Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/z0YpoYTRZhmVGc_gjcdkSegTUhU.roa
File: z0YpoYTRZhmVGc_gjcdkSegTUhU.roa (raw, json)
Hash identifier: kxxO4SUZ1AZLiZEwKEQqcYrt4zmnmf646yHnlKZ7Bfs=
Subject key identifier: CF:46:29:A1:84:D1:66:19:95:19:CF:E0:8D:C7:64:49:E8:13:52:15
Certificate issuer: /CN=da0389d85ea126e0efbebc5d8459ef709fb895cb
Certificate serial: 01856B37A967BC2A82571BA86A0E47AE5AE6
Authority key identifier: DA:03:89:D8:5E:A1:26:E0:EF:BE:BC:5D:84:59:EF:70:9F:B8:95:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/z0YpoYTRZhmVGc_gjcdkSegTUhU.roa
Signing time: Sun 01 Jan 2023 02:44:48 +0000
ROA not before: Sun 01 Jan 2023 02:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60446
IP address blocks: 185.112.74.0/24 maxlen: 24
2a10:5540::/33 maxlen: 48
2a10:5540:1::/48 maxlen: 48
2a10:5540::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:a9:67:bc:2a:82:57:1b:a8:6a:0e:47:ae:5a:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da0389d85ea126e0efbebc5d8459ef709fb895cb
Validity
Not Before: Jan 1 02:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf4629a184d166199519cfe08dc76449e8135215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:5a:7e:28:1a:58:1c:72:b7:8a:0e:ea:d1:49:
12:dc:c9:2a:09:b6:14:b8:91:0c:54:6f:16:56:d4:
d7:c6:6f:c6:67:89:a9:ff:e9:76:68:0e:07:bd:ca:
59:b3:a8:97:fa:fb:7f:bf:c0:a3:55:27:9c:5f:b0:
2a:9c:8f:70:48:af:8d:d8:48:0e:ff:a2:28:17:7d:
56:74:20:04:ac:fd:be:ea:6c:9b:20:3d:1a:ec:22:
9e:11:b6:0b:75:04:d8:93:68:97:55:60:bf:47:97:
60:6a:38:cf:64:74:2c:31:0a:81:8e:d5:18:19:2f:
e8:73:fc:0b:77:5f:ca:98:77:2c:a9:d1:29:24:89:
e6:ca:49:4e:f7:24:22:e5:e0:29:8a:99:7e:19:e9:
46:2e:30:f9:89:a9:47:28:50:de:38:27:09:cd:21:
2b:a8:d6:1c:9d:d8:f7:af:7e:bf:fc:21:75:ee:cf:
0f:61:6d:63:a1:ae:7a:f0:95:9c:d0:4c:21:bd:96:
06:ef:46:b1:82:85:b3:53:48:cc:79:49:e0:d8:c9:
c7:29:45:bb:03:dd:1c:e7:ec:53:21:20:0e:6e:75:
85:c9:40:b9:36:95:21:df:4b:7e:99:33:09:8c:8a:
59:04:4a:13:10:d5:7c:dc:26:69:18:01:90:7b:87:
d1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:46:29:A1:84:D1:66:19:95:19:CF:E0:8D:C7:64:49:E8:13:52:15
X509v3 Authority Key Identifier:
keyid:DA:03:89:D8:5E:A1:26:E0:EF:BE:BC:5D:84:59:EF:70:9F:B8:95:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/z0YpoYTRZhmVGc_gjcdkSegTUhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/27585c-b866-4962-80fd-ea6134706a40/1/2gOJ2F6hJuDvvrxdhFnvcJ-4lcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.74.0/24
IPv6:
2a10:5540::/29
Signature Algorithm: sha256WithRSAEncryption
63:be:c2:9b:21:68:f2:14:35:53:0c:cb:3a:86:67:f6:63:5c:
9c:1b:e7:fe:ce:ea:92:3f:05:f3:cb:c9:d1:af:a9:fc:a3:ad:
b5:33:b9:ec:6c:69:fc:a9:a9:8b:2f:c7:87:46:53:23:f4:76:
6c:8f:6e:ba:9b:51:22:b0:94:7f:42:d2:7c:a2:98:a9:3d:48:
54:3a:45:0e:dd:f3:d8:8f:a2:c9:03:b4:ed:90:01:9d:92:c6:
7f:0e:c5:c2:51:99:9a:c0:93:7a:37:f0:aa:d0:4e:5a:bd:dd:
ed:60:89:5d:99:d5:a6:c4:b9:af:1f:9c:86:ee:82:9a:60:53:
b0:f8:18:16:44:8a:3a:1c:9d:3a:0e:8b:a6:ff:7b:c5:18:be:
6c:27:c7:ae:f3:91:53:fa:94:15:9a:c9:29:fb:eb:5b:ea:7c:
e7:d1:ae:b0:b8:7f:a8:d9:bc:92:10:5e:db:05:84:89:3e:2a:
e6:75:af:75:37:0b:41:61:97:51:a5:ca:e6:cc:67:a2:dc:a7:
c4:df:73:c9:ac:f7:27:40:5b:fc:ed:d0:62:0b:6f:43:70:93:
88:fb:bd:03:0c:e5:6b:e3:cc:f4:fe:3c:58:45:98:28:74:a8:
8d:da:6e:47:6b:90:57:de:82:26:6d:83:31:ec:fc:39:a8:16:
a6:e5:d1:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:39 2024 by rpki-client on console-ams.rpki-client.org