Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/drLRQfJnNvU5dfIJo36C4xGSeUk.roa
File: drLRQfJnNvU5dfIJo36C4xGSeUk.roa (raw, json)
Hash identifier: GcMllE0URxKgnJ4zqHvm2hT88o5u+VheBPPeYs0dAns=
Subject key identifier: 76:B2:D1:41:F2:67:36:F5:39:75:F2:09:A3:7E:82:E3:11:92:79:49
Certificate issuer: /CN=6bb9125b8a10d322348681a2d2ac7d67d2ad2535
Certificate serial: 0185730C9526DAC2EEDF2B8CD0B48D980C83
Authority key identifier: 6B:B9:12:5B:8A:10:D3:22:34:86:81:A2:D2:AC:7D:67:D2:AD:25:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a7kSW4oQ0yI0hoGi0qx9Z9KtJTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/drLRQfJnNvU5dfIJo36C4xGSeUk.roa
Signing time: Mon 02 Jan 2023 15:14:42 +0000
ROA not before: Mon 02 Jan 2023 15:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.165.248.0/23 maxlen: 23
185.165.250.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:0c:95:26:da:c2:ee:df:2b:8c:d0:b4:8d:98:0c:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bb9125b8a10d322348681a2d2ac7d67d2ad2535
Validity
Not Before: Jan 2 15:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76b2d141f26736f53975f209a37e82e311927949
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:ee:e5:ac:81:57:ba:1f:9f:30:dc:84:ab:
61:1a:a2:d8:86:39:bb:4e:4b:b2:22:34:26:49:82:
e0:cc:53:ae:93:45:08:9f:bf:0a:6c:49:a2:23:25:
d6:5f:aa:e0:b3:d3:fd:d4:01:d7:ed:6d:fd:84:47:
b5:95:26:da:43:74:30:5c:89:2d:1f:c8:3d:08:5c:
6c:e8:7e:4a:a0:17:39:43:ee:9c:73:3a:11:4d:a4:
de:f0:68:00:21:18:72:c5:04:b1:69:22:1c:58:2e:
fa:c2:e1:ac:e2:1c:4e:46:d7:4d:13:b6:f2:28:20:
2c:d2:42:d9:a5:8d:c4:cf:de:dc:57:fd:3a:71:17:
57:ee:ca:ef:d4:2f:29:38:b3:2d:e5:3e:5c:5c:9d:
a9:8c:ea:50:e0:7c:e1:0d:7b:b2:4f:f6:bd:26:59:
ab:f4:c5:b9:9a:ac:d6:9a:97:e3:e3:c2:d3:f7:fd:
15:3b:78:99:b3:0c:8f:ef:f0:ea:29:8e:57:e5:43:
ff:ec:95:db:bf:50:98:4e:c0:9d:f2:9a:7b:78:8a:
f8:79:7d:44:ab:07:77:3d:96:be:57:85:85:25:a8:
b4:58:e8:7e:aa:ee:73:53:e8:76:6f:ba:c6:e0:13:
48:a7:8c:79:84:60:11:3c:e9:21:f2:f3:ce:3c:45:
09:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B2:D1:41:F2:67:36:F5:39:75:F2:09:A3:7E:82:E3:11:92:79:49
X509v3 Authority Key Identifier:
keyid:6B:B9:12:5B:8A:10:D3:22:34:86:81:A2:D2:AC:7D:67:D2:AD:25:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7kSW4oQ0yI0hoGi0qx9Z9KtJTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/drLRQfJnNvU5dfIJo36C4xGSeUk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/4b28b8-77f6-46d3-b8d5-83bc413a048d/1/a7kSW4oQ0yI0hoGi0qx9Z9KtJTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.165.248.0/22
Signature Algorithm: sha256WithRSAEncryption
36:54:f4:0f:b5:b1:ec:1e:19:4d:fb:83:87:fe:dc:17:51:bd:
e3:93:5a:e5:10:6f:b6:6c:4a:17:1b:c3:72:29:83:cc:dd:7f:
00:3c:3e:87:30:13:74:4a:0f:74:cd:c3:66:5f:5b:79:0d:8a:
e3:1c:60:43:aa:91:da:97:a6:1d:32:10:9f:9c:f4:ef:88:03:
1b:f5:09:d0:37:13:b3:ae:bd:ec:ea:ed:46:70:2c:6f:92:39:
23:4a:42:ba:f1:07:30:86:c1:2a:e4:09:c7:67:e0:5d:e4:47:
2c:d3:d3:9a:ca:36:ce:06:f4:bf:85:d0:3f:e6:41:15:af:f6:
02:8d:f9:c8:ff:70:c0:23:db:97:9b:62:31:4c:d8:f7:65:7d:
ba:bd:c4:bf:28:fa:4f:a5:dc:b8:85:56:05:f1:d4:20:e2:38:
5e:7b:f0:04:e6:0a:4a:bd:69:93:d0:07:81:5e:c7:9f:11:2b:
eb:2f:4c:0a:e7:1b:53:c1:d7:53:96:0b:97:35:dc:89:2c:80:
82:67:fc:b8:05:ca:b1:86:2b:94:e9:26:74:7d:eb:6b:0c:f8:
f2:7a:a0:d4:39:f1:a9:81:95:fe:cc:91:64:68:31:f4:95:8d:
64:a0:01:47:88:db:d5:6d:04:5a:6e:52:7c:00:e1:a1:99:84:
95:af:5c:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:11 2024 by rpki-client on console-ams.rpki-client.org