Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/RWcwj1a8j6PHXyYqKcxW4t0_68Y.roa
File: RWcwj1a8j6PHXyYqKcxW4t0_68Y.roa (raw, json)
Hash identifier: PqArc/afdx+wqMqr3mqksuGsyvKP0N96StP5HscQuME=
Subject key identifier: 45:67:30:8F:56:BC:8F:A3:C7:5F:26:2A:29:CC:56:E2:DD:3F:EB:C6
Certificate issuer: /CN=14d6927b5a75b7669b1fe2ac8fdc7b61377c9101
Certificate serial: 01856CEF3EC8B93717FA819D433DC29FD562
Authority key identifier: 14:D6:92:7B:5A:75:B7:66:9B:1F:E2:AC:8F:DC:7B:61:37:7C:91:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FNaSe1p1t2abH-Ksj9x7YTd8kQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/RWcwj1a8j6PHXyYqKcxW4t0_68Y.roa
Signing time: Sun 01 Jan 2023 10:44:56 +0000
ROA not before: Sun 01 Jan 2023 10:44:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49544
IP address blocks: 185.77.208.0/22 maxlen: 22
2a05:6440::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:3e:c8:b9:37:17:fa:81:9d:43:3d:c2:9f:d5:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=14d6927b5a75b7669b1fe2ac8fdc7b61377c9101
Validity
Not Before: Jan 1 10:44:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4567308f56bc8fa3c75f262a29cc56e2dd3febc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ac:3b:27:a7:2d:ec:78:80:a6:44:48:9f:9f:
29:39:76:45:72:85:10:42:25:3b:45:f6:1c:be:e8:
1c:f0:99:9b:dd:a8:84:a8:d0:53:9b:0d:e3:91:e9:
49:1b:03:c2:64:ae:39:5c:69:b0:38:7c:97:3f:6c:
c3:8a:ed:76:f4:3b:28:b5:6b:49:bb:20:5e:9d:ea:
62:5d:bb:30:eb:87:82:fb:ea:5d:e7:37:0c:c3:23:
cf:a9:bb:89:40:a0:88:9c:e5:56:00:67:02:8c:59:
0e:f1:eb:66:09:c3:23:40:d2:85:b5:d0:fd:a7:f6:
43:09:26:b5:ac:99:9a:32:d2:19:62:b7:ed:1d:7d:
57:fa:e2:ee:c9:41:09:4a:4d:ca:c4:f1:b1:fd:51:
6f:ef:7a:c4:fc:d5:ea:15:7b:ca:c8:12:f2:8e:d5:
7c:0a:03:2a:2e:bc:c1:a4:16:5e:2d:82:9f:39:39:
fd:ca:0f:3f:7d:21:ff:50:83:a1:2c:95:7d:21:b5:
23:03:64:90:ca:45:b7:95:0b:a8:fd:da:f4:ea:52:
86:bf:93:e7:0c:9f:57:a8:0f:76:ad:a6:aa:64:0d:
f7:64:76:d5:48:c2:26:e3:0e:ac:c1:d5:e7:31:e3:
39:e6:60:32:1a:f2:a2:d1:71:61:66:f0:ca:d0:42:
19:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:67:30:8F:56:BC:8F:A3:C7:5F:26:2A:29:CC:56:E2:DD:3F:EB:C6
X509v3 Authority Key Identifier:
keyid:14:D6:92:7B:5A:75:B7:66:9B:1F:E2:AC:8F:DC:7B:61:37:7C:91:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FNaSe1p1t2abH-Ksj9x7YTd8kQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/RWcwj1a8j6PHXyYqKcxW4t0_68Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a3d85e-4335-425a-b0f6-8f54ab134d83/1/FNaSe1p1t2abH-Ksj9x7YTd8kQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.208.0/22
IPv6:
2a05:6440::/29
Signature Algorithm: sha256WithRSAEncryption
52:5b:29:33:43:b2:97:1a:5e:87:52:e9:fb:dd:bb:25:77:84:
f0:59:71:86:84:4b:99:cb:31:33:01:95:a7:2d:67:c6:19:bc:
fe:65:e7:35:7a:11:4e:97:31:dc:c0:e1:c8:b5:b8:71:80:36:
e6:9c:dc:fa:6e:a3:fb:a3:a8:9d:c7:05:10:76:1c:3e:d7:4a:
ac:08:ee:0d:17:a5:3c:9b:59:a6:9d:5e:16:31:b2:b6:8d:cb:
aa:dd:b8:9c:d4:fb:6d:56:75:1c:5f:21:4b:73:95:fd:29:a3:
f8:67:10:a8:e7:60:8d:7a:87:bc:d8:c1:ac:d9:9b:f2:37:ca:
04:62:3d:27:1c:c6:6c:2c:f8:ed:67:6a:14:f3:91:ca:68:91:
79:72:93:5e:17:a9:3a:75:d7:c5:d3:ca:fd:93:4f:3a:f5:38:
3a:bd:18:3a:8b:b3:c2:3d:3f:ae:d2:77:c5:85:c0:67:a3:df:
e8:48:9d:7a:a5:f8:59:c8:18:f1:e5:fd:30:ad:a2:31:59:66:
9e:3c:d0:22:54:b8:68:49:88:01:5e:88:61:71:63:2f:ab:cb:
b4:37:1b:08:29:3e:ec:ef:30:b9:dc:de:0f:67:03:1a:2f:72:
90:a2:2b:ef:ed:0c:60:f6:63:13:3c:6c:41:87:ab:52:6a:be:
3f:bd:4c:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:27 2024 by rpki-client on console-ams.rpki-client.org