Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/xzmcmKA_yj4HQV07q07IND4Py4w.roa
File: xzmcmKA_yj4HQV07q07IND4Py4w.roa (raw, json)
Hash identifier: nvRJwl1shEmNDZ+RbvAry1OaGVHS73CWXzVpQnKOyO0=
Subject key identifier: C7:39:9C:98:A0:3F:CA:3E:07:41:5D:3B:AB:4E:C8:34:3E:0F:CB:8C
Certificate issuer: /CN=261b941dbe59651fafbba9724a12775e07edb635
Certificate serial: 01856CCAC6167DFCF4794841CADC3A07B2C4
Authority key identifier: 26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/xzmcmKA_yj4HQV07q07IND4Py4w.roa
Signing time: Sun 01 Jan 2023 10:05:06 +0000
ROA not before: Sun 01 Jan 2023 10:05:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31367
IP address blocks: 185.172.152.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ca:c6:16:7d:fc:f4:79:48:41:ca:dc:3a:07:b2:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=261b941dbe59651fafbba9724a12775e07edb635
Validity
Not Before: Jan 1 10:05:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7399c98a03fca3e07415d3bab4ec8343e0fcb8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:7f:26:9a:c3:30:70:91:fa:61:2a:9b:35:54:
91:7d:09:37:69:d5:77:14:87:22:6e:81:ce:27:2b:
4e:2e:e9:5b:9e:a3:a9:a7:b2:78:7a:b4:b2:bd:c6:
32:37:ea:71:be:1d:c8:d4:00:17:1d:56:03:36:e5:
4d:d3:49:da:75:a7:5f:21:96:70:7f:1f:bb:40:87:
d7:ca:8b:ef:80:6e:21:b7:cc:c2:84:a9:8b:b0:79:
2c:8e:1a:06:02:7a:6f:9c:da:51:55:c9:3a:cf:cd:
ae:78:4b:7f:8c:5b:a2:8d:83:88:7d:59:32:79:2e:
c4:2c:20:c1:cd:ed:3b:6f:a9:f3:d8:ee:e2:ce:f9:
8a:c6:97:de:a6:cc:44:fc:88:e0:d5:f3:aa:3a:04:
b0:d1:72:b2:c8:9c:a3:45:e5:5a:fb:9b:e6:a3:ea:
3c:b4:df:91:35:7f:05:a2:46:53:0a:63:5f:a8:38:
04:2e:6c:a2:da:72:52:a3:cb:d9:e4:61:22:07:61:
db:c0:05:4b:a5:7f:34:3d:22:ae:30:0f:8f:5d:84:
68:f0:93:be:a3:84:3a:d1:74:c9:3c:83:e0:65:e2:
34:59:6c:07:3d:95:80:0e:ad:57:86:33:8c:f8:de:
80:5d:ed:80:58:e9:de:a5:d5:b3:00:bd:e3:fa:fe:
01:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:39:9C:98:A0:3F:CA:3E:07:41:5D:3B:AB:4E:C8:34:3E:0F:CB:8C
X509v3 Authority Key Identifier:
keyid:26:1B:94:1D:BE:59:65:1F:AF:BB:A9:72:4A:12:77:5E:07:ED:B6:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JhuUHb5ZZR-vu6lyShJ3XgfttjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/xzmcmKA_yj4HQV07q07IND4Py4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/2f830f-af4d-4d33-a300-b98df544bc20/1/JhuUHb5ZZR-vu6lyShJ3XgfttjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.172.152.0/22
Signature Algorithm: sha256WithRSAEncryption
58:7a:d8:bf:ff:71:b3:37:ed:ae:19:db:b2:50:b8:80:26:2d:
7f:a1:c6:81:62:18:c7:02:bb:12:ee:b1:8a:b6:d3:6e:e3:c6:
16:d6:8d:f4:04:6d:1b:5b:92:f4:ec:0a:08:44:c1:06:dd:1d:
dc:f4:a4:2a:41:41:cb:5f:42:c3:cc:80:f3:d6:fc:5f:95:14:
fc:22:f8:d5:e2:cf:5d:59:31:39:e8:bd:bc:e9:27:15:a9:10:
c6:34:7e:43:bb:1d:4f:de:a3:1e:36:7b:e2:db:9f:46:90:6a:
38:db:4a:1d:8f:4b:d5:cf:7b:1d:93:ee:1f:41:a8:1f:65:15:
16:c3:73:f3:28:1c:5a:60:33:1c:10:a0:31:19:ca:80:05:bc:
5d:e7:e3:b8:f7:0c:43:b6:44:99:c3:ca:70:ce:b7:c2:68:96:
a5:e6:b8:4d:f1:87:17:61:70:f8:d2:e4:62:91:fc:35:8d:9d:
2a:b0:95:4b:a4:b6:7c:2a:c5:b4:7a:2b:f3:bb:9b:8b:69:e1:
87:e0:58:e6:53:50:82:3b:d3:56:69:6b:9e:5b:bd:43:67:82:
0e:b7:f6:51:20:48:3d:06:75:32:24:26:d2:e2:ed:03:8a:e7:
20:ea:31:79:25:17:5f:28:57:7b:78:92:a8:26:8f:69:ec:0f:
0e:8a:9e:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:40 2024 by rpki-client on console-fra.rpki-client.org