Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jdkguDQmjscakMRrTscP3nCgicA.roa
File: jdkguDQmjscakMRrTscP3nCgicA.roa (raw, json)
Hash identifier: LfAnzd5QjOBjRaVkRk7ByaL7QvymP22IDeaA9OOYfvs=
Subject key identifier: 8D:D9:20:B8:34:26:8E:C7:1A:90:C4:6B:4E:C7:0F:DE:70:A0:89:C0
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0188C4216BB60B0F76D308BE925FA61416C7
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jdkguDQmjscakMRrTscP3nCgicA.roa
Signing time: Fri 16 Jun 2023 12:15:04 +0000
ROA not before: Fri 16 Jun 2023 12:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57097
IP address blocks: 185.72.11.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:c4:21:6b:b6:0b:0f:76:d3:08:be:92:5f:a6:14:16:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 16 12:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8dd920b834268ec71a90c46b4ec70fde70a089c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:92:81:0c:53:5b:7c:7b:06:10:6b:ba:e3:b8:
d7:70:d6:05:17:05:f7:84:85:89:8a:3f:ff:f8:80:
1f:42:05:d1:35:bb:7a:31:4f:eb:0d:4d:c6:0f:00:
f8:85:16:33:c4:5d:80:4c:c0:22:1b:8a:1f:e2:7c:
60:47:2d:a2:fd:19:12:a4:3e:6a:45:ec:7f:fc:6c:
fb:4e:3b:b6:f3:7a:24:ac:50:7b:de:08:bd:ce:4f:
4a:2d:ae:d9:7d:47:a7:c2:e6:d9:2c:ab:07:96:f6:
8a:eb:bc:60:cf:d8:e4:81:16:03:67:41:dc:91:f2:
92:5a:ea:41:a1:03:ba:82:ad:d2:a1:c8:60:24:e5:
be:42:22:4b:a5:b6:d8:7d:06:f0:96:63:e4:45:68:
86:e1:b0:73:d4:45:b2:1f:b5:57:f7:69:c3:4d:5c:
ae:b6:69:e3:8e:b4:ca:b2:2f:ed:49:dd:f6:3d:c2:
1e:cf:49:fe:49:45:b5:dd:c7:d7:b5:04:f1:a3:dd:
86:8c:9f:e8:23:e3:2e:ca:58:30:a7:c8:24:b1:67:
06:3f:bb:5c:a3:7b:28:39:4f:10:e5:f7:e2:7a:4c:
25:25:b0:94:38:11:dc:6a:3f:eb:31:df:43:2b:52:
b0:a1:d3:5f:98:6e:00:52:74:ba:0b:49:e4:a3:41:
9b:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D9:20:B8:34:26:8E:C7:1A:90:C4:6B:4E:C7:0F:DE:70:A0:89:C0
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jdkguDQmjscakMRrTscP3nCgicA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.11.0/24
Signature Algorithm: sha256WithRSAEncryption
81:b9:29:2c:2c:1f:65:f3:eb:6e:29:f4:81:23:ec:9c:ba:33:
38:7a:52:38:d7:55:11:66:c1:75:4d:49:e7:ae:ca:49:60:48:
1e:80:03:52:ca:82:31:1b:30:4e:43:1b:64:80:5b:0c:19:d7:
80:55:c4:05:7a:50:d9:de:b7:9c:c7:cd:2c:ca:85:f2:b3:4c:
ea:22:93:ad:a6:65:3e:5b:de:91:89:9d:69:48:d2:ce:9c:bf:
7a:b5:3e:09:40:d3:b3:61:28:2c:11:0d:42:36:51:7d:e2:7e:
f0:4f:4e:c3:99:a1:43:96:d8:3b:50:d4:f6:05:95:7c:5e:63:
6b:fa:16:09:df:e2:f0:7b:06:9c:82:7c:73:29:eb:f5:e7:25:
6b:96:ea:f0:64:c4:02:c6:3a:f1:d0:db:6c:dd:d4:82:41:47:
47:b3:52:5a:ba:b0:16:f4:97:97:7a:e1:a2:7f:6b:5f:47:5b:
60:26:13:05:21:9c:1a:27:fb:30:91:86:9d:a1:bf:47:8f:0e:
81:f1:61:4a:df:d8:31:57:0a:66:17:3f:e4:6b:d1:a4:ba:71:
53:3c:f4:7b:41:0e:35:fc:1d:fd:2c:0f:83:f3:6c:4b:90:22:
1f:ee:a9:14:a4:e2:95:fa:df:52:32:d1:46:01:e5:f7:b8:f0:
08:36:eb:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:04 2023 by rpki-client on console-ams.rpki-client.org