHUQ=
Subject key identifier: AE:05:12:32:4B:94:D6:FE:F5:52:04:9D:F2:4D:F3:D6:1A:30:5E:F3
Certificate issuer: /CN=ad3b529c9dc9526f099bf16ac89dcc8adfe18240
Certificate serial: 0187B2570AD478240D941C5D91D1CCEB64AA
Authority key identifier: AD:3B:52:9C:9D:C9:52:6F:09:9B:F1:6A:C8:9D:CC:8A:DF:E1:82:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rgUSMkuU1v71UgSd8k3z1howXvM.roa
Signing time: Mon 24 Apr 2023 08:17:41 +0000
ROA not before: Mon 24 Apr 2023 08:17:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43366
IP address blocks: 185.161.140.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b2:57:0a:d4:78:24:0d:94:1c:5d:91:d1:cc:eb:64:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad3b529c9dc9526f099bf16ac89dcc8adfe18240
Validity
Not Before: Apr 24 08:17:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae0512324b94d6fef552049df24df3d61a305ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:20:02:41:09:18:36:69:03:f8:1b:1c:5c:d0:
c0:64:cc:0e:63:4e:3a:70:38:dc:51:c7:41:08:5f:
b9:19:fa:64:17:e4:7f:3f:3d:8f:f3:d0:73:d3:78:
52:f9:b0:12:d4:b4:03:69:84:f3:04:2a:be:08:e1:
3e:1e:76:cf:5e:04:64:d3:8b:e2:ea:7d:33:b1:1d:
db:71:a5:79:3c:a4:48:b9:12:6e:ab:ab:4b:06:12:
bd:39:fb:81:5b:5f:ab:a8:34:42:c3:9b:ff:b4:41:
fe:d6:2f:bc:4e:ba:64:c4:32:1b:e8:f0:ab:7d:e9:
90:01:d5:ee:1a:9d:3d:2c:54:bb:ff:ad:d3:0d:af:
cd:99:7c:cf:94:6b:f3:88:9f:d0:0b:b5:72:6d:5e:
33:0b:48:b1:e0:0e:e2:4e:1f:ec:8c:4b:f0:02:d6:
e9:d4:82:8e:1a:29:dd:b1:98:9b:b2:00:b7:9c:63:
6b:63:e9:78:4a:d1:f7:74:bc:80:00:6f:47:2b:bc:
d7:ea:cc:84:ef:f6:a8:1d:1d:d9:cd:2b:db:11:c3:
a8:43:c6:7c:42:53:cc:2c:f1:08:6a:db:a7:3f:35:
20:fe:65:6d:2e:dd:ee:40:3a:0c:e0:34:63:f9:fd:
c0:be:90:6e:e2:ee:92:3a:7c:4f:f3:04:b2:0f:5f:
ef:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:05:12:32:4B:94:D6:FE:F5:52:04:9D:F2:4D:F3:D6:1A:30:5E:F3
X509v3 Authority Key Identifier:
keyid:AD:3B:52:9C:9D:C9:52:6F:09:9B:F1:6A:C8:9D:CC:8A:DF:E1:82:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rgUSMkuU1v71UgSd8k3z1howXvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/a63fd8-9b36-496d-b6e2-b20ebe595475/1/rTtSnJ3JUm8Jm_FqyJ3Mit_hgkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.140.0/22
Signature Algorithm: sha256WithRSAEncryption
40:82:d8:75:1d:60:db:5e:a2:44:e2:48:27:09:33:1a:36:38:
ac:c1:da:84:b1:c4:8d:fd:a8:ec:b8:13:ee:8e:35:94:0c:a6:
6c:2e:c4:a4:75:1b:b3:e6:f4:00:d6:ba:91:42:39:0b:d6:67:
7f:93:6d:c4:8e:73:01:26:48:bc:e9:d8:43:fc:a9:a6:ae:2e:
32:03:44:61:88:89:3e:8d:ce:e6:b6:04:e5:23:5d:0e:a6:b2:
e7:89:a8:ad:be:29:51:20:80:bd:a2:af:5e:fb:9c:5b:59:91:
7e:4f:aa:89:3e:49:31:dd:bf:3b:3c:f8:62:88:96:69:62:b8:
28:a0:80:06:db:ba:62:5d:00:31:02:7a:e5:e5:c6:bf:0e:9c:
ce:3d:fa:5a:75:0c:d8:0a:ac:6b:81:5b:2e:ea:49:de:a8:ad:
d8:6f:70:eb:c3:70:14:83:ff:2d:80:df:c0:28:3b:78:d4:1f:
8a:2c:11:ea:b3:b1:83:f8:5d:78:43:da:cd:8b:2b:51:49:5e:
f5:99:ce:5b:8a:66:d1:92:5a:5c:ff:8b:89:fb:97:e7:49:08:
b4:32:9d:1c:c0:64:e0:74:9a:fe:d9:9d:b6:d4:d7:7e:d6:71:
ec:5e:62:43:3c:73:8b:33:c7:b8:be:dd:c7:b3:db:05:cf:58:
4c:6a:8e:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:03 2024 by rpki-client on console-fra.rpki-client.org