Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/tYUITIPM-elA1c8FSiminv9kfVw.roa
File: tYUITIPM-elA1c8FSiminv9kfVw.roa (raw, json)
Hash identifier: ogTjcb+GNDStdIHmUlfj5wa78H6xh+7dfdHCbinzMms=
Subject key identifier: B5:85:08:4C:83:CC:F9:E9:40:D5:CF:05:4A:29:A2:9E:FF:64:7D:5C
Certificate issuer: /CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Certificate serial: 01856F6FE662158CE34ACF4EB53BCA21F6F6
Authority key identifier: E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/tYUITIPM-elA1c8FSiminv9kfVw.roa
Signing time: Sun 01 Jan 2023 22:24:42 +0000
ROA not before: Sun 01 Jan 2023 22:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57615
IP address blocks: 185.27.83.0/24 maxlen: 24
185.27.81.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:e6:62:15:8c:e3:4a:cf:4e:b5:3b:ca:21:f6:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e520446f79ffc2d7c3a9ef340ce9de25723a719a
Validity
Not Before: Jan 1 22:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b585084c83ccf9e940d5cf054a29a29eff647d5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:66:1d:92:9a:ea:be:2f:76:a6:34:27:38:2c:
49:25:8b:dc:7c:8d:36:8c:3a:6f:ec:7c:3b:4a:d5:
79:17:35:20:08:9e:50:78:77:ba:d7:41:f1:c9:7f:
4c:18:a0:a4:3b:2b:65:7a:da:23:e1:a6:41:83:88:
df:f5:03:0b:e5:b1:f8:50:03:55:44:d9:7d:ea:1e:
2a:8a:b6:44:b8:ea:14:e5:0f:a4:ec:7d:74:ae:03:
61:89:c2:97:bb:4d:6a:18:4d:ad:7d:88:52:6c:5e:
61:a4:37:b1:af:b2:39:29:e8:36:df:16:e1:67:ef:
73:4c:55:da:a2:69:ae:78:7a:7d:5c:dc:fb:fd:79:
e5:0c:d8:18:2e:f1:99:11:29:3d:69:a9:30:f2:57:
55:0f:20:dc:80:46:23:27:eb:f2:26:86:6a:cb:39:
0d:aa:61:f8:d0:33:90:de:2b:b6:4c:de:7c:02:f0:
15:40:bc:14:33:c7:45:be:13:b4:7e:f9:18:90:4f:
8d:2c:e9:a1:22:d0:2b:7e:e2:30:28:77:30:c8:b0:
6d:a0:e9:2c:bc:24:89:c0:2e:d7:1d:25:36:7f:0d:
92:89:91:62:8b:17:84:7b:ba:d5:62:b4:1b:48:61:
96:5f:d5:65:05:7d:9c:d4:0b:df:80:69:de:e8:1c:
b4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:85:08:4C:83:CC:F9:E9:40:D5:CF:05:4A:29:A2:9E:FF:64:7D:5C
X509v3 Authority Key Identifier:
keyid:E5:20:44:6F:79:FF:C2:D7:C3:A9:EF:34:0C:E9:DE:25:72:3A:71:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5SBEb3n_wtfDqe80DOneJXI6cZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/tYUITIPM-elA1c8FSiminv9kfVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/011ef2-7012-4a6e-8a1c-0e0e137e5591/1/5SBEb3n_wtfDqe80DOneJXI6cZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.81.0/24
185.27.83.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:32:39:bd:0b:d0:12:45:e1:f3:99:ca:ef:3e:b4:3b:0b:70:
cc:96:05:ba:87:ea:96:f9:ef:ac:30:e4:79:22:11:3a:55:bd:
ac:a0:4f:61:70:78:b2:b9:2a:36:47:7c:21:c4:2b:ad:ef:e3:
98:0f:df:ed:fc:a1:ba:53:e8:74:02:79:fe:25:40:17:c3:c2:
0c:c3:0d:f2:c5:4f:e4:9f:8e:56:e6:18:01:e4:f5:2d:b1:0d:
76:df:e7:77:79:27:ca:22:3f:0b:2c:bf:3c:a4:71:e8:5b:0c:
eb:13:5a:30:0c:be:42:e0:e5:e9:55:09:52:f4:a1:19:bb:7c:
80:4f:f6:b6:a7:45:af:cb:5a:de:cc:2a:25:52:4d:95:53:95:
7c:8b:79:58:fa:9a:b5:67:d6:06:34:39:66:08:22:73:25:3c:
79:1c:b0:62:0b:3e:63:a6:85:c5:1b:7d:a3:91:1f:88:c0:df:
bf:77:eb:f9:67:74:eb:11:91:d9:93:8e:5e:ca:b0:90:01:72:
72:66:01:f9:ce:9e:5b:04:b2:88:1f:4b:0d:bd:27:4c:eb:96:
84:03:51:2d:dc:0a:f7:38:41:aa:a2:db:88:33:e5:0c:06:e4:
11:ed:e4:a5:85:7c:62:ec:68:9d:c8:ac:f3:54:ee:6c:10:32:
12:e6:77:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:27 2024 by rpki-client on console-ams.rpki-client.org