Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/kzJUzl29f3S1dKeJbJf2uM0EXCg.roa
File: kzJUzl29f3S1dKeJbJf2uM0EXCg.roa (raw, json)
Hash identifier: +p6YTRR2p6SGhPXe0kKnx5LYrVb8eBsh9ZxDGhTrJBA=
Subject key identifier: 93:32:54:CE:5D:BD:7F:74:B5:74:A7:89:6C:97:F6:B8:CD:04:5C:28
Certificate issuer: /CN=59877720c014688494ea6910c83474de13e99802
Certificate serial: 01856DA6383203276ACE09F12F3A10F43661
Authority key identifier: 59:87:77:20:C0:14:68:84:94:EA:69:10:C8:34:74:DE:13:E9:98:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/kzJUzl29f3S1dKeJbJf2uM0EXCg.roa
Signing time: Sun 01 Jan 2023 14:04:47 +0000
ROA not before: Sun 01 Jan 2023 14:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50597
IP address blocks: 185.144.15.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:38:32:03:27:6a:ce:09:f1:2f:3a:10:f4:36:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59877720c014688494ea6910c83474de13e99802
Validity
Not Before: Jan 1 14:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=933254ce5dbd7f74b574a7896c97f6b8cd045c28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2e:bf:f3:f8:67:90:74:93:12:be:bd:82:10:
b4:32:a1:05:30:85:81:75:63:3d:82:d3:ad:60:76:
f1:49:e6:67:43:9f:f9:d6:33:cd:c6:1a:6a:43:31:
66:ca:ab:5b:28:9d:dd:8a:9c:96:45:fe:9d:40:c0:
8c:f1:72:88:e4:6d:83:37:8d:df:b6:03:1f:dd:80:
78:70:be:57:d0:cd:28:ba:26:b6:fe:bf:ed:d5:11:
da:7d:7f:18:71:ff:39:41:1a:20:76:9d:9d:13:38:
2a:59:79:24:ba:87:18:08:36:19:4f:47:75:58:67:
77:a7:d0:1d:e1:d6:9e:65:fa:04:92:9a:f5:7d:fe:
7f:59:39:94:43:d4:bc:3e:bc:59:12:80:b7:73:c4:
64:8e:bd:9e:7f:95:fb:9a:4b:0e:24:4f:2a:51:e9:
f9:ba:04:61:28:44:8c:18:b4:da:f5:57:94:06:ad:
58:68:2e:f0:cb:bc:65:bf:75:68:89:c8:5b:e1:ae:
e7:7d:49:20:63:8a:3d:fc:3f:38:19:c5:ef:f6:90:
15:31:fc:75:6c:d3:03:c7:79:57:f8:c8:a6:9a:da:
72:f4:a1:f6:c5:c1:29:83:4a:88:fc:48:77:e3:10:
19:28:3d:f7:2e:6b:ea:8f:1d:0b:79:32:4a:86:5f:
54:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:32:54:CE:5D:BD:7F:74:B5:74:A7:89:6C:97:F6:B8:CD:04:5C:28
X509v3 Authority Key Identifier:
keyid:59:87:77:20:C0:14:68:84:94:EA:69:10:C8:34:74:DE:13:E9:98:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WYd3IMAUaISU6mkQyDR03hPpmAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/kzJUzl29f3S1dKeJbJf2uM0EXCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/2a0808-7e97-47e0-afbb-74ccd8240bad/1/WYd3IMAUaISU6mkQyDR03hPpmAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.15.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:af:5c:86:ba:53:d2:08:4c:fd:07:46:df:39:3a:c6:1f:5a:
c9:9a:28:9d:94:b3:ad:9f:27:67:37:73:f6:8f:48:32:dc:67:
7e:d3:8c:7e:5e:40:c1:53:a1:05:51:22:d2:d9:51:c6:ab:ab:
9c:03:0c:42:d1:db:1f:1e:69:b6:54:2a:b3:c6:46:ca:a3:1f:
d3:c6:19:a6:4c:b1:f1:87:bf:29:36:c9:31:7a:03:dc:75:e5:
3c:1d:ee:02:eb:e8:70:95:26:76:bc:4a:b9:5a:5f:97:ba:ef:
1b:df:3e:57:40:7f:0e:8b:a1:93:3c:55:b8:49:c4:2a:79:98:
6f:5c:db:0c:02:7a:6b:45:d8:74:ea:ba:f7:ac:ff:27:e5:35:
d6:2e:cd:f7:f6:bd:3d:e2:4b:78:23:f3:63:21:8c:2c:3a:df:
2d:2a:e4:2e:d1:4a:69:85:2f:19:1e:0f:e1:c4:c1:84:40:7e:
b6:14:bb:87:e4:79:26:c6:22:60:23:c8:81:c2:93:89:d1:27:
4a:da:c0:b6:17:62:a3:cb:2c:92:4f:06:2c:b9:94:f5:5e:5a:
67:63:c6:5a:0e:be:89:3d:6b:a6:e8:86:9f:0c:94:c0:85:9b:
ad:df:13:25:9c:33:3e:7b:1e:08:e4:66:15:2a:6a:93:2a:6e:
a5:36:f5:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:16:19 2024 by rpki-client on console-ams.rpki-client.org