Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/xAsj4WuRr_6m6ihUq3a4BuTZ0Ac.roa
File: xAsj4WuRr_6m6ihUq3a4BuTZ0Ac.roa (raw, json)
Hash identifier: C5SfDV2bFhoxOd/tQaaDSprnbGv0br1HuX/6RoD6hy4=
Subject key identifier: C4:0B:23:E1:6B:91:AF:FE:A6:EA:28:54:AB:76:B8:06:E4:D9:D0:07
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 01856F8B7ACFC196B0A8B775A72D375A8DB0
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/xAsj4WuRr_6m6ihUq3a4BuTZ0Ac.roa
Signing time: Sun 01 Jan 2023 22:54:50 +0000
ROA not before: Sun 01 Jan 2023 22:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39151
IP address blocks: 185.27.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:7a:cf:c1:96:b0:a8:b7:75:a7:2d:37:5a:8d:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Jan 1 22:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c40b23e16b91affea6ea2854ab76b806e4d9d007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:13:2e:4f:69:dc:cf:b7:5c:34:47:e2:5b:00:
d6:08:3a:24:c3:93:a1:9e:a0:68:45:32:14:16:cc:
af:4c:e6:68:61:51:90:3e:45:5d:45:7f:53:dc:21:
50:5b:17:f9:22:95:4a:d7:db:70:dc:a3:f9:04:a8:
52:50:fb:41:2f:20:05:36:da:8b:08:e4:0b:86:15:
7c:45:fd:36:d4:c2:1b:fc:91:90:3a:8e:9f:f8:f7:
eb:03:9c:aa:0e:5a:17:58:0f:0c:22:c6:1b:d2:29:
ed:ea:5d:18:e0:a1:be:41:5b:77:a4:a5:c1:a3:43:
11:36:06:6b:2d:56:47:9f:3e:b3:0a:c2:85:5f:ef:
f0:a0:5c:2a:02:ce:58:89:3b:35:84:ba:a9:4e:a3:
3c:04:85:d3:c0:1d:8a:e0:a7:3b:64:72:46:c9:f9:
7c:19:cf:c8:d5:1e:d4:35:f9:30:4b:4f:4b:b5:ed:
11:ee:2f:43:69:99:00:eb:20:23:de:3d:7b:ac:d5:
52:01:a0:7e:a0:6c:d9:f0:2d:28:7a:fb:5e:14:34:
5e:29:71:1f:2b:72:a2:05:7c:6a:6c:4b:a4:84:62:
94:7a:c6:5b:39:3e:86:86:67:92:8b:0c:f2:db:14:
32:a1:c9:f5:14:4a:03:15:33:96:75:f7:0a:4e:be:
c3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:0B:23:E1:6B:91:AF:FE:A6:EA:28:54:AB:76:B8:06:E4:D9:D0:07
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/xAsj4WuRr_6m6ihUq3a4BuTZ0Ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.249.0/24
Signature Algorithm: sha256WithRSAEncryption
97:41:39:20:c3:b0:ff:97:b3:30:17:8a:95:36:cc:2b:e6:79:
a0:30:6f:6d:6e:4b:fb:ef:de:7a:37:8a:66:2e:cb:71:43:2c:
e8:e7:12:0f:79:73:b1:14:ad:a0:b0:4f:16:69:d7:9e:c0:1a:
c1:bc:52:74:24:62:bf:d1:f1:3b:2a:d7:0a:a5:ee:20:5a:b2:
e3:b1:f7:fc:34:7c:15:e2:ce:5c:ce:cb:2d:fd:a2:cd:51:1e:
98:62:dd:ae:f2:fe:64:84:c2:56:60:e2:0e:1a:5a:a0:48:8c:
fa:8d:94:04:b9:e1:d4:07:29:d5:e4:12:89:e6:2c:c5:33:d4:
5a:ae:70:d8:a3:a0:58:5d:66:2c:ff:4c:a9:d5:8a:b9:ed:13:
c3:59:c4:db:a2:2d:d4:13:61:7b:29:32:24:91:ff:0b:46:85:
7a:de:41:9f:a7:23:16:1c:54:fc:fd:d0:c2:aa:c1:63:bf:d5:
3a:ab:3b:13:ed:2f:25:50:76:62:83:59:2f:23:db:08:31:9b:
57:1f:0f:12:02:85:36:fa:35:11:00:7b:e3:0f:23:e2:69:ea:
30:12:f1:93:bf:3e:93:1d:0c:65:d0:0d:4a:ef:c1:54:e8:f5:
49:f9:78:71:50:b4:12:3a:0e:1e:c0:a7:b8:97:4f:d4:45:f3:
ff:2f:60:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:14 2024 by rpki-client on console-ams.rpki-client.org