Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LtKrht5VGqxw54UooH7BSrUJKqI.roa
File: LtKrht5VGqxw54UooH7BSrUJKqI.roa (raw, json)
Hash identifier: IIys8zBJNpwjazqEQNBjCPC7yfghmDU5vkhlEHrDGg0=
Subject key identifier: 2E:D2:AB:86:DE:55:1A:AC:70:E7:85:28:A0:7E:C1:4A:B5:09:2A:A2
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018943EE82E6BF24EF90BF60F8F7F26CD09A
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LtKrht5VGqxw54UooH7BSrUJKqI.roa
Signing time: Tue 11 Jul 2023 07:50:51 +0000
ROA not before: Tue 11 Jul 2023 07:50:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208911
IP address blocks: 185.252.176.0/24 maxlen: 24
94.156.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:43:ee:82:e6:bf:24:ef:90:bf:60:f8:f7:f2:6c:d0:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 11 07:50:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ed2ab86de551aac70e78528a07ec14ab5092aa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dc:bf:f3:d0:ac:52:a3:52:68:1c:bf:e1:81:
a1:ed:da:2a:f7:cb:e9:36:eb:07:f7:9d:89:be:38:
90:d2:d7:e9:de:c7:c8:3a:aa:24:1b:c8:9b:0f:91:
c8:a9:c4:fe:ee:3f:8a:c5:51:a2:ef:77:df:db:0e:
16:27:d4:62:21:a6:56:aa:72:93:d4:cd:f8:d7:bf:
72:d5:65:44:82:7b:bb:39:b9:c5:b8:b2:97:94:83:
cf:a5:fd:5c:24:d5:42:8d:c8:40:a1:00:02:e1:7e:
4e:b4:4f:ce:ce:68:01:d4:b4:a7:23:1e:21:97:12:
cd:ca:15:5d:b0:08:5d:28:81:57:9d:df:e7:da:d7:
a4:59:ac:c5:87:d3:7b:30:57:9d:32:10:2e:08:b0:
ed:32:22:c0:57:04:20:10:f7:75:f9:9d:72:ef:41:
47:75:75:80:c8:ff:44:8c:ae:24:0e:21:b5:72:be:
b0:48:f3:a3:4f:28:40:92:63:1a:71:95:f9:0b:e5:
b9:c2:ea:99:80:b6:e8:01:c4:c5:dd:0a:a0:59:ec:
8d:72:6c:3a:09:72:14:2c:3c:ac:46:1a:9e:27:ed:
6b:86:4c:c4:b3:85:a5:a4:ed:0e:ad:1b:b8:70:73:
8d:ee:64:27:68:74:5e:e3:76:4c:77:58:e9:05:2b:
36:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:D2:AB:86:DE:55:1A:AC:70:E7:85:28:A0:7E:C1:4A:B5:09:2A:A2
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/LtKrht5VGqxw54UooH7BSrUJKqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.78.0/24
185.252.176.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:1f:a9:f9:1c:cc:09:72:15:32:98:c4:1a:1d:ca:cd:f8:d2:
4e:37:e9:1f:29:8b:8a:61:c2:67:32:fa:fc:2e:d2:b5:f4:85:
7e:cb:81:e7:61:a5:8f:0c:d8:47:5b:d0:04:94:ee:d1:47:de:
6a:d1:ba:04:b7:82:66:4f:f2:cf:7d:f2:ed:cb:37:04:79:1c:
e0:6a:08:c1:6d:53:a8:96:80:7b:af:12:06:4f:37:15:dd:fa:
10:71:7b:b1:8f:e0:ad:70:c0:f5:a0:cd:20:42:60:0f:d0:47:
a3:b6:e4:1c:40:b2:a4:c0:36:83:f2:cc:63:18:7f:b6:0d:7e:
7e:a1:62:8a:0c:c3:42:ce:7c:cf:a8:a5:c3:6d:fb:a0:bc:48:
24:da:25:65:c9:1b:88:e3:e6:e2:72:33:a2:15:b7:ff:ab:b0:
cd:5c:09:fd:85:fc:0a:58:9e:0f:1b:30:87:8d:8c:c9:e5:41:
23:24:a6:f4:86:df:f2:9b:5f:11:11:91:86:5f:17:85:f7:0c:
92:3a:5a:95:89:34:89:86:75:ff:f9:86:2d:bb:f0:39:76:8f:
06:b6:ea:af:31:2c:2d:9c:78:b8:da:bf:08:13:90:2d:b3:ff:
60:c3:ee:92:52:9d:03:80:5c:bc:4f:5b:c2:9e:9a:ba:3c:72:
9a:c0:d9:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 2 06:29:45 2023 by rpki-client on console-ams.rpki-client.org