Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/mZWMsGrWxPkO_UfSlKdQHCd5yeE.roa
File: mZWMsGrWxPkO_UfSlKdQHCd5yeE.roa (raw, json)
Hash identifier: ND/J/abXG5YOLC9WquPVG71UXGGlpvGdOl6+Ai+GnOU=
Subject key identifier: 99:95:8C:B0:6A:D6:C4:F9:0E:FD:47:D2:94:A7:50:1C:27:79:C9:E1
Certificate issuer: /CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Certificate serial: 0185703968320D4AE5E116CEED302AE98D48
Authority key identifier: 12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/mZWMsGrWxPkO_UfSlKdQHCd5yeE.roa
Signing time: Mon 02 Jan 2023 02:04:48 +0000
ROA not before: Mon 02 Jan 2023 02:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60064
IP address blocks: 185.114.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:68:32:0d:4a:e5:e1:16:ce:ed:30:2a:e9:8d:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1214a7e2a8c7012325ae973ed1a2bba05b2bb9c1
Validity
Not Before: Jan 2 02:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99958cb06ad6c4f90efd47d294a7501c2779c9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fc:47:f0:e0:32:df:84:95:b6:d3:90:77:02:
00:0c:50:83:60:43:de:d5:f9:6c:1b:b3:6d:a5:86:
6b:52:e1:45:10:95:5b:80:ff:28:d6:75:4a:55:9c:
57:0e:27:d0:d2:ca:57:9b:cf:72:1e:81:ed:8b:a1:
5b:be:fd:5c:a7:62:11:ab:07:90:96:6a:5b:ca:68:
ef:d5:25:88:e9:b1:66:09:aa:49:94:6a:01:7e:41:
08:b8:c8:5f:ec:17:01:18:55:dd:5e:0f:9d:41:5e:
90:55:8d:0a:0a:52:d9:1b:7b:58:4a:98:e2:cb:c9:
71:cb:53:12:f2:fd:3f:c0:2e:2a:54:99:5a:ee:ab:
0c:16:6f:1c:34:3e:d7:b7:6f:27:22:83:c8:b3:57:
26:72:f6:1c:c2:82:fa:b2:fe:1c:fa:81:ff:f4:b3:
b5:ba:15:e3:70:41:27:dd:4b:2f:2d:70:a8:93:c9:
a2:f3:f8:8e:34:e7:dc:30:a7:80:a5:a2:2d:e5:9b:
95:75:a9:81:94:56:2f:12:22:62:30:98:6f:9b:5e:
cf:41:4d:c0:fa:ce:1f:b8:f8:84:c9:d1:b8:6b:02:
fa:12:21:46:09:24:b8:4a:c1:96:4d:83:e0:f5:14:
4c:bd:ce:37:dc:42:47:95:22:d4:8c:55:89:d7:16:
a6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:95:8C:B0:6A:D6:C4:F9:0E:FD:47:D2:94:A7:50:1C:27:79:C9:E1
X509v3 Authority Key Identifier:
keyid:12:14:A7:E2:A8:C7:01:23:25:AE:97:3E:D1:A2:BB:A0:5B:2B:B9:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EhSn4qjHASMlrpc-0aK7oFsrucE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/mZWMsGrWxPkO_UfSlKdQHCd5yeE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/a68dbc-3f94-4fed-8d9d-e9c3649c1218/1/EhSn4qjHASMlrpc-0aK7oFsrucE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.35.0/24
Signature Algorithm: sha256WithRSAEncryption
65:fc:6a:ac:31:d4:d0:93:97:88:05:f8:98:01:30:07:e6:fc:
ed:71:62:12:b5:82:0f:0a:23:24:a8:b1:a0:19:18:d7:b2:13:
e8:c2:cf:e6:00:5b:8a:e6:38:80:be:64:ba:5f:c1:74:4d:2b:
e4:7a:10:26:18:25:c5:14:c3:7c:74:b8:d6:d7:f3:71:80:f0:
aa:9d:7b:a7:b2:ae:ca:8d:d8:98:b2:90:65:ae:24:6b:6d:fe:
61:f8:2e:2a:02:e6:35:88:28:23:46:5d:a3:de:8a:75:ca:40:
eb:74:37:47:f1:bf:e4:5b:61:84:ce:f6:44:ed:29:9c:17:5f:
bb:c5:7b:48:c0:fa:eb:51:e0:d8:bf:ad:c8:f3:29:6d:9b:a3:
71:ab:e4:93:65:33:50:2a:02:50:94:50:89:59:06:30:a2:0e:
17:b9:35:84:b6:58:22:67:a3:96:b6:ab:da:9b:99:d2:ae:db:
f0:a2:5e:8f:36:f2:dd:80:86:2b:a5:2c:c9:a2:c3:38:1c:9c:
39:fa:67:a1:45:47:21:f8:88:ea:52:e8:6b:5f:d3:47:51:c3:
68:30:55:e3:2f:88:0a:7e:50:19:cd:60:76:e5:a5:a6:d3:11:
8a:79:8e:c7:10:01:a0:08:c7:b7:bc:fa:32:c5:ba:15:e5:cd:
48:cc:3b:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:46 2024 by rpki-client on console-ams.rpki-client.org