Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/ab83dc-c0e7-4ec3-af72-81917dffdcd7/1/jteFx5HfZwnotoaD3pnbzaYiPcQ.roa
File: jteFx5HfZwnotoaD3pnbzaYiPcQ.roa (raw, json)
Hash identifier: Q7b/k06nrkrtyVuQBLO6YrdJGHTYTVCVCh74hP0HVXU=
Subject key identifier: 8E:D7:85:C7:91:DF:67:09:E8:B6:86:83:DE:99:DB:CD:A6:22:3D:C4
Certificate issuer: /CN=1c766b058c096753a34ad625d53275cd2dba5b33
Certificate serial: 01856CE60A56B3F2A4DD544CA4C1BEC2FA53
Authority key identifier: 1C:76:6B:05:8C:09:67:53:A3:4A:D6:25:D5:32:75:CD:2D:BA:5B:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHZrBYwJZ1OjStYl1TJ1zS26WzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/ab83dc-c0e7-4ec3-af72-81917dffdcd7/1/jteFx5HfZwnotoaD3pnbzaYiPcQ.roa
Signing time: Sun 01 Jan 2023 10:34:53 +0000
ROA not before: Sun 01 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51431
IP address blocks: 185.171.53.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0a:56:b3:f2:a4:dd:54:4c:a4:c1:be:c2:fa:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c766b058c096753a34ad625d53275cd2dba5b33
Validity
Not Before: Jan 1 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ed785c791df6709e8b68683de99dbcda6223dc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:2d:9e:39:2f:0c:d8:a5:7d:66:4a:3d:4c:81:
73:04:0a:fa:8a:5d:c6:b6:38:1c:13:b0:94:1e:8a:
25:05:b1:62:f1:92:8c:1b:8a:9c:d7:6f:aa:d8:a4:
b0:c8:09:f8:98:63:6e:a6:14:59:d4:bf:07:58:7b:
15:1f:f7:cf:0e:bc:87:11:ed:85:84:0d:7c:3e:85:
c0:9c:d8:da:b2:c7:a8:15:c0:97:2c:ba:1f:84:2e:
44:13:10:e3:cc:f3:b8:c4:dc:2f:67:e3:ad:40:f2:
98:14:ad:5e:af:d2:1b:65:a9:7f:95:fc:5f:17:40:
7f:e9:b7:9d:e5:3e:1f:c3:c6:35:57:2c:18:88:d7:
24:12:82:9a:0e:f0:9f:d8:ef:da:1b:93:b4:40:c7:
24:1c:b0:e7:71:23:08:6f:83:fd:9c:d9:ac:08:cc:
23:ee:fc:3d:e5:5c:fc:24:2b:0c:28:75:9f:bc:10:
de:b7:21:d7:45:ef:33:9b:e0:73:74:20:a2:42:f5:
9a:49:9a:4b:b6:84:48:32:e5:81:53:d1:e2:d4:19:
2d:bf:60:67:78:0a:1f:8a:9c:78:a9:9f:18:d4:81:
20:f8:e5:dd:88:d4:d1:7d:49:7c:72:43:19:93:df:
62:3d:62:70:eb:b1:30:b6:16:cd:6a:b7:42:dd:9d:
e4:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D7:85:C7:91:DF:67:09:E8:B6:86:83:DE:99:DB:CD:A6:22:3D:C4
X509v3 Authority Key Identifier:
keyid:1C:76:6B:05:8C:09:67:53:A3:4A:D6:25:D5:32:75:CD:2D:BA:5B:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHZrBYwJZ1OjStYl1TJ1zS26WzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/ab83dc-c0e7-4ec3-af72-81917dffdcd7/1/jteFx5HfZwnotoaD3pnbzaYiPcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/ab83dc-c0e7-4ec3-af72-81917dffdcd7/1/HHZrBYwJZ1OjStYl1TJ1zS26WzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.53.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e8:ef:39:fc:98:58:8f:a6:91:be:e0:bd:1c:b4:85:54:d0:
51:74:1e:84:86:b7:bc:89:34:ea:cc:cf:25:24:ff:5d:ca:4c:
7a:36:3f:9e:29:f5:33:a2:40:3f:1e:53:42:bf:f5:ac:2e:12:
07:75:16:66:12:c9:46:f1:5c:e0:04:62:d8:87:aa:84:cf:2b:
37:fb:1b:4d:0f:1c:5e:82:10:f9:68:97:b8:30:90:16:8d:9f:
90:20:ef:12:fb:c5:8f:7b:3f:d4:9b:b1:c1:00:6a:76:58:b4:
7d:94:81:48:47:88:04:0a:67:24:70:a8:f6:23:81:24:d9:e7:
fd:ca:b8:d4:ed:a3:0c:2c:c7:ae:03:90:80:b1:4c:b2:61:c5:
07:48:75:82:48:e6:cf:3a:c2:37:1d:fd:62:06:b5:b5:88:f9:
6e:db:ce:4c:35:52:ca:48:a9:65:b7:56:35:b0:11:53:a8:f1:
6e:45:1c:1d:6e:6d:6d:cf:c1:13:37:1d:f9:d7:ec:aa:7e:28:
f2:35:47:93:b5:03:0b:be:38:8b:31:5d:94:e8:e1:bb:f4:f5:
1e:41:41:5f:73:7e:d0:18:c6:6a:eb:32:0e:f4:5a:29:89:94:
dc:5d:9a:0a:d6:c0:e7:92:94:81:5d:15:8b:c4:0e:e7:bc:0e:
cc:36:97:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:25 2024 by rpki-client on console-fra.rpki-client.org