Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d7zOMkkXhSUYfbyb6LWPwuH4OMU.roa
File: d7zOMkkXhSUYfbyb6LWPwuH4OMU.roa (raw, json)
Hash identifier: n4DiVcCUlKxzUmr9oxg89jgYT7Kg1pfjQItQUSpdmAs=
Subject key identifier: 77:BC:CE:32:49:17:85:25:18:7D:BC:9B:E8:B5:8F:C2:E1:F8:38:C5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81FB85569C7DE7F6BEBA07B72B535D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d7zOMkkXhSUYfbyb6LWPwuH4OMU.roa
Signing time: Sun 01 Jan 2023 13:25:13 +0000
ROA not before: Sun 01 Jan 2023 13:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196945
IP address blocks: 185.221.65.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:fb:85:56:9c:7d:e7:f6:be:ba:07:b7:2b:53:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77bcce3249178525187dbc9be8b58fc2e1f838c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:97:d6:40:2c:93:49:ba:f3:4d:df:18:b5:cc:
79:54:a4:0c:17:ef:4d:91:7f:cb:da:6a:83:d1:12:
f8:e3:e2:26:ce:3c:46:a4:6b:96:5d:29:70:90:10:
07:56:92:31:5e:ee:e7:da:c1:2e:0c:bc:37:ac:b8:
d1:c1:02:74:a5:00:54:20:be:1a:d7:42:f6:6a:67:
fc:f4:8e:21:a8:12:13:55:df:29:40:0a:91:67:a5:
9d:82:ee:cb:b2:a2:80:c7:54:36:99:bc:87:34:a4:
ea:03:37:d0:c8:cd:b1:22:99:4a:79:30:ac:0e:a2:
73:09:91:a8:ed:8c:04:5e:6c:44:fc:3a:92:bb:29:
e7:37:11:15:a5:a5:52:74:5a:68:37:65:31:9d:b8:
b3:5a:6d:2d:6a:e8:df:47:e9:be:b3:06:e7:79:16:
c4:70:21:2d:0a:72:f4:eb:c3:89:84:e8:42:7f:1c:
22:f9:82:e6:38:bb:32:31:99:69:65:e2:c0:66:bb:
d3:43:e6:9d:af:b9:07:b8:de:51:26:94:19:bd:2e:
27:fb:f7:b1:7f:82:e6:a1:1e:67:c7:2b:9e:d7:d3:
2f:75:b3:4b:94:7c:1e:b6:62:8c:6f:f2:90:42:fa:
e3:d0:b8:07:b5:4e:b5:95:87:aa:6e:25:74:af:74:
48:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BC:CE:32:49:17:85:25:18:7D:BC:9B:E8:B5:8F:C2:E1:F8:38:C5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/d7zOMkkXhSUYfbyb6LWPwuH4OMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.65.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:29:0e:7f:b5:af:e3:15:f1:87:19:81:55:da:2d:c9:e7:35:
f2:04:5a:70:ed:4e:ef:5b:ce:75:d4:5f:97:b3:00:2f:83:b1:
a3:5c:15:f6:5a:45:29:d9:cf:39:dc:2d:9b:5b:de:24:8b:4d:
68:a6:57:1b:6b:07:da:fd:14:40:32:fa:59:ab:ac:ca:0f:32:
2d:4a:ff:23:95:4f:04:d6:ca:f9:66:1d:3e:80:07:98:7f:6f:
18:bc:50:d9:3d:18:f1:06:8b:d8:db:08:a0:ec:6c:aa:4b:7e:
f0:ee:4f:6a:50:29:87:1f:6b:f9:ce:d3:ec:60:87:01:83:83:
21:25:8c:5b:f7:4e:4e:ca:c3:71:55:0e:5c:86:8a:a8:ac:6f:
92:95:02:e7:3f:09:d3:34:d7:c6:49:7f:af:fd:e7:e2:d8:95:
dc:51:77:00:87:89:13:c0:45:3a:b6:de:37:dd:4a:9f:66:fa:
e4:71:13:45:22:b1:4e:bf:22:3f:54:e2:f3:f7:11:62:a8:f9:
76:b2:27:93:b3:e8:a1:78:29:d0:84:d5:e7:b8:2f:f8:55:ef:
bd:65:87:e5:cb:58:aa:55:5b:32:2d:52:e4:3f:09:fa:d3:4e:
c9:bc:1b:42:27:65:0e:6b:dd:df:14:ca:36:ab:b8:26:d2:59:
0f:47:61:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:48 2024 by rpki-client on console-fra.rpki-client.org