Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/W7uCPh4dPCzd4xCPFgynnOzVIic.roa
File: W7uCPh4dPCzd4xCPFgynnOzVIic.roa (raw, json)
Hash identifier: vvpf+Aag2DuO2lhzTJMmGWPqNLNmMngwoDG+OEvdtFY=
Subject key identifier: 5B:BB:82:3E:1E:1D:3C:2C:DD:E3:10:8F:16:0C:A7:9C:EC:D5:22:27
Certificate issuer: /CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Certificate serial: 01856F8B92527549300182B759C8AECC7D9D
Authority key identifier: 12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/W7uCPh4dPCzd4xCPFgynnOzVIic.roa
Signing time: Sun 01 Jan 2023 22:54:56 +0000
ROA not before: Sun 01 Jan 2023 22:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43366
IP address blocks: 185.67.200.0/22 maxlen: 24
185.88.148.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:92:52:75:49:30:01:82:b7:59:c8:ae:cc:7d:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1230cd8e13c86d8ef835c1aac7d5f953455c035c
Validity
Not Before: Jan 1 22:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bbb823e1e1d3c2cdde3108f160ca79cecd52227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f1:c8:6a:73:32:d4:d1:90:90:11:78:86:82:
99:d1:74:7f:3b:e2:9e:3e:e7:24:ac:9d:8c:39:22:
b8:12:ce:79:e6:ad:de:4c:d0:fa:f2:ca:05:af:75:
fc:0a:8b:4c:6c:51:4a:7f:c1:93:f7:fc:0c:ce:f8:
d0:68:88:04:bc:91:d8:5b:cf:81:e7:8b:5a:4b:af:
48:20:c1:fd:d2:10:2a:20:f6:c3:c3:50:e3:dc:e7:
00:d1:bf:ca:3d:3d:51:1e:f1:2c:7a:84:44:6a:e7:
f1:ff:3a:a8:69:1b:e8:51:46:7f:29:60:8d:27:47:
9f:77:77:91:8d:e5:0a:3f:e4:d3:04:8d:cc:5b:cc:
78:15:ee:3a:3d:5a:34:86:7c:89:a6:e7:ba:ff:f4:
0c:60:03:f6:61:5c:31:e0:74:a4:cf:56:34:37:7b:
04:2a:bc:8e:23:05:23:f8:18:22:63:d0:bb:90:f2:
20:47:12:53:d7:53:3b:31:24:84:05:fe:c0:dd:b9:
6f:94:de:5c:c4:42:14:fc:fd:d9:7d:60:b4:6e:a9:
d4:8a:df:c4:d3:52:f8:ed:de:b8:fb:a9:d6:75:11:
90:10:bf:9e:94:16:d5:5c:c3:5b:83:a7:54:62:fb:
40:7c:80:e5:d8:e5:54:0b:26:7b:6a:bf:77:6f:fd:
f5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:BB:82:3E:1E:1D:3C:2C:DD:E3:10:8F:16:0C:A7:9C:EC:D5:22:27
X509v3 Authority Key Identifier:
keyid:12:30:CD:8E:13:C8:6D:8E:F8:35:C1:AA:C7:D5:F9:53:45:5C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EjDNjhPIbY74NcGqx9X5U0VcA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/W7uCPh4dPCzd4xCPFgynnOzVIic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/d1f390-4ec5-4c42-8e54-01fb46a433e1/1/EjDNjhPIbY74NcGqx9X5U0VcA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.200.0/22
185.88.148.0/22
Signature Algorithm: sha256WithRSAEncryption
69:5d:e9:8b:1d:63:ba:95:c6:a2:48:db:d5:28:9a:80:0d:55:
b9:96:79:d5:7a:9e:ca:c9:64:3b:d5:56:0f:89:dc:ad:82:d7:
00:ce:fa:27:83:32:79:bf:8a:21:8b:67:f2:2f:d9:e9:4c:86:
3b:76:87:b0:71:a3:85:a2:00:86:22:af:e3:93:62:04:ef:f2:
77:4d:ae:da:1d:31:19:59:87:9b:3e:f3:cd:4b:68:66:c9:7f:
c0:3a:71:ee:c6:60:3b:d9:d6:e4:16:5e:1f:c7:c7:40:9e:17:
a3:33:f1:40:99:f5:fb:40:97:22:15:67:da:bf:78:7a:41:82:
36:77:26:64:d9:17:18:66:0e:cd:4c:92:45:f6:d1:2e:f3:06:
a5:a3:88:20:75:c3:ea:09:a8:e4:57:d1:f0:ec:8e:cd:f2:ae:
ba:a4:f9:7e:84:5c:57:d3:66:90:3b:8e:b5:ef:08:60:b7:d7:
23:ae:fa:80:c6:9f:4b:c8:96:48:b4:e9:93:5e:e1:0c:ad:bb:
95:cd:bb:07:ed:98:00:be:02:51:ba:19:83:2f:56:cb:f4:50:
1f:57:46:f7:41:02:2b:07:63:a6:34:a9:dd:1e:c7:ac:0d:06:
3a:f4:97:c2:6e:2f:8f:31:60:92:1e:a6:24:53:27:7e:ad:a7:
c6:ed:f8:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:26 2024 by rpki-client on console-fra.rpki-client.org