Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/YU3xTR7cBEvl3n8Tnj81pDg_sow.roa
File: YU3xTR7cBEvl3n8Tnj81pDg_sow.roa (raw, json)
Hash identifier: J4IhZ78E1iC4jZBcoSweuYUfE75/WDRE9UJ2d6YmlAE=
Subject key identifier: 61:4D:F1:4D:1E:DC:04:4B:E5:DE:7F:13:9E:3F:35:A4:38:3F:B2:8C
Certificate issuer: /CN=1535d24e17367e405b780f711049e5f78d101f16
Certificate serial: 0185739F119253B1E8232B63327A5D42A2E8
Authority key identifier: 15:35:D2:4E:17:36:7E:40:5B:78:0F:71:10:49:E5:F7:8D:10:1F:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FTXSThc2fkBbeA9xEEnl940QHxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/YU3xTR7cBEvl3n8Tnj81pDg_sow.roa
Signing time: Mon 02 Jan 2023 17:54:42 +0000
ROA not before: Mon 02 Jan 2023 17:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62176
IP address blocks: 185.38.188.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:9f:11:92:53:b1:e8:23:2b:63:32:7a:5d:42:a2:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1535d24e17367e405b780f711049e5f78d101f16
Validity
Not Before: Jan 2 17:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=614df14d1edc044be5de7f139e3f35a4383fb28c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5d:71:55:e6:b5:94:67:7a:45:fa:81:66:3b:
9c:e7:31:14:97:ff:7d:1a:86:40:9e:28:b2:c7:7d:
32:d6:61:cd:6d:8d:30:fb:c8:99:47:e0:0f:26:1b:
a3:c6:e4:1f:f4:af:af:bb:35:3b:29:64:a6:25:28:
5e:e6:4d:73:11:39:aa:e2:36:5b:81:ea:60:31:22:
04:2d:34:bc:d5:c6:9f:9b:68:f4:b2:d9:a3:be:57:
9e:a8:e0:93:72:34:18:70:94:e1:90:47:51:2f:6a:
22:3e:9a:3a:ed:70:2a:11:ee:ec:ae:9a:f2:ae:af:
11:f9:12:48:0f:1d:ab:46:10:83:23:81:12:95:0b:
86:09:db:72:44:44:e5:2e:ba:70:17:6c:e7:fe:14:
9e:a0:25:bf:d9:0f:aa:2c:6d:ca:52:d2:8d:f0:31:
e3:5c:ca:ad:90:0a:d6:de:44:7f:18:5e:b6:8f:33:
89:1f:71:18:63:71:3a:5a:88:62:ef:76:9b:c5:29:
b3:b4:44:75:04:33:e1:9e:ce:55:aa:1f:41:ac:c8:
c1:5b:c8:4d:bf:ba:78:07:f7:01:f3:ea:52:ed:c8:
70:85:09:1a:78:b6:1c:9d:c1:30:c7:c4:79:32:ba:
b0:16:4e:e1:92:9e:16:dc:86:fc:bb:ab:57:61:1b:
16:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:4D:F1:4D:1E:DC:04:4B:E5:DE:7F:13:9E:3F:35:A4:38:3F:B2:8C
X509v3 Authority Key Identifier:
keyid:15:35:D2:4E:17:36:7E:40:5B:78:0F:71:10:49:E5:F7:8D:10:1F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FTXSThc2fkBbeA9xEEnl940QHxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/YU3xTR7cBEvl3n8Tnj81pDg_sow.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/6a89f0-0b22-452c-a659-42a7af882e09/1/FTXSThc2fkBbeA9xEEnl940QHxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.188.0/22
Signature Algorithm: sha256WithRSAEncryption
8e:b4:72:2a:91:fb:1a:a5:ec:86:c7:13:87:d7:64:98:a4:2c:
fe:7f:98:9e:48:e5:4c:24:63:87:e7:c8:9c:1f:ef:a6:a9:06:
2b:f8:b1:21:45:57:ca:f2:a9:74:29:0a:1a:85:6a:ff:7d:4b:
65:dd:05:aa:7a:4d:73:3e:51:88:d8:85:de:8a:24:5d:d1:d2:
6d:35:4b:ec:6a:10:be:46:61:af:b2:56:93:e8:c9:47:c2:fc:
20:af:9c:0f:5b:42:d3:9b:9e:83:75:a1:f5:4b:04:b5:6d:35:
df:72:27:63:ff:51:a0:69:d1:40:c3:89:b0:4a:3c:0a:6e:76:
14:33:b0:db:55:ea:14:1a:4f:1c:44:42:c1:6d:d7:40:0b:d2:
af:cf:f0:9d:cd:d1:db:74:29:81:17:4f:3f:e7:1d:fe:a8:07:
3e:e5:f2:bd:d2:5c:f6:5c:02:d7:fa:6b:93:e6:69:43:ec:07:
16:44:4e:4b:85:b9:b1:1a:c9:09:97:bf:b4:00:6b:10:f7:a4:
d8:af:dc:84:13:28:3f:08:ea:68:5e:76:9d:a7:8c:9a:12:2b:
f8:50:e4:57:52:46:d0:b2:31:d6:16:03:4b:6e:64:1c:8a:16:
98:8a:95:5a:dc:82:b5:51:9f:14:84:9f:43:51:5c:68:c5:98:
d2:bd:e1:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:50:13 2024 by rpki-client on console-fra.rpki-client.org