Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/T4Q-NKQV_bAfE95zjjquii_csvE.roa
File: T4Q-NKQV_bAfE95zjjquii_csvE.roa (raw, json)
Hash identifier: gV17FDbfsJ1iMipkXU2lW+C1yGVC4wudcziPiiqvcB0=
Subject key identifier: 4F:84:3E:34:A4:15:FD:B0:1F:13:DE:73:8E:3A:AE:8A:2F:DC:B2:F1
Certificate issuer: /CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Certificate serial: 0185BF790C94F145E00A623D9F5ACC58C532
Authority key identifier: 38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/T4Q-NKQV_bAfE95zjjquii_csvE.roa
Signing time: Tue 17 Jan 2023 11:24:19 +0000
ROA not before: Tue 17 Jan 2023 11:24:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62027
IP address blocks: 185.97.134.0/24 maxlen: 24
185.97.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:bf:79:0c:94:f1:45:e0:0a:62:3d:9f:5a:cc:58:c5:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38ca3f38d8e5a301eaf6924b924fe8f57aac690d
Validity
Not Before: Jan 17 11:24:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f843e34a415fdb01f13de738e3aae8a2fdcb2f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:95:fc:7f:43:e5:83:c2:be:ea:97:2e:fc:29:
7d:30:23:4c:c7:52:d9:ff:20:1c:7d:e2:ee:56:94:
3e:9f:ee:31:90:a4:59:9d:da:ea:2f:66:b6:2f:ab:
75:3c:23:39:46:7e:7d:0e:dc:d8:f8:a9:de:c6:53:
78:16:9b:dc:49:12:af:88:55:2d:22:06:45:e9:73:
28:25:cb:56:05:f1:9c:3e:b6:c2:af:f1:b1:b8:b6:
9c:2e:62:c1:89:40:d7:bc:e5:cb:c9:05:96:4d:49:
30:ba:a7:2d:f7:1e:c6:84:e4:56:cd:7f:8a:29:da:
1e:1a:01:46:9b:a8:6a:36:88:51:23:c8:34:01:16:
c1:c2:51:1f:79:5d:2c:a0:15:e6:55:fe:ec:70:6a:
ec:22:80:fd:98:b7:05:b9:cb:4e:49:5e:44:d5:92:
59:07:7c:93:24:86:30:b7:f2:46:54:d2:7c:89:09:
42:32:7f:81:06:a7:f0:d6:d1:c6:46:85:7c:53:9b:
3d:25:4d:93:c9:ac:b5:34:66:94:f9:c2:20:33:bc:
37:8b:5c:7d:8a:cb:8b:e4:cb:33:5a:c4:da:72:6f:
e0:77:e0:8f:07:56:ac:49:53:f8:63:9f:9d:39:79:
73:2a:81:d2:ca:0c:8d:e3:eb:b8:8b:7a:88:56:fe:
13:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:84:3E:34:A4:15:FD:B0:1F:13:DE:73:8E:3A:AE:8A:2F:DC:B2:F1
X509v3 Authority Key Identifier:
keyid:38:CA:3F:38:D8:E5:A3:01:EA:F6:92:4B:92:4F:E8:F5:7A:AC:69:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OMo_ONjlowHq9pJLkk_o9XqsaQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/T4Q-NKQV_bAfE95zjjquii_csvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/ba6755-4273-48e1-8582-712fa65a25ba/1/OMo_ONjlowHq9pJLkk_o9XqsaQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.97.134.0/23
Signature Algorithm: sha256WithRSAEncryption
87:39:a0:b0:99:56:72:fc:7e:a0:b4:b6:28:08:0f:91:87:a1:
f7:b8:05:77:e4:2f:0a:c4:44:b1:38:8d:61:d8:31:a8:0a:88:
13:5e:eb:f7:03:db:63:ff:80:3b:a4:c2:f6:0e:71:22:e1:09:
f5:a3:8e:54:d4:6e:3a:c3:2c:7c:25:f0:03:48:44:79:c1:96:
96:5b:88:6d:a9:eb:73:e9:c6:97:51:60:54:12:71:b9:3f:be:
03:83:9a:ea:91:07:be:0d:e6:01:fd:4a:ed:2e:f5:2f:7b:ff:
8b:72:f8:72:49:87:9b:9d:8a:48:b9:4e:f5:e2:38:4b:87:60:
bb:4f:58:2e:5c:48:ec:06:4c:f8:20:18:32:f1:cc:2b:b3:ac:
84:27:10:65:fc:ef:0d:60:06:0e:7c:75:c2:d0:d6:64:6e:ca:
f8:fb:f0:0e:e8:f3:64:3f:6f:71:21:e0:ff:66:81:d1:74:6d:
24:f0:f7:af:c7:c7:63:7c:5d:86:27:8e:c5:60:5d:05:5d:67:
39:a4:9c:10:cb:ba:5f:d6:c9:3c:d7:0d:c7:d8:83:6a:45:22:
ca:49:d3:14:59:ef:7f:89:43:c2:26:45:45:3e:1d:c2:79:c0:
13:89:9f:48:2b:b8:c6:be:fa:30:f7:69:ae:4b:ff:20:5b:58:
ea:3b:23:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:27 2023 by rpki-client on console-fra.rpki-client.org