Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/DAZHPNgRa-Pv24gn2fkuzliughI.roa
File: DAZHPNgRa-Pv24gn2fkuzliughI.roa (raw, json)
Hash identifier: Kk6Ku78B+vwvvbyLHLLxYg1m0MKOg5d2oZnN/N1b5As=
Subject key identifier: 0C:06:47:3C:D8:11:6B:E3:EF:DB:88:27:D9:F9:2E:CE:58:AE:82:12
Certificate issuer: /CN=109192c073862e6220c5f9106d7c55e3fc6c5d4b
Certificate serial: 01856F30213B871756287E6320A53142F434
Authority key identifier: 10:91:92:C0:73:86:2E:62:20:C5:F9:10:6D:7C:55:E3:FC:6C:5D:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/DAZHPNgRa-Pv24gn2fkuzliughI.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 24971
IP address blocks: 185.239.216.0/22 maxlen: 22
2a0c:6380::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:21:3b:87:17:56:28:7e:63:20:a5:31:42:f4:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=109192c073862e6220c5f9106d7c55e3fc6c5d4b
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0c06473cd8116be3efdb8827d9f92ece58ae8212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:61:71:a0:ec:12:dc:f7:c3:01:3c:b0:85:73:
70:ad:e1:d7:0c:97:d8:20:79:8f:c5:84:06:2f:97:
54:fb:2a:06:90:40:0f:73:52:3d:03:b2:47:f8:67:
15:aa:25:b8:24:c7:0e:24:bc:f2:65:ed:cf:ef:87:
7a:bb:0a:a0:db:fe:59:dd:2f:70:26:7e:e8:d4:c0:
a6:04:49:ee:02:b3:d0:67:44:1a:21:c6:9a:63:ac:
2e:3d:2a:a6:d2:78:e5:92:a8:00:d5:89:0f:7b:17:
a4:25:27:f4:9a:49:c0:ad:35:3f:ae:2d:5f:b1:25:
15:58:fa:fa:7c:34:c1:14:ee:29:2e:02:08:63:05:
dc:a6:0b:fa:2d:9b:97:b1:31:42:23:6b:88:76:37:
19:8f:93:09:36:fa:41:7f:6d:99:18:16:b8:58:05:
7b:6e:60:f5:0e:8b:0d:0e:90:cd:f5:b8:be:0f:75:
6a:bd:82:b9:4b:f7:69:ef:d7:12:ca:e6:60:d4:5a:
2f:94:75:de:f9:a4:17:1a:c1:2c:13:a4:8f:00:b9:
71:18:c1:86:41:b2:b3:ad:ee:8c:ec:f9:01:5c:8f:
4b:70:6e:77:c6:6a:fd:d8:03:79:ab:c0:d1:ed:be:
69:fc:78:a0:2d:ff:00:8d:50:3e:2e:3b:1e:71:91:
e3:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:06:47:3C:D8:11:6B:E3:EF:DB:88:27:D9:F9:2E:CE:58:AE:82:12
X509v3 Authority Key Identifier:
keyid:10:91:92:C0:73:86:2E:62:20:C5:F9:10:6D:7C:55:E3:FC:6C:5D:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EJGSwHOGLmIgxfkQbXxV4_xsXUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/DAZHPNgRa-Pv24gn2fkuzliughI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/53c051-5572-4f83-a7d6-e6fe691d9489/1/EJGSwHOGLmIgxfkQbXxV4_xsXUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.216.0/22
IPv6:
2a0c:6380::/29
Signature Algorithm: sha256WithRSAEncryption
8d:f1:f5:e9:43:ba:1a:08:ad:b4:fb:d4:cc:55:6c:d5:6d:ef:
5c:01:45:7b:57:bb:0d:95:47:b0:42:cb:fd:05:d0:07:dc:71:
71:5a:0a:5d:a7:dc:22:c2:5e:d0:eb:09:d2:aa:d6:a6:52:b2:
1c:b0:e3:61:cf:3b:0a:89:ca:94:fa:2d:b8:aa:1c:dd:8f:a1:
75:b1:5d:e2:b1:0d:35:6e:04:44:89:5a:5f:ac:49:35:bc:b3:
05:d1:0a:8c:cf:6f:dd:77:10:8d:96:a4:6f:10:d3:f7:f6:12:
6a:9b:d3:e6:39:a8:1f:62:42:b7:eb:ad:33:5f:72:bb:69:7b:
3c:71:ad:a0:8b:02:85:ea:52:eb:6c:35:31:6a:00:b4:20:b3:
2d:2d:71:cd:1a:3e:5b:94:ce:e9:06:cf:6d:9a:d1:fe:e0:4c:
2e:4d:35:60:22:cd:a5:88:92:dd:32:76:39:29:f8:cd:40:23:
7b:b7:b4:35:6b:57:b0:af:c0:bc:a2:9d:a4:70:69:b9:fa:93:
9a:42:83:f1:f3:6c:69:27:52:56:8d:7e:ce:54:b0:0c:7e:9b:
df:24:8c:22:14:d5:11:2d:d8:78:f6:f9:c0:5e:03:33:11:6e:
e4:85:19:2e:14:22:9d:7b:1a:91:5b:1d:af:60:6a:f3:3a:69:
89:6f:7b:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:41 2024 by rpki-client on console-ams.rpki-client.org