Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/DZN8z5fw4Yc1_n422aiesVV2lB8.roa
File: DZN8z5fw4Yc1_n422aiesVV2lB8.roa (raw, json)
Hash identifier: mrw3n1tH3ornYJBkeChYDoPGQ+MqF7qDm0wPd06khZc=
Subject key identifier: 0D:93:7C:CF:97:F0:E1:87:35:FE:7E:36:D9:A8:9E:B1:55:76:94:1F
Certificate issuer: /CN=176ded804d7511b4728ca3cc8b1cb7352711abe6
Certificate serial: 018964C051A7CCA97F554A5747913348A4DF
Authority key identifier: 17:6D:ED:80:4D:75:11:B4:72:8C:A3:CC:8B:1C:B7:35:27:11:AB:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F23tgE11EbRyjKPMixy3NScRq-Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/DZN8z5fw4Yc1_n422aiesVV2lB8.roa
Signing time: Mon 17 Jul 2023 16:47:52 +0000
ROA not before: Mon 17 Jul 2023 16:47:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 185.128.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:64:c0:51:a7:cc:a9:7f:55:4a:57:47:91:33:48:a4:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=176ded804d7511b4728ca3cc8b1cb7352711abe6
Validity
Not Before: Jul 17 16:47:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d937ccf97f0e18735fe7e36d9a89eb15576941f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2b:3d:be:b9:ac:a8:cb:8e:4f:f1:28:82:bc:
14:0b:81:40:64:27:04:a4:c1:94:99:b5:ed:f5:c6:
b4:45:a4:31:d6:92:15:95:6c:9a:ae:6b:f9:fd:b3:
56:34:f3:a4:82:36:ae:48:e2:7e:26:e9:ec:40:5c:
0c:4e:c8:c1:7f:80:c7:4a:e5:31:5b:23:c6:a7:9b:
a4:c8:0b:82:0f:c4:34:c5:71:07:b0:75:15:ec:60:
88:26:61:8a:88:b7:69:03:42:7a:64:33:f5:69:1a:
11:68:61:af:49:95:91:c0:a3:52:4a:97:f1:4f:23:
73:f0:71:63:bd:bd:92:9b:66:45:d1:3f:d4:4b:ef:
62:17:74:90:a6:cf:22:d9:79:05:04:ed:77:36:45:
fe:21:57:9d:de:62:65:a7:81:9b:0e:f9:87:29:15:
ea:85:18:bd:1e:db:17:39:cc:cb:df:32:b3:39:fe:
27:73:1b:47:2e:9e:77:06:82:52:35:8f:36:79:77:
0e:5b:e6:69:da:46:9e:1c:bf:20:d6:51:57:67:63:
25:0b:d5:a0:dd:77:94:0b:10:4f:db:c4:72:5c:a1:
a8:3b:ea:46:a6:eb:cb:6d:d9:3e:f8:ae:a1:b0:4c:
58:f1:1d:c8:54:f1:61:37:fb:c4:d3:ee:a4:09:39:
40:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:93:7C:CF:97:F0:E1:87:35:FE:7E:36:D9:A8:9E:B1:55:76:94:1F
X509v3 Authority Key Identifier:
keyid:17:6D:ED:80:4D:75:11:B4:72:8C:A3:CC:8B:1C:B7:35:27:11:AB:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F23tgE11EbRyjKPMixy3NScRq-Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/DZN8z5fw4Yc1_n422aiesVV2lB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/1087d0-04ab-4b65-b786-8fcb2ce7d6b9/1/F23tgE11EbRyjKPMixy3NScRq-Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.224.0/24
Signature Algorithm: sha256WithRSAEncryption
91:91:d8:64:72:9e:68:6b:80:6a:7e:48:e7:7a:08:09:4b:f5:
5c:b7:89:51:d7:b5:ae:d7:74:a7:08:f8:12:76:31:b4:10:82:
08:4c:a6:34:f5:de:0a:8e:eb:7d:6e:8b:96:0b:a9:2f:8e:57:
ae:2f:d3:5a:5b:d2:ff:6c:1f:4f:97:a5:88:15:5f:37:b2:c3:
77:19:2a:6a:a0:10:b4:ca:bb:e3:de:cd:f2:ef:6e:77:c1:bb:
10:00:c3:81:15:d6:fd:c1:f0:5a:4f:1e:a9:13:00:ec:3e:12:
d4:3c:f5:81:1c:5c:88:c6:aa:02:9e:4a:6f:60:9a:13:9b:d2:
9b:a8:db:9a:c9:3d:55:b0:1a:a8:65:35:79:ee:79:82:a2:ec:
eb:a0:12:b3:c7:2c:42:4d:93:c4:17:3d:1a:e7:c5:25:29:75:
09:be:e3:c8:e9:21:da:3b:a2:28:48:b5:db:7c:3d:69:00:00:
eb:7f:e5:e1:eb:ee:d5:b6:e3:1c:05:28:c5:4f:40:20:24:45:
05:c6:ba:87:bf:0b:0a:4a:37:2d:94:43:5e:b4:6b:c8:c8:1e:
20:87:cf:1f:2d:59:cd:27:d8:32:f7:6a:28:e6:68:c1:11:c9:
19:5a:57:1c:47:30:3d:9a:16:e4:21:41:77:09:08:16:b1:cc:
8a:18:7c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:18:57 2024 by rpki-client on console-ams.rpki-client.org