Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/U6g6H7XriI49dgdBffzGGbeAz-c.roa
File: U6g6H7XriI49dgdBffzGGbeAz-c.roa (raw, json)
Hash identifier: ACcaANVMmDuxdPPE3yfpCbcJKV/yK5EYB44IF/SV4Aw=
Subject key identifier: 53:A8:3A:1F:B5:EB:88:8E:3D:76:07:41:7D:FC:C6:19:B7:80:CF:E7
Certificate issuer: /CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Certificate serial: 0185704298A36A236E9AF19746AD276A10FB
Authority key identifier: 84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/U6g6H7XriI49dgdBffzGGbeAz-c.roa
Signing time: Mon 02 Jan 2023 02:14:50 +0000
ROA not before: Mon 02 Jan 2023 02:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42910
IP address blocks: 185.179.24.0/24 maxlen: 24
185.179.27.0/24 maxlen: 24
185.179.26.0/24 maxlen: 24
185.179.25.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:98:a3:6a:23:6e:9a:f1:97:46:ad:27:6a:10:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84bbaeb70b3f1d06716358ad9a2ecfef7d2126fb
Validity
Not Before: Jan 2 02:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53a83a1fb5eb888e3d7607417dfcc619b780cfe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:95:e9:b4:86:89:33:8c:0e:ba:19:8e:c4:f0:
ec:98:36:c1:f9:3c:0e:0b:89:84:02:93:21:11:c2:
6b:b2:06:27:8f:16:49:65:26:91:48:9e:f9:34:4a:
b4:be:6b:58:5e:56:bd:d2:6f:79:6b:d0:67:44:f9:
11:df:a9:c1:2c:52:29:64:34:17:b7:53:1f:ce:5c:
fb:13:0d:97:d4:31:07:4a:e2:47:68:43:49:3e:5e:
26:ed:c3:0e:67:69:9f:99:26:5b:f0:98:fd:3c:03:
14:8a:08:22:8b:5b:ab:f1:bb:25:bd:ea:c6:d1:39:
e6:f4:4b:14:1b:13:e8:cd:5d:38:79:d4:62:d1:e3:
3b:8f:1e:ea:e7:b2:63:00:ed:00:e9:c2:5e:75:79:
e3:1a:c7:bc:26:fb:79:3f:17:f6:c9:a4:76:9b:5b:
f9:be:d9:cc:62:67:20:26:91:96:4a:63:dc:c6:37:
de:99:c7:5c:30:82:d1:56:63:64:54:79:f5:4a:c3:
7d:12:7c:95:76:c6:de:7b:3f:d2:d0:77:19:7f:8e:
03:63:4b:ed:c7:f8:08:69:70:88:54:1a:9d:51:48:
cb:fb:65:a2:bf:7b:0a:84:53:dd:e5:7d:14:d3:0c:
dc:c8:ae:b4:27:c0:0c:ee:ff:13:a0:21:1e:d5:1e:
19:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A8:3A:1F:B5:EB:88:8E:3D:76:07:41:7D:FC:C6:19:B7:80:CF:E7
X509v3 Authority Key Identifier:
keyid:84:BB:AE:B7:0B:3F:1D:06:71:63:58:AD:9A:2E:CF:EF:7D:21:26:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLuutws_HQZxY1itmi7P730hJvs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/U6g6H7XriI49dgdBffzGGbeAz-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/b67eb7-e496-4c31-9f67-97902d8a7fa6/1/hLuutws_HQZxY1itmi7P730hJvs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.24.0/22
Signature Algorithm: sha256WithRSAEncryption
bd:e4:8d:f0:5f:66:bc:3c:fd:e1:ba:e5:ad:52:86:16:16:cd:
bc:06:55:a4:af:f4:30:3e:07:6b:e3:9e:82:bb:0c:49:20:dd:
14:14:b3:d9:77:a5:bb:2e:13:96:36:3d:3e:22:a0:b4:ae:9d:
6b:fa:32:56:75:3f:9c:e3:e7:c9:fa:2d:24:95:6d:85:de:ee:
6e:09:89:0b:1d:75:cc:96:7d:86:df:f2:93:08:d6:90:69:64:
5c:cd:8b:b5:d5:f0:8b:d0:1a:a1:20:6f:f3:cf:ab:2f:fd:95:
4e:bb:b8:75:55:1b:ed:ae:ae:ac:8b:b8:d3:5a:33:26:8a:9d:
11:1d:40:18:69:65:5a:84:96:d8:c9:00:a3:57:f1:a7:70:9e:
d5:97:86:89:87:19:1f:4a:b1:84:ae:5d:a7:94:b7:99:0b:69:
ec:5d:c0:5a:47:9c:48:84:7a:bd:e6:e0:72:e4:f6:b6:ed:ff:
b7:7a:18:32:d5:44:6b:11:c5:08:39:ae:42:6d:d9:b0:dd:98:
14:85:f6:3d:47:76:db:ec:a1:b4:3f:ea:d4:d5:6d:9b:07:4e:
7b:7d:0c:52:49:fe:7c:1f:59:79:19:ed:01:a2:35:f3:5f:75:
2a:f8:a0:45:39:0e:98:bf:07:f8:b2:e4:6b:45:e6:f8:ee:79:
e7:d2:f7:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:20 2023 by rpki-client on console-ams.rpki-client.org