Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/t4PJRyz4D2JLXRFseUy6VwlX5QI.roa
File: t4PJRyz4D2JLXRFseUy6VwlX5QI.roa (raw, json)
Hash identifier: W6VPDkRgQLbCG4MW6WBpXVBNNNEedt06gME/Joi0jPM=
Subject key identifier: B7:83:C9:47:2C:F8:0F:62:4B:5D:11:6C:79:4C:BA:57:09:57:E5:02
Certificate issuer: /CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Certificate serial: 01856C4A61A49D753EAA4E7BFF149943CC8C
Authority key identifier: D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/t4PJRyz4D2JLXRFseUy6VwlX5QI.roa
Signing time: Sun 01 Jan 2023 07:44:52 +0000
ROA not before: Sun 01 Jan 2023 07:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62303
IP address blocks: 185.235.81.0/24 maxlen: 24
185.235.83.0/24 maxlen: 24
185.235.82.0/24 maxlen: 24
2a0d:4d00:83::/48 maxlen: 48
2a0d:4d00:81::/48 maxlen: 48
2a0d:4d00:82::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:61:a4:9d:75:3e:aa:4e:7b:ff:14:99:43:cc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3860a9b36585fb8aa051fc37fcc6a0773990cbf
Validity
Not Before: Jan 1 07:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b783c9472cf80f624b5d116c794cba570957e502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a5:e9:01:b9:3d:e6:7e:6f:87:9d:a5:7a:73:
a3:aa:1f:0c:cc:cf:8d:48:c5:9f:e0:de:5a:ab:7f:
15:36:24:77:71:d0:57:3a:bd:50:39:6a:a1:fd:e8:
47:71:7e:40:d6:cb:d5:d4:4a:ba:ea:0c:98:e1:60:
a5:7e:0e:66:b3:d8:33:06:c0:68:eb:a0:6d:d7:61:
e0:c9:ba:25:a6:e6:15:e9:ca:92:07:cd:24:ec:f8:
a8:0c:d9:69:fb:9c:bb:3c:dd:39:80:a4:3a:91:4e:
0f:4a:19:70:cf:5b:f7:48:85:8c:2a:ae:0e:ad:b6:
02:be:4c:8d:c1:2b:13:64:8e:80:b5:3c:bd:d5:2a:
8f:23:55:4c:6d:cb:5d:4d:6e:ca:f7:ef:25:69:c0:
bc:32:ff:57:4d:55:69:fb:44:0f:f3:84:c6:1e:34:
de:e5:04:ed:0d:7b:a1:b6:f8:87:26:f6:6e:1f:a8:
0e:15:8b:0b:3a:10:58:dc:57:5d:e7:ac:bd:8d:81:
12:c3:af:31:a6:c0:af:d3:3c:74:02:71:61:2b:a8:
70:9b:b6:e4:a9:aa:93:05:a8:2c:6e:97:30:4a:5b:
2f:5b:20:3c:55:a8:e3:4c:b8:3d:5d:12:8a:58:75:
9d:62:c9:75:d2:a0:ff:ad:03:3d:08:73:bf:dd:69:
14:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:83:C9:47:2C:F8:0F:62:4B:5D:11:6C:79:4C:BA:57:09:57:E5:02
X509v3 Authority Key Identifier:
keyid:D3:86:0A:9B:36:58:5F:B8:AA:05:1F:C3:7F:CC:6A:07:73:99:0C:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04YKmzZYX7iqBR_Df8xqB3OZDL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/t4PJRyz4D2JLXRFseUy6VwlX5QI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/03c430-fb04-40ea-85d1-c92c6165de18/1/04YKmzZYX7iqBR_Df8xqB3OZDL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.81.0-185.235.83.255
IPv6:
2a0d:4d00:81::-2a0d:4d00:83:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
12:2a:60:10:09:75:38:0c:13:16:97:51:da:17:0c:80:13:e9:
10:e0:ed:29:ac:1f:4a:9e:fc:b6:8d:ee:2f:0d:61:69:ce:a9:
49:60:96:9f:e3:aa:6a:a0:63:98:8a:e0:d3:28:e4:35:a8:55:
20:0c:88:00:e7:02:db:75:2a:dc:35:00:28:46:b3:31:1f:b0:
f2:a2:6c:01:f7:44:d4:0f:1a:7b:cf:e2:88:9e:d6:ba:47:48:
2a:71:e9:6b:9e:76:c4:54:88:9e:a3:fe:e2:b6:5f:5b:02:09:
3c:43:cb:f0:14:46:a5:9b:d2:a7:f1:0d:12:74:df:ce:a6:fc:
0f:6d:12:97:e5:8d:c1:7d:79:13:e1:19:d5:7c:aa:fe:05:99:
23:33:3f:e3:f8:e0:ab:33:e2:44:43:78:fb:49:40:1f:83:16:
f9:0c:cd:5f:c8:09:e0:c7:11:d5:63:12:8f:a1:50:c0:29:ae:
b2:91:0c:35:75:60:da:88:fa:19:1b:9a:c0:86:ea:11:4e:b9:
4b:5e:c3:c4:0c:bf:17:48:02:e3:33:9a:4c:a0:b6:5e:b1:17:
c9:52:6c:57:3e:18:96:e7:86:20:82:d5:09:56:eb:66:69:6b:
b4:74:48:b0:ea:4e:16:05:96:48:37:cc:b7:93:11:ec:ae:f7:
fd:bb:11:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:34 2024 by rpki-client on console-fra.rpki-client.org