Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/cZywvVYG820IUvogSLBMYKYYaRg.roa
File: cZywvVYG820IUvogSLBMYKYYaRg.roa (raw, json)
Hash identifier: 3+FO1LMndLc1NObfLNj+OpdOIwnoIPPdCTHhkvO1uy0=
Subject key identifier: 71:9C:B0:BD:56:06:F3:6D:08:52:FA:20:48:B0:4C:60:A6:18:69:18
Certificate issuer: /CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Certificate serial: 018570D5483A5329FC45B252F3461D0FFD83
Authority key identifier: FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/cZywvVYG820IUvogSLBMYKYYaRg.roa
Signing time: Mon 02 Jan 2023 04:55:03 +0000
ROA not before: Mon 02 Jan 2023 04:55:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16097
IP address blocks: 185.105.40.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:48:3a:53:29:fc:45:b2:52:f3:46:1d:0f:fd:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbfcd4515b493039216758de738e4f1ae8e3224c
Validity
Not Before: Jan 2 04:55:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=719cb0bd5606f36d0852fa2048b04c60a6186918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dc:58:79:01:55:d9:79:4a:4d:c8:f9:29:a8:
32:f0:7e:a1:2b:f1:48:1f:d3:de:17:66:46:47:7a:
3f:35:71:89:f0:d4:6a:1a:69:20:b4:43:14:34:92:
7b:2c:45:d1:e3:ed:ee:f7:9e:50:3c:d0:e0:87:8c:
d2:1e:16:94:82:e5:64:5e:2e:78:0d:d2:9a:8f:8f:
d8:0d:f2:51:49:4d:04:d1:7e:5a:07:a2:8c:74:c9:
e2:3f:54:da:0a:9a:7b:3d:2a:ec:4b:3f:c2:a0:38:
12:15:4c:ed:0b:f0:e9:78:99:71:4b:b1:35:84:4b:
96:b9:b5:af:50:ec:88:3e:a7:65:ad:ad:94:8a:35:
40:a3:e7:a3:3e:7d:5b:0a:1f:76:d9:3c:ad:6d:bd:
67:40:f5:53:be:1a:d1:9e:45:c1:69:73:3a:c1:c9:
5d:9e:bf:be:99:95:8f:c8:49:a0:f3:01:17:3f:5d:
83:da:90:f2:e7:43:0c:ff:6a:81:84:40:48:64:f2:
59:d9:83:18:bd:d5:8a:f9:47:8c:0f:7b:df:49:6a:
c8:2e:29:26:cd:35:2a:64:c8:67:9a:a3:10:52:f5:
0f:c3:df:fa:fd:81:be:54:f9:d1:60:36:53:7e:ce:
e4:32:3c:38:7c:5a:6b:66:79:e8:50:2e:47:c2:e1:
50:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:9C:B0:BD:56:06:F3:6D:08:52:FA:20:48:B0:4C:60:A6:18:69:18
X509v3 Authority Key Identifier:
keyid:FB:FC:D4:51:5B:49:30:39:21:67:58:DE:73:8E:4F:1A:E8:E3:22:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_zUUVtJMDkhZ1jec45PGujjIkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/cZywvVYG820IUvogSLBMYKYYaRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/d6486a-8ff7-426f-8d86-098d04ce51b2/1/1-_zUUVtJMDkhZ1jec45PGujjIkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.40.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:46:b5:2c:e0:f8:c2:09:85:e5:18:86:20:34:f1:50:08:8e:
25:9f:03:74:f7:27:c2:a1:c3:6a:9e:0f:8e:02:b3:8e:04:0b:
1e:80:26:47:c7:95:ff:41:74:31:b0:e5:c7:fd:d3:89:03:3d:
9e:aa:f5:f4:d8:e1:49:3c:ae:90:96:dd:9e:51:e9:fa:b5:e6:
ea:38:41:a9:28:4c:95:09:04:d5:a6:14:41:f7:96:bf:ce:8a:
14:e7:64:9e:7d:bd:8e:ca:94:1f:ef:1f:6f:1e:d6:91:99:60:
2e:1f:db:80:78:11:6b:7f:ee:94:f9:a7:c6:61:1a:00:f7:97:
ce:12:b2:c6:f4:ae:12:d2:57:ce:03:cd:8b:8e:2f:42:c2:4e:
72:f8:b8:57:e7:ed:10:1d:49:9d:85:2d:61:8f:85:fb:a2:9a:
3f:30:a4:12:52:75:40:cc:0c:ce:03:9d:d1:4b:8f:70:1a:12:
ca:4f:f4:22:0b:e0:0c:4d:00:0d:49:36:f3:3f:f5:02:e4:2f:
18:ee:75:d7:2d:5f:aa:58:ba:f6:36:ef:ed:ef:cd:f9:7f:99:
9e:85:cb:71:6b:40:3b:49:9e:6a:e5:b1:2a:92:32:c2:f4:16:
9b:7b:7d:e7:f3:40:99:f2:8c:43:d6:8d:f6:e2:30:d6:86:e3:
09:29:c8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:14:15 2024 by rpki-client on console-ams.rpki-client.org