Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/xKocUTybvr4FFhx9qKIP83auFuI.roa
File: xKocUTybvr4FFhx9qKIP83auFuI.roa (raw, json)
Hash identifier: ATAWaA5o4Ey2eYpGnvIw/+NCBI1HDnIYvM/i6uxA9K8=
Subject key identifier: C4:AA:1C:51:3C:9B:BE:BE:05:16:1C:7D:A8:A2:0F:F3:76:AE:16:E2
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 0189F0606F74401F030CBD54F93CB53773BA
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/xKocUTybvr4FFhx9qKIP83auFuI.roa
Signing time: Sun 13 Aug 2023 19:29:59 +0000
ROA not before: Sun 13 Aug 2023 19:29:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 185.104.14.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f0:60:6f:74:40:1f:03:0c:bd:54:f9:3c:b5:37:73:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Aug 13 19:29:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c4aa1c513c9bbebe05161c7da8a20ff376ae16e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f3:f2:bc:1e:86:70:69:63:8e:82:b3:d4:27:
bc:35:f9:a6:ba:9d:87:9f:db:fb:9d:65:59:56:73:
6d:f0:e7:bd:83:ef:8d:bb:83:e7:7c:30:15:cd:fa:
8d:33:b4:f5:44:04:3a:4b:5d:f7:a8:db:e3:f6:91:
8d:2a:3e:aa:95:1d:14:29:0a:8c:ba:e5:14:06:83:
fc:50:0f:4c:e0:9e:f3:6d:69:6a:26:ac:76:0c:e5:
e1:2f:34:fd:0a:f7:cc:4c:60:08:a7:65:69:d9:2f:
2a:2d:06:4f:8b:60:37:66:5b:92:65:0b:39:3b:6c:
ed:70:b2:d8:77:c1:84:c4:b4:4a:88:b5:9d:e7:ee:
58:6e:50:15:cc:90:1a:7d:9f:84:ee:ea:88:70:79:
98:51:d8:1d:bc:66:de:15:33:f0:a8:00:10:a1:ee:
b6:b2:c2:19:30:6f:91:a6:2a:64:63:1e:10:95:dd:
a3:b9:9e:2e:2b:fe:af:c5:49:ba:7d:07:0a:15:21:
f1:b8:b5:97:b8:81:bc:52:52:06:39:cc:1d:6f:f3:
a9:f4:42:c1:72:0c:31:1f:50:a2:fa:06:d9:8b:8b:
fe:59:d6:b1:ff:7f:b5:f1:63:fd:f7:fd:4c:b4:de:
2b:4f:8a:55:2d:31:60:4e:67:f7:cb:c1:03:87:4f:
1a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:AA:1C:51:3C:9B:BE:BE:05:16:1C:7D:A8:A2:0F:F3:76:AE:16:E2
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/xKocUTybvr4FFhx9qKIP83auFuI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.14.0/23
Signature Algorithm: sha256WithRSAEncryption
36:b9:f6:fa:38:dc:25:f1:63:47:c3:2a:e9:87:4b:9f:aa:73:
df:5b:9b:13:96:bc:d0:a8:56:68:04:5f:c6:4b:a6:fb:97:f8:
0d:14:d9:4b:ee:59:4f:0a:00:97:a1:71:83:83:01:8f:8c:36:
83:56:da:e7:6d:e7:58:15:5d:4c:03:0d:9c:ec:88:0f:c4:ee:
ea:70:5c:fc:ff:18:24:3b:44:43:91:bc:2f:aa:a8:8a:93:db:
ca:bc:0b:6a:49:f5:11:b4:a4:27:cd:12:54:0f:9f:78:89:45:
80:2a:88:eb:5b:89:02:41:9b:94:7e:25:8d:b4:c0:7b:15:1d:
28:60:9e:a0:5a:d9:40:c2:b4:84:16:a0:bc:24:2a:6a:61:d7:
c9:76:f8:31:9b:24:a7:b2:aa:19:f1:f6:ea:5e:e7:37:b6:16:
2b:df:ce:f7:c5:cc:b1:17:f5:98:dd:4b:3c:0a:92:9e:28:04:
ea:6a:f5:50:61:98:45:c7:1f:60:4a:45:29:1a:85:d0:24:cb:
b6:90:13:14:ec:fb:1b:29:be:6f:61:4f:86:12:82:72:ec:b8:
1f:e2:6f:fc:ef:65:f8:01:5e:d2:1b:4b:66:92:87:89:0f:42:
11:b4:65:c3:88:c8:24:2e:19:a2:a2:99:af:68:26:e1:bf:47:
d1:b8:ff:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:36 2024 by rpki-client on console-ams.rpki-client.org