Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/ePazLR4g-VSjSX1WqU8ACr06XYg.roa
File: ePazLR4g-VSjSX1WqU8ACr06XYg.roa (raw, json)
Hash identifier: 7kX3Zyf+iWT7+lLKxOWTOBphJVEBPv1Q6MPkEWRjvGA=
Subject key identifier: 78:F6:B3:2D:1E:20:F9:54:A3:49:7D:56:A9:4F:00:0A:BD:3A:5D:88
Certificate issuer: /CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Certificate serial: 01857227FFEAE73F5031BF22B98A6951B90D
Authority key identifier: 03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/ePazLR4g-VSjSX1WqU8ACr06XYg.roa
Signing time: Mon 02 Jan 2023 11:05:02 +0000
ROA not before: Mon 02 Jan 2023 11:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57428
IP address blocks: 185.57.44.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:27:ff:ea:e7:3f:50:31:bf:22:b9:8a:69:51:b9:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=034b0eed2c5a787ad87fb49f04d3fdf3d0f49d4c
Validity
Not Before: Jan 2 11:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=78f6b32d1e20f954a3497d56a94f000abd3a5d88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5d:00:bd:5e:03:db:11:6d:97:e1:80:b9:59:
7b:46:89:4f:8a:f7:89:7d:f2:b0:0b:3f:81:35:9f:
34:02:9a:50:a1:12:0a:23:80:cc:5a:4d:03:9c:40:
4f:60:05:c4:af:4c:0e:1e:32:9b:04:8d:3c:6f:b6:
cd:ca:41:6e:de:a2:fe:a0:29:c7:20:a3:80:2e:5a:
43:fa:75:08:7f:4f:46:41:e6:d2:55:de:90:54:57:
21:d3:e6:5e:16:ad:83:4a:ee:b3:a7:98:cb:f3:18:
98:95:4f:f1:3e:ac:68:d2:ec:b2:ac:4a:cf:5b:77:
1f:82:4c:a0:35:4e:a6:51:62:38:57:2a:b7:aa:2e:
44:ae:e8:16:55:88:a1:15:d7:3e:e8:7b:64:5e:7a:
ac:dc:19:26:68:40:2f:62:4a:b3:97:d6:10:80:37:
f1:83:0e:b2:c2:29:85:dd:49:7f:58:05:aa:9c:54:
37:b5:61:a3:bf:e2:cc:00:1c:dc:03:ea:bd:8b:1d:
7c:b0:70:13:4b:09:6f:17:c9:fd:ec:4d:f9:7a:9a:
3d:48:f5:68:a4:5d:82:9a:67:51:3d:0d:5e:ed:9c:
f1:48:bd:82:0f:c0:88:e9:cc:10:c5:b1:b9:47:a6:
d3:c0:b8:2a:71:7a:59:56:64:30:e0:d9:e2:c5:1f:
36:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F6:B3:2D:1E:20:F9:54:A3:49:7D:56:A9:4F:00:0A:BD:3A:5D:88
X509v3 Authority Key Identifier:
keyid:03:4B:0E:ED:2C:5A:78:7A:D8:7F:B4:9F:04:D3:FD:F3:D0:F4:9D:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A0sO7SxaeHrYf7SfBNP989D0nUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/ePazLR4g-VSjSX1WqU8ACr06XYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2d783a-1cbc-40d4-b011-e085275aa364/1/A0sO7SxaeHrYf7SfBNP989D0nUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.57.44.0/23
Signature Algorithm: sha256WithRSAEncryption
52:9f:76:47:8a:8b:97:89:8a:ae:be:27:09:a7:fe:ae:8a:27:
d7:2d:37:aa:61:ff:57:a7:0b:46:ff:13:18:46:05:fb:4e:cf:
2b:2f:62:3c:0d:35:3b:e2:91:5b:a6:86:ce:15:0a:01:ee:03:
08:f9:f0:6f:30:b6:8f:21:6d:d7:77:3f:0f:bc:8d:92:e9:ab:
1b:c0:0d:76:2c:00:64:64:d6:ee:aa:e8:85:4c:77:67:5a:17:
16:12:88:d3:b4:ab:2f:2e:a9:f8:71:e0:7c:aa:78:58:ba:fc:
8b:5a:11:00:e3:95:65:57:a2:7a:9b:66:5f:de:71:40:1a:8a:
f6:39:5a:65:1c:3c:57:17:58:03:c4:c8:a1:7e:81:8d:03:2b:
8c:d7:fa:c4:88:31:1f:0f:db:01:ba:c1:5a:9f:df:50:ce:d7:
60:43:bd:cf:63:f4:5f:ae:c9:5a:58:70:89:9d:22:12:2c:d0:
36:83:37:13:54:61:c7:be:93:c9:de:49:18:3f:df:e5:41:b1:
7d:52:c5:cc:0a:26:28:9a:3b:f3:f9:93:fb:9e:52:5a:92:07:
e3:b3:1d:22:48:bc:ae:12:cb:cc:23:34:db:a7:2c:f4:6e:ca:
d6:62:02:d5:92:16:8b:5a:44:2f:89:03:e0:4c:88:ea:61:fa:
d3:e4:7e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:29 2024 by rpki-client on console-ams.rpki-client.org