Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/rccn3WPisXjrAu7JCHE8JGy0WdA.roa
File: rccn3WPisXjrAu7JCHE8JGy0WdA.roa (raw, json)
Hash identifier: QtBNXxuY+EN5PKuNk0ogAlxU6bdhWyd6dzg6ZQywsOU=
Subject key identifier: AD:C7:27:DD:63:E2:B1:78:EB:02:EE:C9:08:71:3C:24:6C:B4:59:D0
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 018C3500D09F76F297B0812BACF4306B45D1
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/rccn3WPisXjrAu7JCHE8JGy0WdA.roa
Signing time: Mon 04 Dec 2023 13:24:54 +0000
ROA not before: Mon 04 Dec 2023 13:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56694
IP address blocks: 185.65.201.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:00:d0:9f:76:f2:97:b0:81:2b:ac:f4:30:6b:45:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Dec 4 13:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=adc727dd63e2b178eb02eec908713c246cb459d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:25:9e:ac:73:70:13:ac:1a:25:e9:9a:5b:29:
22:40:d4:bd:26:6e:8b:73:45:8f:eb:d4:64:4c:9c:
9b:71:0e:05:bd:8a:84:76:6a:69:6a:2e:a1:98:db:
4f:0c:a1:2e:1c:a1:17:77:84:c1:32:fe:bb:3a:6e:
ec:18:ea:04:32:d1:72:82:6a:76:8b:84:10:69:b1:
1c:46:e6:f2:cc:32:74:82:86:fd:f8:a1:27:de:3f:
13:50:4d:18:20:86:ef:6f:f7:a1:09:6a:8c:f4:47:
62:db:b5:92:d9:d1:6a:17:aa:51:6e:14:74:95:2e:
02:5b:eb:5b:0d:83:f8:28:19:29:84:d0:af:aa:b4:
b3:18:6d:57:d0:bf:fe:80:90:78:94:b1:83:35:49:
73:62:7d:a0:3d:5a:96:96:32:9d:8e:d9:ad:16:88:
62:29:45:98:42:72:cf:97:35:17:2c:b0:dc:e2:45:
24:1e:45:28:99:c4:d9:8e:28:1a:47:ea:42:a5:ba:
ce:d1:5c:04:8c:6c:d9:ee:69:65:f7:b9:15:da:e9:
b9:9e:59:0d:f4:77:20:73:2d:9d:f6:5c:92:d2:22:
2e:2f:a8:6e:0a:48:1f:91:cd:54:57:04:a1:0d:0a:
3a:ac:5e:18:49:f8:9b:61:ea:4f:79:85:d0:c9:de:
ce:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:C7:27:DD:63:E2:B1:78:EB:02:EE:C9:08:71:3C:24:6C:B4:59:D0
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/rccn3WPisXjrAu7JCHE8JGy0WdA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.201.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:a7:e0:d4:dd:9a:52:c6:83:bf:ea:76:d3:20:a2:1a:30:40:
01:a1:e0:25:2b:42:64:82:4f:6c:e9:4a:cf:d0:c0:8b:3d:7a:
0d:d8:d6:ba:be:02:ee:f3:a8:d3:20:93:69:9b:be:d2:e9:22:
a5:a6:90:63:62:8f:81:3a:49:b0:97:cd:38:ad:a2:94:56:69:
7e:ec:bf:86:00:c3:b7:ee:70:d1:44:15:63:6a:32:c8:95:20:
57:ea:ef:3f:ff:44:38:5d:5d:f1:64:27:27:1c:69:24:35:98:
95:98:79:84:8c:5e:57:73:01:d0:11:6a:2b:41:e5:ec:48:e7:
94:7c:ff:37:fa:74:04:38:a5:d3:d4:05:73:db:e0:98:9f:52:
43:ad:ed:9f:bd:c4:b4:41:47:a6:b6:9d:ea:96:09:9a:cc:c4:
20:09:fe:6e:8b:6f:50:11:5b:82:fb:dd:15:c8:67:2c:bc:ed:
3f:4b:58:6c:86:e5:64:18:79:2a:25:bf:d4:b1:1c:3a:9f:78:
d6:e8:d5:8c:11:a9:ab:55:2e:e2:bf:08:33:5a:a1:7c:df:45:
c0:e9:6d:d4:ea:8c:37:ba:da:a4:df:cd:d8:ae:bd:70:c5:8f:
4a:09:c5:e0:b9:37:06:0f:ca:5e:e0:3a:22:0e:fa:e1:cc:33:
b3:67:38:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:04 2024 by rpki-client on console-fra.rpki-client.org