Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/70d450-80e4-44f9-99f3-21bc63f165f8/1/XOYue3zIeTljpAYwcttku9OPn48.roa
File: XOYue3zIeTljpAYwcttku9OPn48.roa (raw, json)
Hash identifier: yBg0c3r2mtAUN1RJyn78ShWG1Gi4sU2Imij8bJY8O00=
Subject key identifier: 5C:E6:2E:7B:7C:C8:79:39:63:A4:06:30:72:DB:64:BB:D3:8F:9F:8F
Certificate issuer: /CN=716752b91747957dccff0e71da674f329d832de3
Certificate serial: 0185720C5301D04C5FF2FCB1C7F240711D27
Authority key identifier: 71:67:52:B9:17:47:95:7D:CC:FF:0E:71:DA:67:4F:32:9D:83:2D:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cWdSuRdHlX3M_w5x2mdPMp2DLeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/70d450-80e4-44f9-99f3-21bc63f165f8/1/XOYue3zIeTljpAYwcttku9OPn48.roa
Signing time: Mon 02 Jan 2023 10:34:48 +0000
ROA not before: Mon 02 Jan 2023 10:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211937
IP address blocks: 185.230.199.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:53:01:d0:4c:5f:f2:fc:b1:c7:f2:40:71:1d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716752b91747957dccff0e71da674f329d832de3
Validity
Not Before: Jan 2 10:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ce62e7b7cc8793963a4063072db64bbd38f9f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:da:7b:58:1d:46:61:fd:59:fe:72:05:ae:e6:
23:80:2a:68:82:ef:3f:33:7a:1c:6a:69:f2:b1:cc:
38:e4:cc:79:a2:f8:c5:9c:7f:3d:cb:7b:b4:c2:81:
30:ac:da:04:6c:4b:71:1c:07:86:8a:a0:e0:8d:fe:
5e:3d:03:ed:c7:09:c4:fc:17:0c:65:70:a8:48:97:
42:90:1e:d6:3d:2a:2b:53:d7:53:93:f8:43:77:b5:
29:78:5c:1e:72:45:19:5d:2a:3d:64:52:ff:74:99:
04:75:9c:2a:d7:a9:b5:38:e8:22:09:03:14:82:ea:
01:06:7a:21:17:3b:03:a8:66:21:33:68:3a:b0:f5:
de:a0:e5:52:d0:01:53:ad:64:f6:c6:9e:ac:bd:19:
5b:c1:f0:07:bf:0b:aa:95:6d:5a:c7:22:8f:87:f8:
1d:33:cb:6a:ca:ed:c3:fb:55:2f:e0:f3:69:57:62:
0c:ff:4b:98:6a:d0:41:bd:b8:ca:be:bf:ac:03:2e:
22:a7:a7:20:f3:b5:77:bb:2c:40:00:8e:6c:13:b4:
21:4d:ab:56:fc:d6:3c:29:aa:fa:35:5f:46:6d:2c:
e0:0d:6e:a8:18:0f:8e:35:be:d0:40:fc:04:ad:85:
1f:9e:94:6b:54:ea:bf:a5:0d:83:20:ac:df:b4:3a:
47:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:E6:2E:7B:7C:C8:79:39:63:A4:06:30:72:DB:64:BB:D3:8F:9F:8F
X509v3 Authority Key Identifier:
keyid:71:67:52:B9:17:47:95:7D:CC:FF:0E:71:DA:67:4F:32:9D:83:2D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cWdSuRdHlX3M_w5x2mdPMp2DLeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/70d450-80e4-44f9-99f3-21bc63f165f8/1/XOYue3zIeTljpAYwcttku9OPn48.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/70d450-80e4-44f9-99f3-21bc63f165f8/1/cWdSuRdHlX3M_w5x2mdPMp2DLeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.199.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:39:87:42:c3:b8:34:3c:b3:be:ed:b4:09:e1:25:73:fc:05:
65:e4:a0:92:da:5d:4d:69:46:3e:16:c5:09:84:39:7d:89:e1:
c4:fb:a2:a6:d1:3d:de:9a:1e:58:52:93:5f:6c:2d:56:19:53:
7b:68:70:50:8f:f3:7c:ff:8b:14:06:fd:12:5d:d6:34:bd:ff:
c5:f2:9b:56:3c:bc:b9:0b:d8:c0:f5:cc:89:74:58:28:95:e6:
3a:69:64:2e:12:84:81:93:7b:1d:51:a4:4b:5e:f4:b9:ec:78:
4d:3f:1c:83:db:02:9e:27:9f:3f:3b:a7:42:79:21:8a:b9:cd:
d7:30:fe:35:43:cf:9d:c6:35:93:13:98:b9:7f:fc:55:3e:12:
df:67:de:5d:53:fb:7a:a5:15:1f:e8:90:50:19:65:01:02:8b:
37:cb:4d:57:0c:57:2f:98:f9:01:bf:79:76:c9:2f:3c:cf:a7:
43:63:38:02:c7:41:0e:eb:02:39:7c:11:1c:c4:ab:2b:97:2e:
db:e5:48:36:c9:d0:27:6e:c9:5a:57:22:33:69:ba:d1:39:a5:
d9:e4:5c:b5:e9:d2:37:0d:20:01:57:62:d5:68:f9:42:ad:fd:
c6:70:bb:db:3e:0f:bf:37:f3:df:6e:2a:1f:9e:df:1b:2a:24:
a7:5b:2b:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:11 2024 by rpki-client on console-fra.rpki-client.org