Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/z44Zs83gR3x6u8l-f7jMDh9V3hU.roa
File: z44Zs83gR3x6u8l-f7jMDh9V3hU.roa (raw, json)
Hash identifier: 3UwWx12WPe2walr7EWb2wZKLqkW9Q/t60mGx+OvZJBE=
Subject key identifier: CF:8E:19:B3:CD:E0:47:7C:7A:BB:C9:7E:7F:B8:CC:0E:1F:55:DE:15
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 018570796C0D35934F65D87BE0A0C5514E17
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/z44Zs83gR3x6u8l-f7jMDh9V3hU.roa
Signing time: Mon 02 Jan 2023 03:14:43 +0000
ROA not before: Mon 02 Jan 2023 03:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5511
IP address blocks: 185.89.251.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:6c:0d:35:93:4f:65:d8:7b:e0:a0:c5:51:4e:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 2 03:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf8e19b3cde0477c7abbc97e7fb8cc0e1f55de15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:af:1c:6f:13:62:7f:b8:65:dd:f7:4b:e9:21:
88:6f:53:13:78:ed:61:8e:37:22:b1:dd:7f:cf:8e:
d4:30:1a:f2:99:1a:41:9c:38:6d:67:15:65:53:db:
8a:72:0c:5e:b4:68:42:8a:77:a5:81:57:02:72:7c:
7d:78:d6:7e:a1:d7:be:7a:38:18:dc:49:1f:90:f3:
22:b3:0f:ed:c9:66:ad:56:ef:d8:be:42:fa:04:69:
a3:23:23:50:84:06:4c:62:16:e7:6c:23:1d:4a:bf:
a5:b5:60:66:f1:a1:ea:bf:bb:2c:4e:dd:4b:93:ae:
f3:69:d5:4f:cd:c8:06:28:e3:fb:df:31:26:26:a3:
22:3a:19:a9:1d:36:b8:b6:c5:b5:87:58:a6:0c:ba:
07:7c:16:6c:db:1a:74:15:65:36:55:59:9f:b9:d7:
69:73:82:6b:07:9b:8d:2a:dd:99:36:29:be:fd:36:
6d:91:18:2f:37:42:7e:ce:9e:19:78:e1:47:9c:19:
74:0a:d5:32:10:9b:37:4c:60:ad:34:7f:95:35:67:
b3:80:59:2a:50:1f:d1:a1:cf:1a:86:c7:2e:35:92:
4f:0e:a0:15:8d:c6:38:90:6b:02:01:03:0b:95:9f:
e1:67:7a:86:84:99:36:87:34:7e:62:3c:b2:89:3d:
b9:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8E:19:B3:CD:E0:47:7C:7A:BB:C9:7E:7F:B8:CC:0E:1F:55:DE:15
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/z44Zs83gR3x6u8l-f7jMDh9V3hU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.89.251.0/24
Signature Algorithm: sha256WithRSAEncryption
84:fa:2d:66:54:12:e8:6a:92:c8:04:af:bd:9e:64:5a:53:e9:
4b:fb:d1:56:46:ef:a0:ea:77:be:35:c9:d9:31:03:9d:23:39:
fa:2c:e0:3d:24:22:75:68:2b:7c:a7:55:fb:aa:df:d2:90:f7:
89:ad:3a:20:bb:56:03:63:12:f5:4f:a8:32:57:97:d7:b6:a1:
d8:62:40:cc:93:9f:ab:17:79:56:62:b5:68:19:6e:4f:fa:e1:
fa:78:c6:25:ef:33:5b:31:e8:70:29:f5:5f:a7:6d:24:28:42:
3d:43:9b:cf:24:d2:57:a0:a1:af:3e:3e:b0:5a:5f:27:a3:ad:
1c:6b:b3:86:2c:af:d4:d9:2d:72:eb:5c:e5:51:44:b8:f9:e0:
6c:7f:dd:3d:9b:c5:5d:90:c2:93:8c:11:f7:88:d2:cd:70:cc:
ee:05:b1:e0:f2:04:3f:37:c8:b2:c9:d1:b6:da:d2:11:b6:66:
a1:d3:c0:77:f5:4d:c8:17:5f:ad:35:e5:15:e6:45:04:b8:dc:
a8:d4:8d:40:42:d2:0b:00:9a:17:8e:5e:59:49:92:36:f3:66:
e1:76:61:f0:44:35:d5:df:b0:44:92:2b:58:ec:cf:46:a2:b3:
7a:94:7b:f4:90:4d:bd:41:27:bb:38:43:c9:71:1c:e2:ad:b4:
22:64:43:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 11 10:27:41 2023 by rpki-client on console-fra.rpki-client.org