Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/RwVtpwHKVKxcHQOIfgxGqTaDpcQ.roa
File: RwVtpwHKVKxcHQOIfgxGqTaDpcQ.roa (raw, json)
Hash identifier: jImWNPSOEnXN0OEMlvjL778ZXScNvUPuE6ipKTb43oQ=
Subject key identifier: 47:05:6D:A7:01:CA:54:AC:5C:1D:03:88:7E:0C:46:A9:36:83:A5:C4
Certificate issuer: /CN=cfba970db187d18e19a91e64f00b0d3160860db5
Certificate serial: 01856E78DB3DC4909BAF0A91EF1FE0518536
Authority key identifier: CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/RwVtpwHKVKxcHQOIfgxGqTaDpcQ.roa
Signing time: Sun 01 Jan 2023 17:54:52 +0000
ROA not before: Sun 01 Jan 2023 17:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 22773
IP address blocks: 185.5.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:78:db:3d:c4:90:9b:af:0a:91:ef:1f:e0:51:85:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cfba970db187d18e19a91e64f00b0d3160860db5
Validity
Not Before: Jan 1 17:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47056da701ca54ac5c1d03887e0c46a93683a5c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d8:aa:da:c2:f7:e9:f0:da:9a:f3:fd:a0:e9:
c7:23:58:81:a8:69:50:61:0c:4c:89:70:cd:61:a8:
7d:9b:a5:91:ab:3d:40:e0:53:6e:e1:58:6c:6b:b2:
67:86:93:5b:eb:bb:2b:46:dc:61:2d:83:ee:be:1a:
35:ac:82:b2:5b:83:59:de:ce:67:36:6a:a5:46:06:
a3:06:c6:d7:5f:d1:24:90:54:cc:0e:ee:60:d9:a9:
e0:9e:14:cf:3d:f9:37:70:5d:f3:d7:a1:df:23:18:
67:b6:a8:e2:88:95:ac:2c:17:35:a5:22:67:dd:c7:
fc:32:c8:50:34:df:45:d5:0f:5b:da:94:8f:96:e0:
ec:3d:38:71:18:38:1f:05:26:f4:f8:fc:16:c6:5a:
37:cd:c7:80:75:89:f5:df:21:c6:11:8f:02:e9:b9:
ac:14:b7:29:86:fb:6b:89:15:0b:b8:11:17:e3:b4:
6e:07:cd:a5:d7:95:a4:97:c5:86:a3:0b:e3:39:2f:
af:db:a0:c4:aa:ed:1d:9f:9d:d1:14:77:13:38:c1:
44:8e:71:b5:49:5c:35:19:fd:67:59:b1:c4:22:24:
8c:bf:02:ca:de:ce:a5:b0:30:6b:a7:d6:ac:97:e0:
6f:b9:5c:60:5a:84:16:b9:5d:f3:fb:64:d9:cc:48:
44:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:05:6D:A7:01:CA:54:AC:5C:1D:03:88:7E:0C:46:A9:36:83:A5:C4
X509v3 Authority Key Identifier:
keyid:CF:BA:97:0D:B1:87:D1:8E:19:A9:1E:64:F0:0B:0D:31:60:86:0D:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/RwVtpwHKVKxcHQOIfgxGqTaDpcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/829b02-d326-4c83-93f4-8cc231555e51/1/z7qXDbGH0Y4ZqR5k8AsNMWCGDbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.144.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:fe:7e:98:1f:de:a6:f0:5e:e9:2f:b5:f7:20:02:b8:fc:cf:
70:d4:6c:ff:b4:f6:8d:29:e8:57:3f:a5:55:61:ce:f3:21:d4:
33:85:3d:4c:b2:c1:88:bf:f0:60:c5:b6:62:22:d4:26:7b:2d:
9e:af:d1:6f:dd:b0:7c:91:3e:21:9c:58:d7:3f:70:00:af:13:
3d:20:60:18:9d:9c:f2:f4:6d:77:71:8e:7f:47:03:ee:0d:05:
7f:04:f7:e6:f5:58:73:8a:bf:52:60:00:26:0c:87:f7:d8:05:
8f:43:90:c4:f9:2e:81:eb:b9:b9:f0:9b:06:32:26:f6:8d:1e:
1f:22:b0:99:63:0d:dc:87:31:76:18:89:50:0a:ad:b1:93:d1:
4d:76:6a:60:44:75:53:6b:34:86:16:8f:3b:cb:b2:8a:59:5e:
be:96:9e:9e:e9:89:67:fd:93:25:16:25:5b:bf:3a:48:64:94:
7e:48:24:a9:2a:1c:b6:fa:fd:49:9c:05:a3:66:66:46:90:45:
04:c6:5e:be:15:e0:e4:f2:e8:3e:28:9d:bc:1b:21:de:9b:d4:
2d:ab:62:24:18:2f:b9:14:c6:66:14:42:56:c7:72:db:03:09:
8a:28:db:13:ef:b3:9f:44:a9:5b:37:b8:05:d2:36:80:f5:17:
a0:66:06:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:23:39 2024 by rpki-client on console-fra.rpki-client.org