Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/zQ2hL16mtEt1pLhg-Sy62MlUrdQ.roa
File: zQ2hL16mtEt1pLhg-Sy62MlUrdQ.roa (raw, json)
Hash identifier: wSg0zXrNGWhX1JcNJcAEb9pmHH3ZMQXWYChZ8w2RB7E=
Subject key identifier: CD:0D:A1:2F:5E:A6:B4:4B:75:A4:B8:60:F9:2C:BA:D8:C9:54:AD:D4
Certificate issuer: /CN=efc3605c32bbc85d235f0a9ce8f45f0796b723cb
Certificate serial: 018673ECB16110EDF736E3FCBE684995E2F2
Authority key identifier: EF:C3:60:5C:32:BB:C8:5D:23:5F:0A:9C:E8:F4:5F:07:96:B7:23:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/78NgXDK7yF0jXwqc6PRfB5a3I8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/zQ2hL16mtEt1pLhg-Sy62MlUrdQ.roa
Signing time: Tue 21 Feb 2023 12:22:17 +0000
ROA not before: Tue 21 Feb 2023 12:22:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48854
IP address blocks: 185.232.149.0/24 maxlen: 24
185.232.148.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:73:ec:b1:61:10:ed:f7:36:e3:fc:be:68:49:95:e2:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=efc3605c32bbc85d235f0a9ce8f45f0796b723cb
Validity
Not Before: Feb 21 12:22:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cd0da12f5ea6b44b75a4b860f92cbad8c954add4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:54:49:8b:6d:93:d8:62:73:ec:4b:b9:b9:58:
53:83:e5:05:bb:2f:45:3a:ee:db:1d:f9:42:58:f2:
9e:05:07:d8:aa:3d:5a:e4:b7:02:55:5c:c1:fa:70:
9e:ee:69:12:1f:bb:7d:91:f6:cd:01:1b:5b:da:c2:
27:cf:b0:8f:ea:fb:63:c9:4b:85:88:ed:e0:ad:44:
ed:a6:a2:a4:39:75:ad:4c:17:2c:92:1d:64:3b:6a:
7c:ef:99:99:4d:6d:f1:57:4a:7d:7f:02:bd:22:a7:
71:e8:f2:2c:c5:a1:60:64:3e:39:70:43:02:07:d6:
f9:d1:78:60:7f:f7:fe:37:ec:ab:c6:1e:71:4a:fd:
b1:a7:df:0f:0b:43:b0:8a:fb:74:9d:98:e9:80:33:
cf:91:8a:e4:7a:08:d7:68:a2:fc:84:26:84:12:14:
4e:09:52:2c:ac:3c:b4:b2:8d:3e:f9:89:6c:cd:cc:
d5:65:6d:e4:e6:45:85:49:e2:12:86:1d:37:88:98:
d3:60:0f:27:81:f5:ba:8b:a8:9e:d2:b7:87:26:6c:
f1:be:82:1c:a0:48:24:5b:dc:d8:f2:9d:bf:bf:a1:
a3:27:c6:75:32:22:81:31:4b:24:de:d7:df:fb:9d:
cc:a5:c8:a8:e8:db:d5:b1:92:66:7f:01:e0:21:67:
55:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:0D:A1:2F:5E:A6:B4:4B:75:A4:B8:60:F9:2C:BA:D8:C9:54:AD:D4
X509v3 Authority Key Identifier:
keyid:EF:C3:60:5C:32:BB:C8:5D:23:5F:0A:9C:E8:F4:5F:07:96:B7:23:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/78NgXDK7yF0jXwqc6PRfB5a3I8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/zQ2hL16mtEt1pLhg-Sy62MlUrdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/e62169-486d-4054-b121-f2c8ba021ca8/1/78NgXDK7yF0jXwqc6PRfB5a3I8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.232.148.0/23
Signature Algorithm: sha256WithRSAEncryption
40:f7:d0:39:48:de:99:88:1f:ca:9b:1c:98:29:6a:d8:96:f6:
cd:66:95:28:c3:31:3e:62:83:81:0b:69:1c:bd:a8:16:ba:b2:
f9:61:22:55:f3:e7:31:2e:f7:7a:08:51:8e:c5:a5:7a:d7:1b:
9a:e0:60:01:45:99:51:9b:96:38:0e:d0:38:bf:97:58:77:35:
38:1f:cb:a1:49:72:84:49:29:06:f4:b4:86:ac:ff:cc:8c:e9:
80:c0:bb:1c:2b:d9:5d:15:71:b7:1c:79:3f:48:4f:45:23:f0:
61:9f:e7:52:4a:9f:cb:76:11:af:b7:cf:f1:8d:c8:11:37:ac:
99:33:45:bb:0d:53:3f:7d:b8:14:4b:f6:1d:ee:65:3d:d1:d1:
ee:c4:a1:77:19:45:2e:da:8c:f2:16:0a:ed:e6:aa:08:52:05:
1b:e3:4e:40:e1:b4:c9:fd:4a:41:78:c3:97:90:3b:13:94:15:
06:7f:87:06:d7:10:55:66:2c:c1:e1:63:79:71:12:b2:b3:ad:
24:9f:b3:2e:26:04:87:88:4e:46:03:22:80:21:6d:7c:95:fc:
e6:4b:20:4a:82:c9:12:2f:51:0c:d8:62:63:b9:4b:74:75:ff:
39:c4:ed:3a:52:53:3b:bf:69:6a:ae:0f:ec:5c:6b:f7:38:ec:
28:4d:66:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:19 2024 by rpki-client on console-fra.rpki-client.org