Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/2wFbu5ghgN_WwUdVN-sA_g3t9lo.roa
File: 2wFbu5ghgN_WwUdVN-sA_g3t9lo.roa (raw, json)
Hash identifier: 4vlEDM9WkwenDlzSHCktuPhgm6ne4mzToeEiQ+Vol94=
Subject key identifier: DB:01:5B:BB:98:21:80:DF:D6:C1:47:55:37:EB:00:FE:0D:ED:F6:5A
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 0187BDD4A1DAA941B52CDD14A282001E05FF
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/2wFbu5ghgN_WwUdVN-sA_g3t9lo.roa
Signing time: Wed 26 Apr 2023 13:50:41 +0000
ROA not before: Wed 26 Apr 2023 13:50:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12213
IP address blocks: 185.143.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:bd:d4:a1:da:a9:41:b5:2c:dd:14:a2:82:00:1e:05:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Apr 26 13:50:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db015bbb982180dfd6c1475537eb00fe0dedf65a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:57:60:d0:94:73:81:99:ae:30:47:5e:ab:51:
d9:0f:aa:32:0d:6a:c8:80:1b:2c:7d:c9:3f:74:30:
70:c7:d5:7c:8d:d2:1b:fa:2d:e2:da:b5:d6:13:f7:
40:0b:3e:62:82:67:85:c7:c1:7d:d6:43:97:ef:ef:
07:59:c1:91:b0:41:8d:7b:17:5a:e3:83:ae:d8:d9:
88:01:02:b8:fd:f2:8c:3a:5c:4b:b4:97:f4:55:65:
cc:29:0e:49:6e:24:df:7f:08:a8:49:ac:fa:42:5c:
b3:47:7a:92:25:1d:38:0f:f4:3b:f3:ee:e5:ca:20:
b7:5d:b5:a8:28:fd:a8:2e:70:d4:0e:65:b3:aa:d3:
1a:c3:ea:5a:34:1e:b8:f5:30:04:33:7c:30:aa:4e:
1d:e5:e3:43:ca:22:a5:2e:9b:58:b9:22:84:7c:7f:
b4:51:33:2f:f3:e5:d9:03:ff:43:c8:1c:ec:f2:42:
fe:24:c1:79:29:10:4f:4a:52:22:9d:74:36:d0:5c:
b5:06:fe:ab:9c:48:3c:5d:90:7d:a1:8d:23:45:da:
6d:54:3d:9b:6c:35:28:c1:3b:73:99:ba:33:98:7b:
81:db:79:92:a0:9c:9b:8f:8f:70:ad:03:a4:5f:64:
21:d7:12:cf:9a:03:14:ba:1a:1c:b6:b8:f6:6b:de:
c5:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:01:5B:BB:98:21:80:DF:D6:C1:47:55:37:EB:00:FE:0D:ED:F6:5A
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/2wFbu5ghgN_WwUdVN-sA_g3t9lo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.78.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:42:82:70:c6:d5:82:5d:d4:f7:c9:37:13:16:62:6e:fd:92:
61:cf:e0:03:10:82:4d:c8:1d:54:43:b4:57:c7:1e:71:db:6d:
41:fa:55:4d:84:78:61:9c:c0:c7:29:1e:a7:4b:d4:ba:42:28:
58:30:ea:a4:bb:6f:1b:93:33:e4:90:e5:7b:8a:36:ca:8b:ad:
64:5b:78:14:aa:cd:2c:a1:d3:95:1c:06:1e:47:63:83:2f:1d:
3b:53:b2:1c:e1:5e:2b:54:24:9f:24:b6:77:e7:b7:93:2d:c5:
4e:89:46:41:20:2a:42:74:b5:00:de:04:9b:38:8a:69:3d:ba:
3b:48:b9:0d:b0:59:2e:d6:ed:c6:12:fe:7c:ba:1e:20:8e:ca:
71:c0:6a:49:f6:39:27:7a:ad:8b:22:67:95:e8:82:88:af:e5:
22:5a:58:9c:a9:f6:c1:15:86:b9:bd:43:71:23:4d:df:44:1d:
43:40:20:05:bf:1b:d2:50:6b:35:cc:17:2b:55:39:1d:c4:04:
03:23:6c:57:95:b5:f1:fc:9c:c7:20:5a:71:db:0b:55:ad:17:
a9:e9:47:f5:85:1e:57:ef:e0:af:29:73:34:23:6d:6e:9d:04:
44:52:49:48:e6:79:17:9c:90:61:ea:6a:28:a0:67:04:41:14:
41:05:7a:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:05 2023 by rpki-client on console-fra.rpki-client.org