Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/COWZNVBvkFgTKPe-QkDFXhw_9X0.roa
File: COWZNVBvkFgTKPe-QkDFXhw_9X0.roa (raw, json)
Hash identifier: WpZ1cKpWlwwGbOcabAzYbIeQzZ/A+KFa6+2vzwTW5rM=
Subject key identifier: 08:E5:99:35:50:6F:90:58:13:28:F7:BE:42:40:C5:5E:1C:3F:F5:7D
Certificate issuer: /CN=9b19758a087876816dc19361eaf1e9412de73f86
Certificate serial: 018B5D5BE9395FCFA07884CD0DA806ADDC55
Authority key identifier: 9B:19:75:8A:08:78:76:81:6D:C1:93:61:EA:F1:E9:41:2D:E7:3F:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mxl1igh4doFtwZNh6vHpQS3nP4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/COWZNVBvkFgTKPe-QkDFXhw_9X0.roa
Signing time: Mon 23 Oct 2023 16:26:26 +0000
ROA not before: Mon 23 Oct 2023 16:26:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60118
IP address blocks: 185.150.17.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:5d:5b:e9:39:5f:cf:a0:78:84:cd:0d:a8:06:ad:dc:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b19758a087876816dc19361eaf1e9412de73f86
Validity
Not Before: Oct 23 16:26:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08e59935506f90581328f7be4240c55e1c3ff57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:ca:5a:1e:29:bd:0f:8f:cd:98:7e:53:7b:
ca:b9:9d:d8:6e:c4:6b:7f:b2:8d:25:3e:e2:ba:ed:
a4:cb:4f:c4:67:21:5d:06:9a:e2:f9:77:bc:71:85:
c5:be:0f:f3:78:0e:5a:0c:f8:f7:c0:c8:71:c6:68:
b6:1c:89:7c:0f:af:e7:12:54:81:e6:3e:7c:16:b3:
d4:6e:63:80:08:bf:93:cc:7e:be:b8:f6:c2:0d:13:
f5:aa:17:b9:12:43:d1:34:03:bd:4f:2b:e0:0a:f7:
89:b7:3e:0a:f7:98:11:48:a0:53:77:8a:b5:f5:68:
08:c6:3f:7e:f7:14:d0:ff:72:74:4c:cd:95:c8:72:
05:e4:f7:b6:dc:f1:4d:1a:e7:2a:7d:86:61:11:69:
cf:85:33:c2:27:c7:4d:5f:8f:02:82:21:b1:a5:33:
70:56:9b:90:0b:45:3e:a1:65:09:17:67:4f:11:06:
bf:41:32:d2:83:81:90:8d:0a:3b:87:a9:91:58:02:
ef:cc:b1:35:02:b9:a1:5d:f1:a2:fe:25:bf:c4:97:
db:46:63:72:b6:ff:b8:17:d5:4a:2d:a7:e3:08:7b:
a2:a5:f5:8b:a8:27:1b:b3:c4:e5:ff:31:23:85:3c:
ca:cc:8f:a5:3c:97:7a:0a:b3:08:d4:81:43:f1:07:
44:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E5:99:35:50:6F:90:58:13:28:F7:BE:42:40:C5:5E:1C:3F:F5:7D
X509v3 Authority Key Identifier:
keyid:9B:19:75:8A:08:78:76:81:6D:C1:93:61:EA:F1:E9:41:2D:E7:3F:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mxl1igh4doFtwZNh6vHpQS3nP4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/COWZNVBvkFgTKPe-QkDFXhw_9X0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/ba6f3e-e95b-48d2-8419-413da667a8be/1/mxl1igh4doFtwZNh6vHpQS3nP4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.150.17.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:f5:34:b5:d7:bd:30:ff:b1:47:40:0c:be:06:be:2c:82:4c:
00:a5:b7:3c:21:f6:5f:55:8f:df:aa:5e:67:a6:25:95:d2:a2:
e1:43:dc:e2:0f:29:45:a5:d7:98:e2:76:00:39:ad:cd:30:be:
93:85:ec:cb:12:d9:99:3e:c0:9a:34:5b:a7:eb:68:53:68:50:
62:0f:87:99:ec:1f:9e:7c:ca:53:9e:5a:1d:98:ee:73:11:7d:
75:04:89:14:55:89:c7:78:99:9f:da:74:51:be:d9:49:3c:98:
b7:a5:2f:47:83:e0:f3:f8:7d:7f:52:5f:46:1e:82:49:79:79:
6e:ae:70:bd:48:83:84:d9:4c:04:bc:3a:ff:98:0a:51:fe:ae:
bd:3b:92:48:db:d2:1e:a9:1e:15:d1:ba:e6:6b:ae:d4:19:e3:
bb:5b:ac:e4:c4:0e:af:c3:38:ab:df:40:af:2e:06:10:a0:05:
2c:c9:ed:f6:88:95:ee:b5:04:90:d9:3a:74:62:a8:91:95:f0:
e1:1d:3b:df:3d:cf:a7:08:cb:cb:15:b5:9f:47:ba:64:8e:ef:
28:22:78:91:54:b2:79:de:ca:76:ca:91:4c:27:13:e5:0f:7d:
e8:0f:15:e1:f6:c7:0f:e4:b0:18:f7:98:d8:43:27:a0:8a:79:
62:df:3f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:05 2024 by rpki-client on console-fra.rpki-client.org