Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/FI4sldRcF60QhmGjRZgn9ucIYDU.roa
File: FI4sldRcF60QhmGjRZgn9ucIYDU.roa (raw, json)
Hash identifier: qhCb4hKugy1Uy7rnzyeW4xok14ngMSecZKYB6ooVsT8=
Subject key identifier: 14:8E:2C:95:D4:5C:17:AD:10:86:61:A3:45:98:27:F6:E7:08:60:35
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A3B2ECE10A16784F170ACE0EB7211
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/FI4sldRcF60QhmGjRZgn9ucIYDU.roa
Signing time: Mon 02 Jan 2023 12:34:51 +0000
ROA not before: Mon 02 Jan 2023 12:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 134413
IP address blocks: 185.248.186.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:3b:2e:ce:10:a1:67:84:f1:70:ac:e0:eb:72:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=148e2c95d45c17ad108661a3459827f6e7086035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a9:30:ef:1f:de:3d:40:14:4b:bf:6a:d8:d4:
01:54:2e:18:8e:a1:37:dd:f9:52:4f:d3:95:5e:00:
d6:00:4e:33:57:08:b3:76:32:2a:28:0d:b2:db:a6:
98:0a:3c:50:0b:19:a1:fc:8d:e2:87:70:55:bb:07:
0c:41:e2:3e:86:d5:2a:51:7f:36:23:37:4e:be:38:
ca:58:d2:c9:23:0e:05:20:f2:f8:ce:eb:c8:82:25:
55:5c:fe:18:52:0b:31:70:97:1a:1b:04:74:d3:0e:
1f:74:53:07:68:8b:8a:a5:56:bb:5f:fa:28:7c:0a:
bd:b0:74:e5:83:30:0c:5b:c7:31:1a:12:15:fb:0b:
88:28:98:48:8a:75:99:8e:74:50:f4:7c:39:fe:83:
e3:3e:a4:bc:2d:f4:a7:af:98:17:4f:12:cb:9a:39:
fd:3b:d8:ed:c5:23:df:26:e5:76:a8:b7:f0:65:d5:
e9:4a:cc:7d:2a:45:e5:4c:61:d3:1e:c4:db:11:d8:
95:24:d0:15:8d:67:89:fb:ad:4b:c7:8e:72:59:c7:
b2:47:ba:4d:84:fc:1a:92:25:1f:34:bc:06:18:0b:
e0:78:6d:91:78:5b:b9:8e:ab:77:79:e3:c3:ea:1f:
20:a8:56:d3:17:8e:5e:88:9d:b6:5d:7a:e3:51:e8:
51:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:8E:2C:95:D4:5C:17:AD:10:86:61:A3:45:98:27:F6:E7:08:60:35
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/FI4sldRcF60QhmGjRZgn9ucIYDU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.186.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:b1:7b:45:64:5f:7d:b1:a1:a1:b1:12:0b:99:9b:ce:40:01:
94:41:bf:b7:8b:1b:a8:0d:05:e8:55:11:25:cb:47:c7:a9:91:
9c:dd:5a:44:01:65:16:7c:b2:40:d5:f8:45:80:4b:cf:7a:a3:
64:b7:0e:ea:fb:c5:2e:81:49:5c:3e:ae:a6:18:b7:3c:b8:07:
cb:11:1f:41:ac:f8:e2:7d:31:74:7b:ab:ae:f7:0b:1e:2f:9b:
6f:be:d5:0a:db:05:53:31:40:50:c3:43:39:38:39:60:24:ae:
07:69:bf:15:bb:6c:61:0b:0a:f9:10:1e:0f:6b:a8:5d:09:c3:
31:14:33:39:67:8e:68:d4:c2:c3:f2:d5:93:23:ec:b0:96:b2:
39:f3:cb:81:22:6c:2e:96:18:ed:c8:a4:c5:71:fd:6f:50:b6:
40:5b:e0:18:30:b3:f6:eb:52:44:05:6c:c1:05:ba:56:0f:3a:
e8:a2:60:9f:cc:e6:cc:58:3b:e1:e7:01:72:92:ce:b0:14:65:
3b:b3:61:a1:c5:52:91:af:7b:a2:be:a5:da:04:f3:f7:05:fc:
42:61:91:14:5e:d9:cd:49:83:4d:16:17:bc:09:82:5e:3c:87:
d2:ff:30:01:66:e6:5b:5c:a0:c8:d0:fa:98:ef:73:7f:04:12:
2c:a8:89:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:23 2024 by rpki-client on console-ams.rpki-client.org