Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/tH0iUywt5d_a2zbvGBZ-NrUWaJc.roa
File: tH0iUywt5d_a2zbvGBZ-NrUWaJc.roa (raw, json)
Hash identifier: s3oCrVCAa9GEGKgpgYqv3JL5vx2lGcrrJWML9ZJV7vM=
Subject key identifier: B4:7D:22:53:2C:2D:E5:DF:DA:DB:36:EF:18:16:7E:36:B5:16:68:97
Certificate issuer: /CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Certificate serial: 0186C0AB3C7FCE34AA72A91CC569D461F704
Authority key identifier: EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/tH0iUywt5d_a2zbvGBZ-NrUWaJc.roa
Signing time: Wed 08 Mar 2023 10:01:32 +0000
ROA not before: Wed 08 Mar 2023 10:01:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 185.33.94.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c0:ab:3c:7f:ce:34:aa:72:a9:1c:c5:69:d4:61:f7:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebc66403ad0c4537af9c32b0def0c52ac2aab104
Validity
Not Before: Mar 8 10:01:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b47d22532c2de5dfdadb36ef18167e36b5166897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:21:2a:a3:d0:68:e7:7a:97:7a:ca:be:17:51:
d6:2b:be:e3:ca:a9:cb:11:c9:a5:31:d6:88:ec:f3:
fd:a7:5b:0c:db:ef:f4:a7:b3:0c:a8:f6:7c:f2:0b:
ad:fd:ce:6e:99:c4:81:a9:bb:5b:fd:a0:16:6f:93:
a1:e8:19:69:1a:5e:50:fb:98:d3:fe:31:ef:30:e1:
5c:6d:ae:83:bc:8f:07:ac:b6:95:8d:20:e2:bb:cc:
5e:19:d0:ac:0d:8a:2b:4c:72:4e:bb:14:29:06:c0:
3e:fa:c0:82:23:8c:9f:06:f0:2c:fb:e8:c5:a7:45:
1f:95:7f:0f:07:6c:6e:7d:76:4d:81:97:f8:f0:70:
6d:be:63:c9:4a:48:42:30:c1:ec:fb:42:ba:c1:88:
25:1a:43:e5:aa:c8:1a:e2:8c:9f:75:b7:98:86:31:
1f:b2:30:53:71:8e:b6:01:4f:59:de:2a:bb:85:6d:
47:f2:38:1f:7b:44:07:62:7d:a6:f3:12:84:36:f7:
bf:73:2b:4a:d3:28:d2:ba:56:59:ad:f1:48:87:4a:
e4:76:a0:81:46:ff:91:28:42:77:f4:e5:ef:6e:9b:
15:81:b6:f6:cc:dd:6d:f4:03:6a:ea:83:50:62:b0:
77:d7:ce:6a:b6:e8:79:ff:05:4e:a0:4d:5a:5b:09:
27:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:7D:22:53:2C:2D:E5:DF:DA:DB:36:EF:18:16:7E:36:B5:16:68:97
X509v3 Authority Key Identifier:
keyid:EB:C6:64:03:AD:0C:45:37:AF:9C:32:B0:DE:F0:C5:2A:C2:AA:B1:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/68ZkA60MRTevnDKw3vDFKsKqsQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/tH0iUywt5d_a2zbvGBZ-NrUWaJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/7281da-0eb0-40a8-9983-d1a9da4a130d/1/68ZkA60MRTevnDKw3vDFKsKqsQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.33.94.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:86:5b:86:eb:19:1a:b6:49:77:55:e6:c0:73:97:56:58:9c:
62:01:4f:25:b6:e3:b1:96:d4:a0:68:1a:4d:c6:f0:17:8c:8d:
26:67:a8:30:ba:dd:23:73:2a:c3:ba:13:5a:61:6e:84:f1:fc:
28:59:ad:71:7f:12:f9:97:ec:66:58:a5:e0:a1:e6:f5:4c:b0:
73:94:82:3b:49:61:ba:57:52:58:c0:b5:ba:b5:a2:f4:fc:c7:
39:5c:39:c1:ca:3f:c9:d0:86:af:87:06:90:ed:01:39:b3:b1:
df:ff:7e:b1:ac:93:a9:66:f5:8a:59:7f:62:33:5e:28:02:ad:
36:cd:98:b4:3f:db:9d:2a:98:41:82:4c:13:b3:48:24:c2:51:
cb:fe:23:c2:0a:ed:f3:a3:62:56:9b:37:03:62:16:6d:79:fe:
c5:04:e8:e0:03:bf:a0:54:e1:51:59:20:bb:7a:8c:df:a9:92:
97:34:67:4e:bb:98:38:a0:16:2b:16:e3:35:73:ee:03:3e:44:
1d:73:39:07:b1:a3:51:1d:dd:71:28:6a:bc:e6:89:57:2c:11:
b0:f4:c7:27:51:6a:c1:96:27:c9:92:76:53:b1:6c:f4:82:3b:
e3:6e:4c:da:d7:41:c6:43:c7:ef:db:b8:e0:b7:82:a8:75:93:
68:2b:a6:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:04 2023 by rpki-client on console-ams.rpki-client.org