Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/4wNaIdhiofXIIGoDgY5EYkPEzmg.roa
File: 4wNaIdhiofXIIGoDgY5EYkPEzmg.roa (raw, json)
Hash identifier: eM/FaFfcQE/LoHgTqRW32GoAHWgvT8o+SFrTIYs0bL0=
Subject key identifier: E3:03:5A:21:D8:62:A1:F5:C8:20:6A:03:81:8E:44:62:43:C4:CE:68
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 01856CAF04B2869C6EF1323DE245489E9FCE
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/4wNaIdhiofXIIGoDgY5EYkPEzmg.roa
Signing time: Sun 01 Jan 2023 09:34:47 +0000
ROA not before: Sun 01 Jan 2023 09:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 62.56.208.0/21 maxlen: 24
85.208.46.0/24 maxlen: 24
85.208.45.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:04:b2:86:9c:6e:f1:32:3d:e2:45:48:9e:9f:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Jan 1 09:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3035a21d862a1f5c8206a03818e446243c4ce68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:dd:5d:f5:ed:9e:30:e9:e2:ca:77:77:cd:47:
65:3c:52:a2:13:ae:4a:9e:92:cf:63:ac:b8:65:31:
b3:bf:9d:47:2c:83:71:c5:9e:9a:8a:dd:b0:6f:8e:
1a:7d:88:e3:29:a6:8e:52:c8:86:7f:d4:ed:08:bf:
ff:d8:04:2f:a4:a3:1a:6f:f3:28:63:17:7f:c7:22:
31:77:4f:c7:9a:c6:36:a3:94:17:c7:d6:1e:ef:c4:
79:3f:7a:35:d2:e3:42:a0:83:e2:83:95:da:e6:04:
89:a6:48:26:dc:aa:a3:c2:ab:3c:8c:15:f8:e8:22:
f1:27:53:fa:93:c6:ec:28:52:20:84:0f:85:5a:4c:
8c:06:e0:fa:77:cd:23:94:a6:1b:92:33:4f:a4:d4:
da:e3:05:06:45:46:df:5d:cc:64:cf:e7:ac:09:ad:
d1:5e:69:ec:74:bd:90:23:80:fe:7a:b3:f6:f1:cf:
21:8b:37:24:d4:91:07:19:15:c0:cb:b7:71:49:b4:
d7:af:78:47:19:54:1d:08:00:77:d7:07:86:ea:79:
61:7f:4a:42:e7:88:1d:c9:f7:cb:6d:7d:a6:f5:c9:
cf:1c:eb:ee:a4:2b:1d:1f:02:e6:b0:25:3d:52:de:
59:bd:2e:f7:12:c7:ff:1e:9c:d6:a2:20:50:82:4d:
e9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:03:5A:21:D8:62:A1:F5:C8:20:6A:03:81:8E:44:62:43:C4:CE:68
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/4wNaIdhiofXIIGoDgY5EYkPEzmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
62.56.208.0/21
85.208.45.0-85.208.46.255
Signature Algorithm: sha256WithRSAEncryption
40:ad:78:80:fb:4e:7d:53:6b:cd:ec:78:f8:8b:e2:e9:a2:0d:
8f:5d:e9:19:f5:58:4f:f2:5b:a2:07:da:20:f4:0f:b0:04:3d:
f9:ab:5d:f0:28:9d:dc:fa:56:ae:8a:77:ad:12:cc:b9:bf:da:
b3:7f:84:48:af:ae:3b:e6:c8:b3:d2:9a:20:70:05:a9:91:69:
af:c6:6b:e7:00:fa:84:73:ac:8c:93:27:9e:81:47:30:80:08:
4c:e4:01:dc:86:30:99:96:48:58:c6:5f:7f:a8:3b:11:4b:5b:
2a:35:f8:ae:d5:be:2e:df:c2:e0:2b:e4:ed:34:e4:22:bc:04:
50:15:ff:12:6d:56:c1:50:3a:96:94:e6:0d:da:1e:d4:5c:2e:
8e:22:18:4e:f3:f4:02:e1:e1:16:0c:dd:c6:4f:dc:13:a4:36:
fa:35:18:8b:56:79:0a:00:3a:79:71:95:fd:57:f7:36:72:8f:
82:74:cf:c6:93:5d:82:91:76:ae:e6:ab:3a:f3:d9:0d:73:00:
1e:d6:70:3b:0b:7a:5e:26:1a:80:00:14:84:b8:04:2d:d1:77:
88:27:7b:be:07:b0:a3:af:19:75:a7:79:7e:88:6c:78:11:d7:
04:93:99:38:b9:09:f5:93:88:fc:9c:57:f4:e8:9f:bd:06:e3:
67:5a:ae:05
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org