Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kfEWyn6GjBysQSgT5-yk8j7vyeY.roa
File: kfEWyn6GjBysQSgT5-yk8j7vyeY.roa (raw, json)
Hash identifier: 27A9G7bWccQ0WWggfxQprmoecmky830ZFyAkpm0uDao=
Subject key identifier: 91:F1:16:CA:7E:86:8C:1C:AC:41:28:13:E7:EC:A4:F2:3E:EF:C9:E6
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 01899C533B2588586B6FB6056457882B3322
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kfEWyn6GjBysQSgT5-yk8j7vyeY.roa
Signing time: Fri 28 Jul 2023 11:47:27 +0000
ROA not before: Fri 28 Jul 2023 11:47:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 185.148.243.0/24 maxlen: 24
185.148.241.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:9c:53:3b:25:88:58:6b:6f:b6:05:64:57:88:2b:33:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jul 28 11:47:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91f116ca7e868c1cac412813e7eca4f23eefc9e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ce:28:24:79:89:06:41:7a:86:a6:1c:37:2d:
25:43:27:40:d0:80:21:c5:6a:7e:bc:f2:bc:e9:cd:
ec:39:07:9f:c3:d8:17:35:8a:cf:6c:e3:7b:11:80:
f0:10:7a:2a:14:f2:d2:ce:b0:b5:77:b2:27:f0:64:
5c:e8:2a:f0:cd:a3:8f:fc:60:dd:aa:9f:7d:9d:a6:
d5:ef:2f:14:ed:f6:93:94:78:08:d3:2c:8b:6c:f3:
e4:f5:70:43:b0:86:3c:a2:cc:14:29:c0:85:55:12:
c7:ab:2c:73:3c:cf:30:c1:e0:e7:dc:82:7a:b1:2d:
7b:2a:77:21:81:02:3e:f8:eb:b9:a2:2f:1e:ae:aa:
9a:3c:91:88:ef:56:57:fd:19:17:a1:7d:dd:be:37:
9b:6a:24:ee:ee:3d:ec:2c:1d:8b:45:61:84:31:50:
7e:7c:1e:b0:db:50:b7:d7:d6:cc:ae:35:82:ec:d9:
4f:b9:e4:83:74:13:8f:14:42:aa:aa:8a:44:e1:e8:
34:8b:ec:bc:90:7b:e4:6b:52:8a:ea:a3:78:44:05:
34:04:5b:eb:dd:33:43:89:fb:7f:03:c8:d3:82:88:
07:35:5e:83:eb:fe:55:17:a0:08:f2:b5:e0:a3:79:
02:2d:46:0d:16:16:e8:60:37:42:f8:01:88:24:f5:
1c:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:F1:16:CA:7E:86:8C:1C:AC:41:28:13:E7:EC:A4:F2:3E:EF:C9:E6
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kfEWyn6GjBysQSgT5-yk8j7vyeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.148.241.0/24
185.148.243.0/24
Signature Algorithm: sha256WithRSAEncryption
57:78:0b:25:5f:76:b1:ea:b1:d7:ee:16:ab:66:f9:80:58:be:
6a:52:63:9e:e2:01:c8:39:b6:84:8e:c6:75:ac:b8:f5:7b:0d:
20:16:ea:25:d7:4b:f3:12:35:c1:9e:ff:75:8a:e3:46:b4:49:
7b:82:8a:b1:e5:57:db:bb:e1:41:a9:81:b8:7e:0c:eb:e5:6d:
e1:a8:bc:93:8c:5b:41:5b:49:cd:e9:0e:1c:69:7f:ac:5a:6a:
fb:14:74:56:53:00:93:17:43:95:da:e2:77:fe:c0:e2:16:0f:
a4:39:e9:fe:ee:be:c8:1c:76:af:b6:90:b3:72:ae:42:2c:1e:
99:0e:96:f9:e2:39:7d:c0:65:57:18:5d:d4:19:fb:aa:e1:9c:
66:91:39:e5:b8:8e:fa:fa:30:ff:52:fd:9e:ba:b2:f7:c2:da:
c5:04:53:51:f0:d3:9d:a9:06:e7:3c:aa:64:69:8f:9b:df:de:
a3:37:66:0d:18:bc:35:ba:1b:e4:86:a8:51:1a:f3:9e:8a:69:
ec:e5:b4:1a:74:c6:af:4c:55:fc:6b:71:ce:23:8c:58:4b:5a:
74:42:98:ff:94:41:10:11:0e:34:17:ba:3d:af:c2:33:2d:b2:
6f:3e:93:68:ca:42:89:d5:da:72:eb:d6:72:2e:2f:c1:0c:44:
c6:26:c4:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 14 15:41:27 2023 by rpki-client on console-ams.rpki-client.org