Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/pG8WV5IuBDaBNlNdxlsejvKB5Qk.roa
File: pG8WV5IuBDaBNlNdxlsejvKB5Qk.roa (raw, json)
Hash identifier: QcOG598KP5t4a6HS5jffzIlA+3pg4BsfgDGZfivC0bI=
Subject key identifier: A4:6F:16:57:92:2E:04:36:81:36:53:5D:C6:5B:1E:8E:F2:81:E5:09
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 01856C65F0C7E69C57B8108519DC86C73233
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/pG8WV5IuBDaBNlNdxlsejvKB5Qk.roa
Signing time: Sun 01 Jan 2023 08:14:58 +0000
ROA not before: Sun 01 Jan 2023 08:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47873
IP address blocks: 185.19.178.0/23 maxlen: 23
185.19.176.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:f0:c7:e6:9c:57:b8:10:85:19:dc:86:c7:32:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Jan 1 08:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a46f1657922e04368136535dc65b1e8ef281e509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8e:09:a0:2e:77:67:4a:7b:e3:90:b5:5c:12:
39:91:af:25:d1:30:c6:3d:d4:53:77:6f:30:14:bc:
36:b2:90:0c:2c:ca:35:39:24:21:92:2a:bc:21:de:
1e:33:da:2e:cd:c6:81:4a:93:70:78:f6:d4:03:f9:
05:71:ef:a5:35:31:90:90:6c:83:36:ab:26:2f:e6:
52:df:01:3f:ab:81:ac:3c:4b:59:26:f2:be:cb:0e:
a7:75:aa:82:cc:8c:49:f2:dd:2f:2e:0c:4b:a6:d7:
ec:2f:ca:78:58:e0:57:9a:3d:28:e8:cd:80:71:3b:
7d:b5:26:dd:ef:4e:4c:40:63:8a:ff:7e:f5:99:e0:
89:fc:65:f4:a4:b4:ad:f0:dd:07:ea:9f:99:85:75:
07:4a:6b:3a:df:43:28:45:97:92:d2:35:65:c3:60:
58:ee:29:9c:3a:06:c7:48:d4:07:04:51:1a:56:73:
4e:56:8f:89:ea:fd:34:97:4b:98:84:3a:4b:5a:b2:
aa:fb:06:01:cd:4b:08:c8:f9:c9:8c:e4:20:fc:a2:
ba:58:b4:c3:e3:b5:4f:eb:d4:6d:96:3f:c2:e0:71:
fc:87:50:6d:c4:d6:e0:2e:57:09:fc:bc:63:c1:a9:
06:fc:9f:6e:01:b2:32:94:94:fe:67:7d:e7:4e:77:
37:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:6F:16:57:92:2E:04:36:81:36:53:5D:C6:5B:1E:8E:F2:81:E5:09
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/pG8WV5IuBDaBNlNdxlsejvKB5Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.19.176.0/22
Signature Algorithm: sha256WithRSAEncryption
be:65:58:e5:32:bc:d9:a0:bd:9e:5e:36:59:97:cd:7f:ff:eb:
25:9a:58:8d:ce:4d:1f:bc:1d:e8:78:91:04:f6:8b:4a:41:8f:
1f:a8:9d:d2:a1:0d:44:a7:c8:8f:f2:bd:ec:5a:a7:83:c4:73:
0d:f2:f0:f3:7e:ae:a4:d7:ed:05:0f:cb:3d:39:b4:ab:b1:e1:
e7:c3:7d:3b:66:d9:8d:77:50:6b:dc:0e:cd:21:5e:5b:b2:3b:
66:34:d3:c8:bb:2c:ac:7c:65:ab:84:28:6a:32:5d:2a:15:38:
58:2d:b0:f8:db:e5:51:19:d1:26:37:42:e5:7b:84:50:59:9d:
fa:44:95:4b:12:55:a5:ae:02:f4:cb:0b:3e:54:6a:0b:e1:e5:
8b:11:e9:73:21:68:0b:54:c0:27:e3:eb:5a:7f:5f:02:0b:99:
a3:08:12:88:95:62:cf:b1:83:84:24:0e:39:23:2d:4c:f2:26:
c7:84:f2:1b:da:ed:fa:ac:b6:38:4d:65:b7:86:e5:29:3b:3f:
d4:6e:e9:e3:8e:62:57:84:ad:08:36:7b:78:d1:3f:9f:3d:f2:
7d:37:57:fb:1b:30:b0:49:26:41:3a:00:2f:26:2f:16:cf:c3:
2b:db:8d:44:9e:ee:94:a0:e3:bd:ec:7f:69:47:2d:6c:ef:8a:
f1:26:af:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:09:43 2024 by rpki-client on console-fra.rpki-client.org