Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CrV0fWHLx5cpsmS7wBRahhxqBsI.roa
File: CrV0fWHLx5cpsmS7wBRahhxqBsI.roa (raw, json)
Hash identifier: MzA0pLIModZ5XVxy8h9Glj3hnxrqejfaLQNZC9hmCyo=
Subject key identifier: 0A:B5:74:7D:61:CB:C7:97:29:B2:64:BB:C0:14:5A:86:1C:6A:06:C2
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 018B43EC618068B9458E32D965343DDCE807
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CrV0fWHLx5cpsmS7wBRahhxqBsI.roa
Signing time: Wed 18 Oct 2023 17:54:06 +0000
ROA not before: Wed 18 Oct 2023 17:54:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 85.122.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:43:ec:61:80:68:b9:45:8e:32:d9:65:34:3d:dc:e8:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Oct 18 17:54:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ab5747d61cbc79729b264bbc0145a861c6a06c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:40:9a:72:7f:55:f2:47:81:70:93:c4:e1:52:
b8:df:a2:c1:93:3d:73:f6:2f:d2:49:96:d2:7c:d4:
bf:43:0c:2e:22:44:64:b6:28:f1:f3:ba:05:9d:77:
53:a9:7e:e1:f2:88:90:65:cc:fb:1e:03:aa:be:04:
aa:ea:c8:27:bb:ba:91:2b:f9:5a:bb:40:14:db:1d:
19:7d:92:f1:c4:04:4c:39:9e:2f:5e:14:f6:bd:39:
e2:a1:84:ed:56:6d:e4:d8:51:2c:12:a5:b3:41:18:
eb:45:68:81:56:4a:07:7e:ff:2b:d9:8c:6b:3e:87:
e7:8f:19:8e:a0:c8:04:ee:79:8a:b5:7f:81:e4:fd:
16:d2:0b:c6:c0:49:44:ef:5a:13:89:d0:94:3b:ac:
77:66:ba:8f:d4:27:66:73:4e:13:a2:2a:6a:db:f7:
80:93:8e:30:1c:c6:f6:82:26:db:03:05:89:ac:b6:
f6:34:1e:31:18:11:50:a4:ba:53:dc:fc:3d:b7:aa:
dd:1d:b3:a6:a7:6d:a9:c2:96:7d:d5:b7:1f:13:11:
de:4b:66:75:fd:6c:c4:1b:c7:c7:ca:9b:93:1f:2f:
2c:cd:12:d5:33:53:c9:da:aa:81:73:da:6d:6e:e2:
c6:bd:5c:62:98:79:cf:a3:c9:ba:cf:23:e9:33:23:
bf:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:B5:74:7D:61:CB:C7:97:29:B2:64:BB:C0:14:5A:86:1C:6A:06:C2
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CrV0fWHLx5cpsmS7wBRahhxqBsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.122.232.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:76:d5:16:9d:fd:85:e1:41:5d:6c:e0:53:db:88:0e:66:8b:
3e:98:f2:cc:03:0f:c0:8e:6f:b1:6d:1c:7f:35:50:8c:9c:f1:
06:88:ea:50:68:22:87:c5:77:b6:2a:d4:38:aa:9e:0e:08:32:
ae:24:de:b1:a7:b4:97:f6:ba:6a:ba:8c:ff:70:b2:67:db:ae:
e3:5d:af:7a:87:f9:5e:e2:ad:b9:c9:df:23:aa:5b:78:ce:56:
e1:4c:f9:fa:ab:bc:b0:dd:02:d0:80:55:c5:f5:15:25:85:b9:
ce:9d:f2:aa:01:2f:25:87:1a:e3:30:c9:0f:36:f1:49:47:31:
f3:cb:fb:93:12:9b:27:aa:36:22:7e:ad:34:c1:be:8b:b7:06:
eb:5d:20:35:cf:1b:3d:32:70:cc:31:c5:f9:08:37:4e:02:c1:
f7:54:b4:72:6e:47:7c:6b:e1:f0:cf:23:69:8c:15:e3:5f:d4:
98:9c:7b:3e:52:70:ef:e0:14:43:0c:f3:f3:2f:0b:9c:27:39:
63:26:32:f9:73:d4:a9:f0:74:c1:d8:dd:a4:cf:02:4a:09:c5:
41:73:2d:5d:e0:cc:45:bd:07:b0:38:a3:42:9d:f1:35:34:83:
56:33:09:f9:e5:bb:a7:ff:03:83:c1:37:a1:83:f6:08:f7:97:
92:7f:66:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 19 09:53:48 2023 by rpki-client on console-fra.rpki-client.org