Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/PPZcwjDw1Tb-1wd7ZDP2TgFrIOE.roa
File: PPZcwjDw1Tb-1wd7ZDP2TgFrIOE.roa (raw, json)
Hash identifier: Uxn3YkIVmN7po9WmabRZc1jg9JpmEvHjsLYBP8CdtO8=
Subject key identifier: 3C:F6:5C:C2:30:F0:D5:36:FE:D7:07:7B:64:33:F6:4E:01:6B:20:E1
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 018BF76A03B95D8A8E8E8166CC7339CB7D04
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/PPZcwjDw1Tb-1wd7ZDP2TgFrIOE.roa
Signing time: Wed 22 Nov 2023 14:23:21 +0000
ROA not before: Wed 22 Nov 2023 14:23:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 185.104.12.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f7:6a:03:b9:5d:8a:8e:8e:81:66:cc:73:39:cb:7d:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Nov 22 14:23:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cf65cc230f0d536fed7077b6433f64e016b20e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:8b:87:fe:26:c6:df:bc:42:15:9a:b1:cb:19:
5c:0c:78:e1:2c:7d:b8:69:68:e4:c2:aa:49:68:32:
54:42:e9:72:a1:03:9a:bb:be:58:76:cd:67:86:01:
ca:6d:37:f0:4b:a0:17:37:49:d4:f9:3c:37:cc:e1:
7e:ae:f4:c2:d1:3f:e9:0e:57:1d:55:c3:e5:40:8d:
02:ea:b0:f1:d7:6f:23:73:24:42:1b:8a:d5:44:ba:
0f:03:9b:45:0b:c5:fa:05:06:f8:37:28:56:01:a0:
fa:0f:ae:eb:40:37:3b:87:5c:fa:95:d7:6b:16:11:
83:cd:77:a1:c5:07:df:dc:be:77:bd:b3:01:db:8c:
7e:e5:6c:45:0f:91:da:5e:d4:c3:ea:72:61:29:fc:
4f:4e:6b:97:99:85:22:41:3d:de:ca:35:44:e3:9b:
fa:1a:db:8f:5f:cc:3c:a9:13:2b:ad:39:63:66:58:
26:a8:88:60:31:18:ad:d5:1a:79:63:16:67:63:30:
08:f5:1f:21:28:e9:0a:aa:92:3c:c3:37:1a:82:ed:
1e:1d:4d:bb:97:5b:56:42:fd:96:43:2a:e0:b8:cf:
ab:cf:5a:32:13:61:a9:90:2f:57:c2:86:92:0a:ba:
27:0a:2c:45:7a:f0:d9:c6:ad:a8:d0:d8:ed:7b:c9:
57:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:F6:5C:C2:30:F0:D5:36:FE:D7:07:7B:64:33:F6:4E:01:6B:20:E1
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/PPZcwjDw1Tb-1wd7ZDP2TgFrIOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.12.0/24
Signature Algorithm: sha256WithRSAEncryption
47:ec:e0:9d:dd:8f:e4:8f:8b:42:46:d0:e4:e4:79:9c:7d:3e:
7d:d3:be:8b:f0:3b:44:ab:d2:27:10:76:7f:26:0e:8d:df:d2:
9d:69:69:53:ba:52:97:4e:21:9e:ca:6c:a4:52:37:cb:bf:fe:
59:1c:27:9c:f4:96:47:1b:63:03:5e:da:db:15:e6:77:27:f4:
f9:b7:ac:0a:4f:3f:f2:7b:62:49:57:ea:bd:57:fa:df:1a:dc:
21:a8:ca:4e:2c:e9:4d:af:f8:b1:ca:c7:fb:a9:dc:ff:49:ef:
4e:fa:01:10:8e:9b:47:74:80:6e:91:3c:56:c4:db:bb:f2:1d:
21:4b:b1:6b:03:24:ce:ac:d6:cf:09:55:5b:e6:eb:99:90:a4:
0e:3c:b2:81:57:fd:8c:67:2b:70:50:8e:13:db:4a:5e:bc:1f:
c1:8a:1e:64:39:1b:a2:ce:a6:a4:fe:0d:e5:da:96:ea:60:23:
f2:4d:9d:65:26:ec:71:0b:8b:10:d2:bf:dd:62:f9:28:2c:fc:
bc:74:4a:ca:e4:d4:68:46:6f:c7:d2:95:d1:92:69:28:17:20:
70:40:19:8d:27:63:0b:52:9b:47:27:a1:63:46:52:62:76:f0:
5c:b3:94:73:f2:7f:9f:a9:a7:07:0c:54:a8:8d:52:8d:d0:53:
ea:9b:e1:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:21 2024 by rpki-client on console-fra.rpki-client.org