Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Q00hawJJ3XUKR3uYgshesn2ZtoE.roa
File: Q00hawJJ3XUKR3uYgshesn2ZtoE.roa (raw, json)
Hash identifier: EPokTirKUChd9eg48+p7ZuZ0la9Fo3qV4VBPz05Ahc4=
Subject key identifier: 43:4D:21:6B:02:49:DD:75:0A:47:7B:98:82:C8:5E:B2:7D:99:B6:81
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01856BDCAAD3B1C092CA1B51AAEFCCF63111
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Q00hawJJ3XUKR3uYgshesn2ZtoE.roa
Signing time: Sun 01 Jan 2023 05:45:01 +0000
ROA not before: Sun 01 Jan 2023 05:45:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400039
IP address blocks: 185.173.147.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:aa:d3:b1:c0:92:ca:1b:51:aa:ef:cc:f6:31:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jan 1 05:45:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=434d216b0249dd750a477b9882c85eb27d99b681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:d7:5f:36:15:18:42:0f:81:46:06:b8:a0:
4b:bd:e8:7d:0f:86:6b:f1:c1:1a:e0:4b:25:95:6f:
4e:1a:6e:e7:7c:42:f5:6d:34:c5:37:a2:de:dd:42:
13:1b:da:50:82:92:82:7c:3a:4c:b6:99:f1:7c:68:
85:ac:96:fb:c3:d2:ee:53:d8:11:f7:06:96:2e:93:
fe:8a:3a:84:7b:be:30:27:7e:19:58:92:13:15:32:
e2:3a:1f:00:2f:d2:d0:34:fc:87:9a:02:3f:a4:48:
2a:55:2b:a4:85:b2:a6:54:c5:6f:e3:96:16:82:51:
2c:d0:7f:c8:3e:3f:19:f3:81:6c:50:a6:7d:fc:cc:
8d:a9:82:f2:c8:91:3a:69:63:c6:ed:02:98:14:d5:
8b:ca:91:b1:52:d1:16:57:27:60:0b:70:7a:63:4c:
64:29:a5:58:03:52:a8:4c:13:ae:47:1d:07:5c:c3:
6e:c5:0f:65:d1:20:a9:0e:d5:59:a6:1a:d7:af:99:
f5:0a:d5:3d:8d:08:b1:b5:e4:27:bc:c7:2b:c5:f0:
65:94:57:69:b6:02:9e:ec:37:bd:5a:72:14:48:a2:
66:0f:59:02:6c:a7:89:e8:9f:8c:54:c8:35:ba:e9:
d0:0e:ec:57:74:29:2a:79:96:d6:8e:ee:b2:cc:2e:
e1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4D:21:6B:02:49:DD:75:0A:47:7B:98:82:C8:5E:B2:7D:99:B6:81
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/Q00hawJJ3XUKR3uYgshesn2ZtoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.147.0/24
Signature Algorithm: sha256WithRSAEncryption
57:c6:a0:e1:e2:48:51:cc:62:cd:96:b9:57:e2:8e:e7:3f:0b:
7d:f9:c5:09:da:0b:d1:91:53:d4:d2:5c:5e:bc:47:ff:8e:43:
bf:c3:01:0c:af:c7:92:f2:9a:c9:d3:7e:08:d3:79:71:38:fa:
66:f4:d0:0f:e1:87:82:37:0d:fe:bd:5a:39:81:7a:5a:99:a8:
fe:17:80:14:9f:98:80:f4:fb:cb:06:e9:d0:9a:b3:b8:15:df:
d1:56:b4:ec:18:4b:0b:f4:5c:39:cd:0c:2d:b4:1f:c9:86:ef:
80:b3:e5:62:0e:e9:05:02:1d:15:43:1e:0d:56:cd:1d:26:9b:
bd:03:a5:65:a1:e5:2a:ea:34:b2:bf:77:cd:69:b3:be:e6:d1:
e2:8b:22:b8:9d:f3:f4:bc:52:67:c2:f2:8d:60:3e:97:75:cc:
d5:2c:08:bf:40:49:36:9a:e3:73:16:61:71:64:93:7d:c4:f6:
fa:61:b2:60:3d:88:dd:da:fe:6b:8d:95:fc:9a:18:97:87:b8:
1e:d2:50:81:94:d6:a6:f7:98:db:2b:33:85:cc:80:2d:a4:c4:
30:6b:ce:ab:9a:83:26:65:c8:c2:12:36:7c:d8:3f:04:20:dc:
ce:62:db:14:c2:8c:2a:95:05:09:b1:f2:de:fe:e1:34:ef:d8:
7f:62:75:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:24 2024 by rpki-client on console-ams.rpki-client.org