Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/106PYyhfYOO_WDddb4XnU0KEtbU.roa
File: 106PYyhfYOO_WDddb4XnU0KEtbU.roa (raw, json)
Hash identifier: Jj3W0tfGEA1+0U1fnGNsRNseKH1salnfWZETukaExZk=
Subject key identifier: D7:4E:8F:63:28:5F:60:E3:BF:58:37:5D:6F:85:E7:53:42:84:B5:B5
Certificate issuer: /CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Certificate serial: 018571FA3593C87B0844BE3A6ACC8FEBD624
Authority key identifier: A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/106PYyhfYOO_WDddb4XnU0KEtbU.roa
Signing time: Mon 02 Jan 2023 10:15:01 +0000
ROA not before: Mon 02 Jan 2023 10:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204540
IP address blocks: 185.112.172.0/24 maxlen: 24
185.112.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:35:93:c8:7b:08:44:be:3a:6a:cc:8f:eb:d6:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7ee182d9c43a5ce7068dfd9ba7aa8ed90e5e0ba
Validity
Not Before: Jan 2 10:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d74e8f63285f60e3bf58375d6f85e7534284b5b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a6:79:ef:f1:42:e8:41:61:16:cf:76:31:fb:
b1:7a:cd:1d:ba:f7:4f:7a:ed:96:5e:09:ea:df:c9:
47:00:65:f6:0e:de:b3:22:a6:7f:74:cc:1d:41:4a:
53:38:21:f3:14:8b:1e:c1:7d:c7:a0:0d:05:ac:13:
fa:02:f9:e4:85:92:d6:7d:f2:1e:eb:47:b3:cf:93:
40:01:f6:68:a9:06:44:60:64:e6:5e:5b:da:9a:18:
d1:ce:5f:c5:44:12:b3:7b:bc:be:7a:96:71:80:3d:
22:c8:df:6b:da:0d:9c:5e:79:64:d7:e7:98:ad:40:
0a:93:60:8f:2b:ca:9f:3d:10:22:25:a3:36:f4:b2:
97:18:39:84:5d:31:47:69:a7:21:8d:ba:90:b9:2c:
0f:34:b4:a6:84:3f:c1:21:0e:f7:9c:25:9d:5e:c8:
d1:5a:db:c1:32:f7:ec:09:17:6c:ac:f3:d3:17:d0:
9b:69:68:0d:74:42:c4:84:65:d5:82:21:fb:81:a7:
31:9e:53:14:9c:dd:e5:40:67:d2:65:04:a9:a5:7c:
15:62:68:ec:93:9f:ce:44:be:ed:bf:63:a0:0e:4d:
76:3d:5f:6e:a8:f4:0b:ec:f9:af:1d:31:b7:1f:0e:
7c:98:16:19:ff:9f:91:c6:ac:1b:dc:f9:67:5e:13:
12:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:4E:8F:63:28:5F:60:E3:BF:58:37:5D:6F:85:E7:53:42:84:B5:B5
X509v3 Authority Key Identifier:
keyid:A7:EE:18:2D:9C:43:A5:CE:70:68:DF:D9:BA:7A:A8:ED:90:E5:E0:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/106PYyhfYOO_WDddb4XnU0KEtbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/dab420-0de3-4321-9c09-6b5f68522a7d/1/p-4YLZxDpc5waN_Zunqo7ZDl4Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.112.172.0/23
Signature Algorithm: sha256WithRSAEncryption
73:d4:a6:24:42:3a:21:8c:a4:80:10:9e:a1:79:3f:04:66:50:
a5:26:7d:39:43:74:d3:e5:2e:b5:f2:62:03:fa:d5:a3:2a:47:
e5:61:a8:e2:10:f9:92:ec:16:96:09:0a:fb:f6:6d:c5:c6:6a:
64:1f:c4:e4:7a:19:b1:e6:42:d2:7e:fb:11:dc:43:b6:e1:bc:
22:20:06:82:83:44:04:48:6d:47:6a:0f:43:83:43:94:1a:ed:
f1:76:4b:1c:32:bb:86:06:e8:01:5f:0c:b2:0a:05:10:4c:e8:
df:bb:cc:9b:82:da:5c:d7:fb:21:e0:8c:f6:c4:b0:ce:30:58:
4d:bb:17:32:e8:42:26:60:e9:97:91:da:de:7e:bf:2e:19:be:
4e:f2:55:1d:5e:8e:c3:0b:a5:c7:c6:1f:b7:91:26:0e:79:1f:
f8:39:93:56:59:b9:7e:55:af:76:ff:25:cd:7d:f6:80:a9:16:
0f:a5:fe:5f:6a:52:63:40:08:7f:65:e2:de:db:28:b1:25:9b:
66:a4:fe:3f:6d:62:aa:0a:ac:fb:e0:99:31:98:f5:a8:ba:43:
18:8b:2e:ce:2a:89:7c:33:9f:4e:b6:21:ea:c5:0e:ea:b2:3e:
48:17:b4:b9:1a:20:ac:c0:20:a8:8b:af:b4:40:9b:59:53:f9:
e7:e1:72:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:31:58 2024 by rpki-client on console-ams.rpki-client.org