Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/cA2r_PRScRzS3wZYINR2bYXTjhs.roa
File: cA2r_PRScRzS3wZYINR2bYXTjhs.roa (raw, json)
Hash identifier: JvxV/hnku63UnE/tM/6EypzuRmEUXK1+DS7QE8405ak=
Subject key identifier: 70:0D:AB:FC:F4:52:71:1C:D2:DF:06:58:20:D4:76:6D:85:D3:8E:1B
Certificate issuer: /CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Certificate serial: 0189ABEC04F9C47DCD9C6B45EF6FE99FD2BD
Authority key identifier: C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/cA2r_PRScRzS3wZYINR2bYXTjhs.roa
Signing time: Mon 31 Jul 2023 12:28:38 +0000
ROA not before: Mon 31 Jul 2023 12:28:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 185.88.175.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ab:ec:04:f9:c4:7d:cd:9c:6b:45:ef:6f:e9:9f:d2:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c616c4195152effedbf7b3afee2aa72e19090e4d
Validity
Not Before: Jul 31 12:28:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=700dabfcf452711cd2df065820d4766d85d38e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:90:94:67:18:9e:e4:f3:80:e1:a5:2e:9d:ae:
8b:f7:bd:3a:75:9c:a4:bc:10:86:9f:4c:9c:c5:95:
64:7a:3f:7e:26:4e:e5:e8:eb:15:47:34:91:be:39:
67:a9:87:5e:56:4a:f9:07:d6:e3:22:e7:89:f7:71:
2b:78:b1:fb:6b:79:76:76:66:e2:d8:e2:01:b1:3c:
e2:db:90:3f:27:c6:6b:d1:df:51:51:b5:22:ba:7e:
e9:20:3e:8a:59:56:50:c3:a7:4a:13:51:a0:b5:ba:
27:83:f7:bc:78:f7:ab:7f:c3:a0:4f:31:7c:e9:cd:
c7:2a:8b:8b:cc:d2:19:f8:e6:1f:ad:8c:6d:02:ca:
73:c5:83:c0:96:40:08:7e:b1:ac:40:de:0b:e1:01:
77:62:a2:a6:b2:13:aa:55:f1:48:f2:0b:67:73:ed:
7c:51:55:2e:88:ec:10:a9:25:48:4d:a7:b0:04:92:
e8:91:cf:3c:5e:07:69:18:52:db:9e:8e:93:9e:46:
01:8e:c4:b1:23:bd:1e:b7:e9:dc:8b:77:28:6f:68:
b8:1e:40:2d:e3:d2:b8:eb:0a:27:2f:0e:ea:93:e4:
79:dc:59:40:c0:09:c0:ee:4b:3b:fd:58:8d:d9:13:
85:44:23:43:4e:a7:38:a1:ef:bb:96:b9:0f:33:ec:
35:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:0D:AB:FC:F4:52:71:1C:D2:DF:06:58:20:D4:76:6D:85:D3:8E:1B
X509v3 Authority Key Identifier:
keyid:C6:16:C4:19:51:52:EF:FE:DB:F7:B3:AF:EE:2A:A7:2E:19:09:0E:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhbEGVFS7_7b97Ov7iqnLhkJDk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/cA2r_PRScRzS3wZYINR2bYXTjhs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/ad6521-d3a9-4b13-be69-39fdb986f059/1/xhbEGVFS7_7b97Ov7iqnLhkJDk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.175.0/24
Signature Algorithm: sha256WithRSAEncryption
89:a9:f1:c6:d6:dd:bf:6b:47:ad:b8:e7:3f:93:e9:cd:bc:4c:
33:97:8c:da:80:f6:1c:89:3f:d2:74:1f:2b:35:c0:97:30:62:
88:e6:71:50:b4:99:d4:64:b7:81:d0:31:7c:0b:a1:eb:93:ba:
99:f0:b7:2f:73:11:31:b9:ea:89:b2:1d:2a:77:ba:3f:bb:43:
65:4b:ca:24:0b:b9:52:0b:d7:af:64:ea:48:89:84:88:f3:f4:
ab:ca:a1:e0:3f:31:4b:d4:d2:86:1a:86:4d:cd:73:79:62:46:
32:af:25:5d:d6:6b:30:42:a0:ec:69:7c:fd:47:44:1a:05:43:
70:ef:f2:1e:16:56:61:46:4d:2b:3f:2f:58:88:4a:cd:88:19:
93:35:01:f2:32:19:20:8c:1c:d4:8d:5c:f8:63:df:fb:57:b6:
03:f8:f1:07:ac:e4:6f:84:51:eb:cc:19:b7:a3:9a:31:0b:25:
b1:07:cf:89:41:11:da:26:4b:2a:b6:ba:2f:ab:95:3f:9c:71:
62:2c:a3:14:d0:aa:43:de:48:b1:f9:03:3f:b8:1f:63:8e:bb:
94:a1:68:85:37:a7:66:49:27:4a:c6:39:6b:7a:4f:be:3e:95:
2b:3f:25:5e:cf:1e:b1:52:90:d7:09:e1:2d:9e:bc:f5:b4:39:
5a:15:88:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:24 2024 by rpki-client on console-ams.rpki-client.org