Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/4hxngChL2kmuiEQMuNSDXzxI6uY.roa
File: 4hxngChL2kmuiEQMuNSDXzxI6uY.roa (raw, json)
Hash identifier: iQ7bYVlSlkaIPv1cdd55e/9e/hw5lN0YTbbpPMTx6lA=
Subject key identifier: E2:1C:67:80:28:4B:DA:49:AE:88:44:0C:B8:D4:83:5F:3C:48:EA:E6
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 0188290243C1AD1DF0441FD358A11FAC1FA9
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/4hxngChL2kmuiEQMuNSDXzxI6uY.roa
Signing time: Wed 17 May 2023 09:19:54 +0000
ROA not before: Wed 17 May 2023 09:19:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12703
IP address blocks: 185.143.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:02:43:c1:ad:1d:f0:44:1f:d3:58:a1:1f:ac:1f:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: May 17 09:19:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e21c6780284bda49ae88440cb8d4835f3c48eae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:45:70:cb:92:b1:8b:98:3b:e3:f4:cb:2e:06:
ba:92:7f:9f:25:bc:e8:31:bd:25:34:ef:48:02:39:
ab:96:b0:a4:0c:4e:43:66:5d:5c:cf:79:99:ca:5f:
4f:71:b3:8c:64:30:20:4a:25:6c:07:df:d8:dc:e0:
8d:07:8d:53:a0:2e:a9:b0:9a:9b:df:65:ca:f5:cc:
95:50:db:bf:af:09:12:b1:e8:c1:03:34:8b:f7:c5:
19:1b:40:f3:da:a3:60:89:88:44:3a:de:fc:7f:6b:
26:a9:8a:ab:bb:3c:63:79:7c:d0:9a:da:07:81:35:
07:47:a0:52:4a:c6:85:22:cb:d7:0d:19:6b:98:c7:
62:49:1a:43:45:12:93:cb:e5:98:e8:27:84:a9:36:
c3:88:cc:07:7f:8b:78:ee:f7:c9:85:a6:a6:d4:5e:
e4:93:e8:cc:e2:d3:f2:a9:5c:56:e8:e7:a2:c6:96:
cd:0c:af:74:29:c4:1c:ff:e4:d1:e9:3f:dd:e9:a6:
4a:5c:ab:9d:ab:6c:e9:28:d3:9a:14:38:1e:cd:58:
83:11:1c:10:df:6f:ec:ac:8e:6a:a4:0f:4b:cb:0c:
b8:ed:1b:90:2a:86:76:93:e1:18:59:38:61:9b:08:
07:5a:d5:ec:59:ca:6d:b7:6a:3e:22:bf:e5:31:36:
33:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:1C:67:80:28:4B:DA:49:AE:88:44:0C:B8:D4:83:5F:3C:48:EA:E6
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/4hxngChL2kmuiEQMuNSDXzxI6uY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:d1:43:db:f6:d4:bd:9b:8f:b9:b0:e6:04:db:02:68:24:1a:
2a:c7:5b:ab:0e:63:4b:63:84:80:d7:9b:ea:92:04:95:d4:54:
dd:5f:17:6a:0b:25:08:47:82:d5:5d:5c:67:4d:8b:67:dd:5b:
e0:36:43:ce:03:fb:b8:90:27:f9:80:d0:fb:04:f2:9d:51:1f:
ef:e0:ad:bb:df:12:a4:b3:3e:f9:4e:cc:6c:f5:a9:b4:04:0e:
7b:ad:42:cd:aa:05:0c:3f:08:f6:77:86:c2:b1:58:2c:62:d7:
38:ea:c3:6e:bc:b9:74:3c:0c:8c:10:b4:99:2b:1c:6c:61:ef:
c7:0c:01:40:0d:69:c9:37:d0:ef:bc:aa:5d:d9:bd:84:29:10:
d9:19:e6:6d:57:7c:41:22:65:38:ee:77:5a:5e:94:63:0f:21:
50:2a:e4:2f:0a:ca:a4:c8:ab:57:c4:22:26:6d:fb:2e:22:9f:
a6:c5:40:87:d8:c7:b4:cf:3d:62:78:3f:4f:b1:48:86:f1:7f:
d2:75:e3:f9:8d:d2:87:4e:67:01:79:26:a9:41:3c:2b:3d:e4:
52:c8:49:dc:61:d4:cb:f1:5e:be:96:e0:4d:4b:a6:7f:4d:b4:
fb:fc:a8:1c:fd:b5:14:1e:7c:8a:bd:0c:f8:b6:83:e0:ee:0d:
c2:cc:64:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:48 2023 by rpki-client on console-ams.rpki-client.org