Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/DV71qmhwno_s1Mju6xs9t8JSRzI.roa
File: DV71qmhwno_s1Mju6xs9t8JSRzI.roa (raw, json)
Hash identifier: Kj2aKfFy+T3eG8N05EEKb5fifGi/Thaz82U70s/MFKY=
Subject key identifier: 0D:5E:F5:AA:68:70:9E:8F:EC:D4:C8:EE:EB:1B:3D:B7:C2:52:47:32
Certificate issuer: /CN=95b30111b0b720a209f788c8b90f60380b465c2e
Certificate serial: 018C6763DA4E7EC3468476424ACD01253172
Authority key identifier: 95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/DV71qmhwno_s1Mju6xs9t8JSRzI.roa
Signing time: Thu 14 Dec 2023 08:14:06 +0000
ROA not before: Thu 14 Dec 2023 08:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205223
IP address blocks: 185.223.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:63:da:4e:7e:c3:46:84:76:42:4a:cd:01:25:31:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95b30111b0b720a209f788c8b90f60380b465c2e
Validity
Not Before: Dec 14 08:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d5ef5aa68709e8fecd4c8eeeb1b3db7c2524732
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:f3:2e:c5:4f:c0:ae:53:7d:a7:66:15:8c:
9c:9c:c4:f7:0e:d0:2e:9c:8d:c2:f8:d7:48:a2:b0:
09:4b:2f:63:e6:14:12:3c:48:a5:ce:49:b1:2d:52:
60:a4:36:d6:8a:22:34:dd:4d:c1:f5:dd:8b:26:9e:
3b:ab:e6:16:5d:98:d0:49:92:b3:be:42:c2:e5:80:
05:a5:b8:4e:23:69:21:ca:7b:5a:9f:be:5d:0b:6b:
84:a4:9b:4f:c7:73:42:c4:ae:11:88:7f:5e:a9:eb:
a9:83:78:f8:b0:3e:60:47:0f:05:c1:1a:c0:18:d1:
ae:5f:81:3d:04:15:92:f9:76:14:6c:15:25:d2:06:
40:e0:bb:c0:15:8d:9d:9d:b1:2e:81:ec:b4:8d:52:
39:a5:c9:2e:ab:31:c4:f5:43:f7:14:c8:22:e4:6e:
5f:77:bb:bd:47:ba:82:9c:ec:12:3a:2a:85:81:93:
e2:5b:c3:cb:f4:58:ed:66:3e:12:b6:b7:bd:79:76:
ee:41:6e:22:2c:38:4a:42:0c:26:de:93:07:25:35:
9b:48:8f:74:d4:80:57:3b:16:3f:e7:a1:e0:67:65:
1b:03:ac:2d:32:01:fe:b1:67:b4:ed:7e:c5:05:40:
9b:ae:d7:57:c8:63:70:cc:75:66:38:d6:c1:48:eb:
6e:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:5E:F5:AA:68:70:9E:8F:EC:D4:C8:EE:EB:1B:3D:B7:C2:52:47:32
X509v3 Authority Key Identifier:
keyid:95:B3:01:11:B0:B7:20:A2:09:F7:88:C8:B9:0F:60:38:0B:46:5C:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/DV71qmhwno_s1Mju6xs9t8JSRzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/03bf28-c55d-4c7a-91bb-91646bf0153d/1/lbMBEbC3IKIJ94jIuQ9gOAtGXC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.219.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:d9:d9:12:27:15:34:3d:27:2d:55:c1:5c:10:2f:a6:f8:ad:
a0:44:5e:c0:73:c2:d7:75:d6:46:50:11:8b:63:3b:f8:82:68:
6d:d1:28:81:31:ed:95:99:55:42:66:aa:ec:8b:0f:50:41:4e:
2f:83:7b:76:96:88:40:e1:e6:76:f4:84:6e:cf:47:4e:5e:75:
cd:72:04:33:57:1c:73:0c:28:23:43:fc:d6:40:eb:5f:c1:f1:
e6:86:d4:f8:71:87:19:bb:73:69:2a:9c:bb:68:da:58:1c:15:
0c:4d:47:c3:c8:c1:44:75:09:0b:9c:be:7f:9d:c7:34:1f:9d:
53:05:ac:e2:64:96:c3:7f:29:e2:b6:ea:b5:a8:34:d7:36:65:
da:ad:76:bd:53:90:4a:d6:12:d4:bf:19:ef:7f:e2:51:1c:3a:
f2:71:68:48:c2:ac:ff:65:0f:aa:85:17:c8:93:1a:ab:9a:b9:
e7:48:5b:bc:c9:0c:a9:27:ad:27:34:31:a6:f9:f1:03:98:1b:
0d:5f:f3:23:61:67:dc:4d:f4:a8:87:fc:4d:79:63:b7:99:a5:
42:7a:7d:c9:7b:f7:1d:4f:2a:8d:8c:da:02:94:90:85:48:bb:
15:ad:69:e7:24:6c:05:b4:dc:af:f8:8a:d6:89:09:c1:f9:91:
63:6a:f9:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:15 2024 by rpki-client on console-fra.rpki-client.org