Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/kbrQZtKgeImln7Sj4KYz1K2WAk0.roa
File: kbrQZtKgeImln7Sj4KYz1K2WAk0.roa (raw, json)
Hash identifier: dJstOlPr6qGMyw5qzU1B05Gc6eE32tq9nS7tLdxcyR0=
Subject key identifier: 91:BA:D0:66:D2:A0:78:89:A5:9F:B4:A3:E0:A6:33:D4:AD:96:02:4D
Certificate issuer: /CN=4ee0432f5429d861d7743bfc31d7ad019628a5eb
Certificate serial: 0185737AA7CEA99E4F4C9B9AD8A4E7FC1D6D
Authority key identifier: 4E:E0:43:2F:54:29:D8:61:D7:74:3B:FC:31:D7:AD:01:96:28:A5:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TuBDL1Qp2GHXdDv8MdetAZYopes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/kbrQZtKgeImln7Sj4KYz1K2WAk0.roa
Signing time: Mon 02 Jan 2023 17:14:56 +0000
ROA not before: Mon 02 Jan 2023 17:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8757
IP address blocks: 185.144.84.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:a7:ce:a9:9e:4f:4c:9b:9a:d8:a4:e7:fc:1d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ee0432f5429d861d7743bfc31d7ad019628a5eb
Validity
Not Before: Jan 2 17:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91bad066d2a07889a59fb4a3e0a633d4ad96024d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:df:9c:a9:1b:3d:4a:1b:e4:10:73:97:fe:a7:
99:a5:db:a6:27:ff:77:a7:2d:a0:bb:7b:7a:30:08:
52:d7:b8:9f:33:1f:61:f6:49:be:9f:1d:24:d2:6f:
d4:87:2c:a9:04:fd:e5:da:84:f2:ab:1c:06:f4:75:
09:7b:da:b6:a2:9e:d6:ed:81:a5:91:58:ab:23:ac:
d3:ab:ac:ea:42:ef:20:48:6e:d9:16:5f:e4:3e:82:
68:5a:33:9e:93:c8:36:fe:47:69:db:b0:9d:67:47:
eb:d4:d2:12:eb:18:07:8b:5f:b9:37:58:86:81:54:
92:db:03:09:82:09:92:73:3b:2f:57:fb:3e:56:ef:
6d:cf:92:ea:12:58:d1:4b:b8:69:4e:1c:8b:fd:fc:
3c:df:06:4f:49:65:4a:9b:29:15:cf:15:7a:7b:25:
c9:86:39:85:d8:e2:2d:91:37:4f:c7:ef:f4:60:21:
7a:fa:30:7c:7c:e6:0c:24:3d:77:00:0d:fe:04:c8:
0f:d2:d0:6f:f3:da:66:1c:fa:52:c4:46:8d:fc:b6:
eb:04:d8:cd:62:4d:c8:6e:9a:a6:ec:2f:dd:df:ef:
10:f9:81:93:e8:21:48:4a:f9:ef:20:07:27:cb:f2:
80:4c:f6:f2:c8:09:1e:4a:89:55:83:a3:c5:d8:bd:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BA:D0:66:D2:A0:78:89:A5:9F:B4:A3:E0:A6:33:D4:AD:96:02:4D
X509v3 Authority Key Identifier:
keyid:4E:E0:43:2F:54:29:D8:61:D7:74:3B:FC:31:D7:AD:01:96:28:A5:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TuBDL1Qp2GHXdDv8MdetAZYopes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/kbrQZtKgeImln7Sj4KYz1K2WAk0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b17ca4-2e2e-415a-adde-77257e04765f/1/TuBDL1Qp2GHXdDv8MdetAZYopes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.84.0/22
Signature Algorithm: sha256WithRSAEncryption
a5:cc:1c:f4:ab:81:77:a9:1f:6e:19:66:2f:87:ad:b6:a6:91:
b2:a6:b2:55:b9:7c:d3:a0:3f:86:3e:23:16:80:45:5b:37:5e:
cf:4e:ab:6c:b0:62:86:ab:e1:85:f8:30:55:98:87:24:4f:92:
fe:ec:a5:de:98:7a:c3:9a:99:4c:92:51:74:71:e6:01:d7:3b:
3b:d8:72:ba:5b:78:24:96:a1:38:bc:57:19:71:a8:f0:8b:56:
5b:7d:08:4c:8b:4a:d1:69:56:c8:71:5f:be:0f:db:6e:a1:cd:
7d:58:1c:f1:d1:0f:9c:24:7b:45:57:e2:18:45:f5:3e:26:da:
20:32:74:c7:ab:d4:a4:a4:6d:9c:ae:20:c7:fa:8b:9f:5e:26:
4b:a2:ac:fb:10:da:d8:71:ed:17:2f:1a:70:b0:0a:08:06:f3:
97:84:4d:2f:7c:20:ef:55:49:ce:c6:6c:e3:1e:1f:5e:f0:57:
61:be:40:01:c8:68:6e:36:c3:ad:24:51:7b:3e:4a:c4:e9:51:
d5:d8:88:ab:86:56:d1:f7:d5:29:09:24:37:83:41:f0:67:0d:
35:6e:28:72:b4:3b:d8:8c:61:a4:ac:37:62:7c:a0:86:f8:83:
1b:0c:77:2c:38:4d:59:69:8d:75:a4:03:73:1c:95:9e:e9:d2:
ea:2d:5e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:09 2024 by rpki-client on console-ams.rpki-client.org