Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/mS3UhJWby_0ehj0hwpLa-iGWk7c.roa
File: mS3UhJWby_0ehj0hwpLa-iGWk7c.roa (raw, json)
Hash identifier: CUrp6rwRUnX/EtfK8K92QFaF7xf9M4jh250zdW0GUb8=
Subject key identifier: 99:2D:D4:84:95:9B:CB:FD:1E:86:3D:21:C2:92:DA:FA:21:96:93:B7
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 0187B30412B6C18AF702ED7D51EB701F2CE7
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/mS3UhJWby_0ehj0hwpLa-iGWk7c.roa
Signing time: Mon 24 Apr 2023 11:26:41 +0000
ROA not before: Mon 24 Apr 2023 11:26:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39650
IP address blocks: 185.229.133.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:b3:04:12:b6:c1:8a:f7:02:ed:7d:51:eb:70:1f:2c:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Apr 24 11:26:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=992dd484959bcbfd1e863d21c292dafa219693b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d6:0b:d5:94:53:81:cb:48:97:f6:a2:e7:00:
cb:29:75:93:de:81:da:73:ef:a7:09:1f:e6:ee:81:
5e:01:0d:c2:47:de:89:a2:30:8d:03:20:94:06:77:
76:f4:2f:84:62:24:55:32:f9:05:a1:b9:33:09:92:
6f:ce:2c:51:11:ca:d9:87:53:4b:1d:09:97:64:18:
c5:bc:8f:d5:f1:24:7f:32:eb:46:d1:7c:34:c4:16:
64:c4:cd:35:c2:cb:fc:78:bc:57:ba:a2:7c:bc:f9:
e6:f6:5e:3a:ba:5b:63:80:4a:01:b5:6f:06:e0:18:
72:36:4a:fb:e7:9a:22:cb:ea:29:df:e4:40:a1:22:
f9:6a:d7:dc:dc:db:7c:d9:36:90:7f:59:16:c8:8f:
67:b3:7d:4e:3b:05:1e:e2:b6:e2:a9:47:70:db:e0:
1a:d1:59:99:be:77:a8:57:1f:7a:eb:79:c4:37:2e:
06:9e:53:02:32:c2:07:c2:14:ef:62:04:b5:0c:11:
d6:64:7b:64:8f:12:da:fe:9a:fa:6d:af:0a:a7:68:
44:4e:fd:86:db:fa:53:4f:64:5a:b9:93:1d:e4:4f:
04:6a:bc:64:f9:50:76:62:85:6e:8a:3d:42:77:ed:
3f:50:2c:f9:65:d6:93:c6:b7:df:d9:cb:0a:79:37:
05:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:2D:D4:84:95:9B:CB:FD:1E:86:3D:21:C2:92:DA:FA:21:96:93:B7
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/mS3UhJWby_0ehj0hwpLa-iGWk7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.133.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:7a:69:c6:83:a7:22:63:29:c7:e8:1a:d0:86:eb:0c:58:bb:
2d:6c:6b:7c:d5:b9:c2:09:21:1a:cf:94:85:75:85:e1:af:e9:
d7:6e:4f:e8:e8:d9:e8:04:b9:3a:bd:31:48:3d:94:8a:5e:23:
91:0b:f1:22:b1:53:ed:7c:cb:04:d1:53:c6:65:73:89:54:cf:
c7:6d:92:c1:32:58:8b:69:bc:e9:77:80:79:4d:21:65:7f:62:
cf:bf:b0:1d:f7:b6:02:8a:c5:23:08:c1:e6:dc:38:ca:c3:eb:
c6:47:fd:e0:36:28:91:c7:83:71:ce:2f:1f:e9:aa:49:e2:ca:
0b:1b:5f:13:ed:7e:1d:bd:11:e9:68:ab:58:84:d8:93:7f:0a:
c2:83:cf:28:bc:f3:d8:35:4c:bf:8b:14:74:53:18:94:0e:61:
ad:8a:f7:7f:d7:16:c7:79:e4:31:b2:9d:79:27:37:cc:83:6e:
34:c9:1e:e5:e2:78:63:52:b1:d1:d6:7e:79:8c:36:ac:ca:9c:
49:9e:78:cc:c4:96:72:86:a3:af:4b:67:53:92:05:f5:7e:7e:
da:78:73:d8:50:cc:3e:c7:5f:44:92:71:7a:05:79:d1:2d:4b:
96:4b:b2:6f:64:1e:5e:2d:44:b9:de:a1:94:a0:a9:8c:6d:5d:
a8:84:86:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:34 2023 by rpki-client on console-ams.rpki-client.org