Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/S0v371xh5EG-aeh7u-Z-vEOywaI.roa
File: S0v371xh5EG-aeh7u-Z-vEOywaI.roa (raw, json)
Hash identifier: RkSIY5N05DTFRmxOITPsf4OJN7ejINWX2cKLvbUhxsg=
Subject key identifier: 4B:4B:F7:EF:5C:61:E4:41:BE:69:E8:7B:BB:E6:7E:BC:43:B2:C1:A2
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 01882A0CE837421B301803E4C6D9F722FC98
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/S0v371xh5EG-aeh7u-Z-vEOywaI.roa
Signing time: Wed 17 May 2023 14:11:08 +0000
ROA not before: Wed 17 May 2023 14:11:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3561
IP address blocks: 185.143.76.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2a:0c:e8:37:42:1b:30:18:03:e4:c6:d9:f7:22:fc:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: May 17 14:11:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b4bf7ef5c61e441be69e87bbbe67ebc43b2c1a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:f2:eb:51:f0:76:a0:7e:19:a3:e7:e9:18:f2:
82:c8:7b:11:ac:0f:5f:d3:6f:70:85:45:0b:a8:44:
d7:de:04:ed:c0:a8:f6:1a:1c:df:52:cd:b4:56:28:
05:31:e8:6b:29:7c:36:ee:2e:f9:25:ea:14:c5:01:
99:3d:57:cf:92:e4:84:03:33:6c:71:a1:da:3b:79:
35:fb:66:e7:30:88:50:96:3b:a5:31:f4:b9:44:92:
01:7f:70:ad:74:3a:89:72:22:ef:2f:80:2c:42:f6:
1f:c6:31:8e:e0:15:71:62:68:28:8b:36:25:90:c7:
7d:e7:2d:3c:69:be:c1:0f:20:fe:07:af:5f:89:88:
57:74:e6:0b:f8:7c:4f:75:ee:cd:85:3a:37:cc:5b:
83:0c:10:f0:67:51:7e:63:8e:39:ec:52:0c:17:88:
ff:4c:ba:ba:38:1a:3c:3a:a5:49:c0:45:74:04:43:
fe:19:b5:fa:b5:cb:8f:a6:48:bf:f5:9c:86:3c:b1:
24:4d:2a:c0:82:b2:ef:95:79:a5:a3:02:be:ea:ca:
7c:83:cf:d8:26:f0:a8:0b:2f:68:cd:ce:fd:20:9e:
7c:f2:bf:28:24:8e:46:62:e1:cf:ec:83:0a:48:82:
fc:36:4f:d8:e7:02:37:3b:83:04:c1:25:86:48:75:
05:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4B:F7:EF:5C:61:E4:41:BE:69:E8:7B:BB:E6:7E:BC:43:B2:C1:A2
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/S0v371xh5EG-aeh7u-Z-vEOywaI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.143.76.0/24
Signature Algorithm: sha256WithRSAEncryption
59:4b:ce:ac:6d:28:10:cc:11:2a:b7:1e:2e:c7:31:b6:de:c8:
05:92:d1:a3:08:40:d5:55:87:13:0e:ab:14:d2:d3:c6:13:04:
50:8a:40:83:ce:3b:d4:e5:2f:01:01:1d:4f:01:84:c3:48:a2:
d8:2c:14:b4:b6:48:0f:be:b4:5d:c9:2e:6b:37:de:34:2f:0d:
24:9f:30:6e:6c:09:eb:a2:3c:bb:c2:fa:d9:38:8d:8c:47:c0:
d5:38:51:e3:ab:ea:56:a6:6b:2e:bd:0a:66:b4:bd:bb:61:8e:
15:a2:c5:73:59:c2:b0:f5:a1:82:8b:1c:47:a3:ac:10:c9:79:
46:23:21:fc:e9:85:f6:af:88:2c:cb:54:8c:5d:d8:19:a0:38:
dd:66:e9:6c:09:78:97:fa:e5:7e:fd:9a:98:d5:b1:a9:99:e5:
a9:a6:d4:8d:df:97:78:74:7c:54:4d:a7:91:12:a6:40:4c:11:
a4:ee:3f:f9:1e:db:c8:c9:dc:6f:36:3e:78:11:68:7d:72:40:
7d:0b:37:e4:36:33:8f:2a:db:25:5a:2e:76:da:ef:e6:93:51:
07:9d:6d:99:78:78:88:2f:34:ab:68:9c:88:0c:f4:bc:7e:da:
38:af:b7:1c:d9:56:fd:9a:cc:45:26:67:85:f5:85:c0:51:bb:
6d:88:63:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:05 2023 by rpki-client on console-fra.rpki-client.org