Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/aAWczPd2GnhjJwtf-AG49ogbFQM.roa
File: aAWczPd2GnhjJwtf-AG49ogbFQM.roa (raw, json)
Hash identifier: OXbr6+EHRvxKrEa+MSNsFPhZxbmJyiKIrV3ilHEhpcc=
Subject key identifier: 68:05:9C:CC:F7:76:1A:78:63:27:0B:5F:F8:01:B8:F6:88:1B:15:03
Certificate issuer: /CN=7c3c39d1899e699bf5177418ee381489edff4380
Certificate serial: 01856E5418C7C86B5F915BC42C322B7FF294
Authority key identifier: 7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/aAWczPd2GnhjJwtf-AG49ogbFQM.roa
Signing time: Sun 01 Jan 2023 17:14:43 +0000
ROA not before: Sun 01 Jan 2023 17:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 185.27.176.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Jan 2023 21:10:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:54:18:c7:c8:6b:5f:91:5b:c4:2c:32:2b:7f:f2:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3c39d1899e699bf5177418ee381489edff4380
Validity
Not Before: Jan 1 17:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68059cccf7761a7863270b5ff801b8f6881b1503
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:34:d5:f8:9a:7a:d2:ac:ea:71:db:d8:17:19:
37:93:81:fe:e1:52:e4:68:a8:3f:26:2f:fb:b3:01:
61:f4:b8:7f:fc:58:17:d3:30:30:1e:6c:15:60:fc:
9c:db:e9:bd:8f:ac:1c:00:71:a6:b3:c5:2b:b2:a8:
38:c1:a6:24:47:a2:f5:6c:49:be:79:03:18:c7:9a:
1e:65:79:a7:39:2b:9e:4f:d1:2d:26:e2:77:4d:46:
f4:fd:dd:27:59:f1:85:e3:71:a8:a1:f0:ff:ef:5c:
85:1e:1f:27:29:28:8b:bb:c3:98:d2:85:72:d8:5e:
0e:cb:95:a9:21:42:bc:28:f6:02:33:46:2a:68:0a:
83:5c:71:92:98:19:96:eb:17:13:c3:f4:e9:b6:f1:
d2:a6:b2:f8:8b:44:99:79:bd:1f:98:7e:c1:c1:50:
5a:54:9d:e3:b6:52:26:3e:6e:e2:0d:c3:c1:0c:68:
46:10:04:6c:14:da:11:e6:1e:67:1c:55:03:1a:ea:
0b:22:2c:6d:40:a5:93:3b:c2:61:e2:1e:31:09:ab:
d4:f9:47:56:24:f6:4c:e8:b7:ea:5c:9b:9e:e4:08:
f8:c0:9b:2b:c0:7c:63:50:61:f4:ab:c5:1b:72:84:
6b:fd:c0:94:b8:18:f3:70:20:aa:b3:1e:0c:21:34:
23:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:05:9C:CC:F7:76:1A:78:63:27:0B:5F:F8:01:B8:F6:88:1B:15:03
X509v3 Authority Key Identifier:
keyid:7C:3C:39:D1:89:9E:69:9B:F5:17:74:18:EE:38:14:89:ED:FF:43:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fDw50YmeaZv1F3QY7jgUie3_Q4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/aAWczPd2GnhjJwtf-AG49ogbFQM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c800c9-51b5-4589-9260-063fcdd3a057/1/fDw50YmeaZv1F3QY7jgUie3_Q4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.176.0/23
Signature Algorithm: sha256WithRSAEncryption
34:c7:86:5e:b2:ee:b3:ce:41:e3:fd:4d:f4:1b:76:42:d4:af:
0e:fd:eb:21:6f:ce:70:b9:44:4d:69:3b:f4:85:5b:11:a5:9a:
e4:8e:67:6f:9d:f6:61:75:f9:8d:21:a9:43:a0:e8:2d:15:8c:
79:9a:60:d9:07:ed:59:6b:a3:6f:fd:62:68:5e:bc:23:c1:4f:
ff:91:5c:3f:63:b0:df:87:c2:a2:8c:42:40:62:b2:36:11:6a:
1c:06:b9:fb:a3:dd:8a:d5:ee:1f:66:d0:3b:f9:a3:0a:55:02:
64:73:30:9e:0e:e3:f4:23:95:42:71:11:4a:3e:e4:4d:f2:d1:
9f:e3:b2:d1:f2:c5:1c:ea:f5:3c:99:ab:6c:cd:10:18:e7:d2:
f6:93:7e:53:0a:0f:f1:2c:a7:43:2c:f6:37:f9:16:ad:73:79:
73:96:cf:d4:0d:54:5c:2a:c8:2e:ea:b1:c6:49:15:cb:fc:54:
f4:5d:41:61:dc:94:ca:0b:c4:7e:bd:e9:bd:fa:b1:f5:0a:73:
18:7b:c6:47:12:57:50:35:08:77:a0:cd:77:79:02:0b:9c:ec:
d6:30:1f:ec:c4:2c:0d:9a:92:31:54:9e:b6:f6:5a:bf:4a:5c:
45:be:37:dd:e6:1e:9f:91:64:b0:66:61:1c:ab:1f:ba:69:57:
36:0b:fe:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:02 2024 by rpki-client on console-ams.rpki-client.org