Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60a100-f166-42d5-8712-1e84f08c1dcb/1/xSLcdsfqG8_J0HF6OOeggRIRpmE.roa
File: xSLcdsfqG8_J0HF6OOeggRIRpmE.roa (raw, json)
Hash identifier: lE6K15N1hTuqhpiuapYXj41+RGkik9NkF9Hlb/0bgCU=
Subject key identifier: C5:22:DC:76:C7:EA:1B:CF:C9:D0:71:7A:38:E7:A0:81:12:11:A6:61
Certificate issuer: /CN=349fd357c3fb8ea30e1207823b646e125318380e
Certificate serial: 01856CAF151E685D5A0B5DFF630F43ABC55E
Authority key identifier: 34:9F:D3:57:C3:FB:8E:A3:0E:12:07:82:3B:64:6E:12:53:18:38:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJ_TV8P7jqMOEgeCO2RuElMYOA4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60a100-f166-42d5-8712-1e84f08c1dcb/1/xSLcdsfqG8_J0HF6OOeggRIRpmE.roa
Signing time: Sun 01 Jan 2023 09:34:51 +0000
ROA not before: Sun 01 Jan 2023 09:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204647
IP address blocks: 185.244.116.0/22 maxlen: 24
2a0d:2c80::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:15:1e:68:5d:5a:0b:5d:ff:63:0f:43:ab:c5:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349fd357c3fb8ea30e1207823b646e125318380e
Validity
Not Before: Jan 1 09:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c522dc76c7ea1bcfc9d0717a38e7a0811211a661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:fd:7a:07:18:1d:7b:44:3c:09:b2:84:14:f3:
df:2c:ec:01:60:ea:33:71:7e:5b:2e:89:ad:50:1e:
8e:58:11:15:26:05:46:50:8f:24:1d:7b:6e:3d:9d:
44:cd:ff:58:da:e3:00:1d:79:79:50:4e:07:97:0e:
79:62:ff:48:de:78:b9:83:22:47:bf:c3:b7:f7:48:
79:f3:ef:bb:76:5d:e0:43:7f:bd:55:df:bb:3f:c0:
f6:36:f0:0e:8d:b7:6f:05:12:42:87:27:0e:26:42:
a5:c3:84:bc:7d:16:e3:70:30:25:e7:ab:2b:3f:68:
b5:4b:e0:4f:17:d6:5c:e2:11:76:fa:2a:60:ff:5d:
0d:0d:30:35:d2:d6:84:b2:80:f9:2a:e0:47:12:5e:
12:51:c9:c6:61:a5:1a:2e:b6:a2:16:cb:c3:6c:7c:
50:08:d6:8c:3d:de:95:1b:2f:ff:1d:db:56:32:ef:
cf:5d:ea:88:77:6d:01:68:3e:1e:88:b7:ed:f9:61:
72:db:43:ea:be:3e:5b:ed:64:6a:a1:44:f1:08:41:
f9:de:e3:01:68:77:c6:6c:4e:59:f9:57:38:18:8b:
39:bd:cc:d7:df:09:a0:28:f7:80:0f:25:7b:bf:86:
75:5b:58:30:ef:f2:a2:ff:a8:44:a6:de:ca:b5:32:
72:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:22:DC:76:C7:EA:1B:CF:C9:D0:71:7A:38:E7:A0:81:12:11:A6:61
X509v3 Authority Key Identifier:
keyid:34:9F:D3:57:C3:FB:8E:A3:0E:12:07:82:3B:64:6E:12:53:18:38:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJ_TV8P7jqMOEgeCO2RuElMYOA4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60a100-f166-42d5-8712-1e84f08c1dcb/1/xSLcdsfqG8_J0HF6OOeggRIRpmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60a100-f166-42d5-8712-1e84f08c1dcb/1/NJ_TV8P7jqMOEgeCO2RuElMYOA4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.116.0/22
IPv6:
2a0d:2c80::/29
Signature Algorithm: sha256WithRSAEncryption
66:88:08:de:4b:92:85:c6:9c:9a:9c:81:5f:88:93:4d:b7:52:
8d:42:96:6c:05:58:76:b6:7b:31:b1:85:bc:8a:e1:11:a2:42:
fa:f8:68:45:e2:49:ad:1b:80:d9:e1:30:8d:70:a8:c0:74:72:
8e:8b:8b:88:08:5c:fd:04:2f:e1:00:86:2b:6f:68:dd:7e:cc:
9e:37:16:99:7b:db:af:5a:23:6f:54:53:15:14:53:b7:b3:ed:
12:80:8e:68:2e:30:42:52:7b:9f:53:bb:8f:b6:e9:7d:b1:72:
e7:45:ec:85:1b:30:3c:11:63:2d:1c:ba:60:c8:87:b5:ee:b4:
c1:a7:be:16:d9:e6:57:2e:c9:79:0f:3a:0c:36:5a:f7:c1:c7:
82:00:e5:cb:71:69:6e:5b:af:5e:63:53:e3:59:18:e3:a3:12:
47:77:62:c1:ec:97:86:15:e7:b4:86:01:ef:78:39:aa:b6:57:
96:07:8a:23:bf:dd:3e:18:2d:af:80:48:1e:b6:50:0a:d5:0e:
80:d7:66:6d:af:e0:a2:c8:c1:01:7d:72:91:ab:0a:68:ff:dc:
51:dd:dc:f3:08:a6:4f:13:ae:b9:61:98:52:60:bc:81:06:eb:
f0:25:33:f0:d8:16:96:ac:91:4f:a5:53:3b:3f:76:d8:55:ef:
87:31:6b:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:27 2024 by rpki-client on console-fra.rpki-client.org