Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/c73IjG1cIudvh9lRCffz-kq6wBU.roa
File: c73IjG1cIudvh9lRCffz-kq6wBU.roa (raw, json)
Hash identifier: pr2+bzjVRhqFj6bzwW7dcpizyzdYm8d7eXJtzma5X2Q=
Subject key identifier: 73:BD:C8:8C:6D:5C:22:E7:6F:87:D9:51:09:F7:F3:FA:4A:BA:C0:15
Certificate issuer: /CN=68cc325c8ad9769a1b54da296305fe0c36573775
Certificate serial: 0186E0BCAEBCF72FBE5D5F5B9A7F5796A28B
Authority key identifier: 68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/c73IjG1cIudvh9lRCffz-kq6wBU.roa
Signing time: Tue 14 Mar 2023 15:28:27 +0000
ROA not before: Tue 14 Mar 2023 15:28:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213224
IP address blocks: 85.235.158.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:bc:ae:bc:f7:2f:be:5d:5f:5b:9a:7f:57:96:a2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68cc325c8ad9769a1b54da296305fe0c36573775
Validity
Not Before: Mar 14 15:28:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=73bdc88c6d5c22e76f87d95109f7f3fa4abac015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:82:50:4a:5c:3f:ee:74:79:7d:2a:5c:31:7c:
af:8a:e0:64:72:27:c0:4b:cf:6d:47:85:e8:df:ae:
b1:74:8e:c9:ce:74:4e:a5:7e:54:bb:d4:10:3a:b7:
fd:23:36:cb:23:5c:f5:23:29:1f:fa:4e:3c:f5:c7:
30:c0:52:e8:dd:eb:75:7a:99:b9:3f:b8:e0:f8:4d:
33:a2:47:da:c1:e9:55:fb:d3:66:1c:83:0e:88:b0:
e2:58:4a:14:67:5b:69:56:51:2d:0d:bd:ce:6d:43:
b8:cc:61:9f:38:b2:9b:78:36:74:e3:2a:17:45:2d:
ed:6d:67:fd:20:c3:2a:a7:30:29:07:0a:9a:2b:76:
1b:fd:2a:26:53:0a:df:7d:90:1a:cb:fa:ad:d3:c1:
70:75:37:8d:0a:d2:6d:28:31:8a:99:0e:83:8e:ca:
ae:c3:7a:0a:fa:b7:05:55:d8:b0:fc:75:5b:8c:f0:
95:68:44:45:83:40:0c:d6:df:e3:96:3b:ac:59:ad:
ca:5f:12:f9:20:40:10:f0:73:93:d4:4b:f8:06:38:
1b:b6:cf:ee:ff:0c:0c:38:99:58:39:b6:93:2a:e0:
95:a2:39:46:5b:52:5e:95:17:61:cf:1d:aa:ef:db:
e7:47:cf:e9:23:db:a6:36:d6:a9:4c:c1:57:a5:0e:
d6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BD:C8:8C:6D:5C:22:E7:6F:87:D9:51:09:F7:F3:FA:4A:BA:C0:15
X509v3 Authority Key Identifier:
keyid:68:CC:32:5C:8A:D9:76:9A:1B:54:DA:29:63:05:FE:0C:36:57:37:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMwyXIrZdpobVNopYwX-DDZXN3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/c73IjG1cIudvh9lRCffz-kq6wBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/617778-9f31-475b-84fa-74c979a6536e/1/aMwyXIrZdpobVNopYwX-DDZXN3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.235.158.0/23
Signature Algorithm: sha256WithRSAEncryption
74:16:b8:66:62:fd:1f:4b:87:e3:72:ef:d3:7e:50:b6:e6:52:
2b:ae:7d:54:ac:db:a6:7e:05:55:fc:ae:96:e2:90:79:02:ac:
1b:0d:a3:c7:cb:0a:e9:28:d2:6f:47:7f:a6:0e:85:ea:9f:e9:
19:8a:58:26:da:9f:d2:9c:76:81:e2:1f:f5:39:bd:8c:bd:64:
e7:9a:67:71:b7:c8:4d:0f:9f:0d:99:4b:ff:b4:a3:04:25:c0:
a8:ad:7b:7e:96:9b:5b:d2:41:c2:00:57:ae:cc:e4:1c:7b:34:
3a:a5:80:27:92:dc:22:ac:67:71:1c:c4:c0:cc:24:9b:42:ad:
8a:14:f5:96:06:ce:ea:1e:64:da:0f:1b:eb:eb:96:ce:54:4e:
d3:d9:ff:a2:00:55:ae:27:62:b7:de:9b:af:91:2c:ea:80:4f:
27:55:7f:d0:87:aa:a9:45:64:77:ea:05:da:ee:a4:21:bb:67:
e1:38:0e:0d:b7:1b:cd:2f:a3:a2:2e:3e:d8:c8:73:e5:f9:9a:
7b:e5:77:b0:f5:fc:6e:74:a6:3c:41:b9:f2:3d:a4:e2:92:5d:
0e:7b:a2:0a:f1:c4:a2:f6:b3:cd:28:3e:07:fa:3d:a8:d4:f2:
56:0b:31:db:42:ff:40:15:53:e3:fe:47:cd:d5:40:03:93:b4:
77:11:a5:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:02 2024 by rpki-client on console-fra.rpki-client.org