Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/SRkZ9x5wrpF7aI9xY_A5VFB3cu0.roa
File: SRkZ9x5wrpF7aI9xY_A5VFB3cu0.roa (raw, json)
Hash identifier: f9ncWr8jYs/brg/xB71JeZQO1J/eUjAEmiMyNWVqC2k=
Subject key identifier: 49:19:19:F7:1E:70:AE:91:7B:68:8F:71:63:F0:39:54:50:77:72:ED
Certificate issuer: /CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Certificate serial: 018572B4293A37E91E7A754B65316B03C5E6
Authority key identifier: DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/SRkZ9x5wrpF7aI9xY_A5VFB3cu0.roa
Signing time: Mon 02 Jan 2023 13:38:07 +0000
ROA not before: Mon 02 Jan 2023 13:38:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51407
IP address blocks: 185.71.140.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:29:3a:37:e9:1e:7a:75:4b:65:31:6b:03:c5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd97c7ca05bcc3d6a2ad1ba235bed8feab694550
Validity
Not Before: Jan 2 13:38:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=491919f71e70ae917b688f7163f03954507772ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4b:af:e4:53:5d:c7:d9:7b:de:d3:74:e9:d2:
1b:49:7c:a2:86:34:69:87:89:60:e5:63:be:ae:bc:
99:44:33:1f:14:d6:36:45:8f:b9:09:43:16:af:df:
f6:d5:28:95:fc:e0:ae:e5:52:68:95:10:eb:1b:6b:
4f:ae:15:a0:69:7d:d6:90:e9:96:b5:1f:01:cc:8b:
31:d0:29:22:61:5f:28:20:6e:5f:35:98:2b:28:8b:
71:b0:bc:d5:c0:16:69:92:2b:fd:0f:f5:71:b3:e4:
46:47:6d:f1:89:0c:3d:df:18:62:74:fe:27:a8:c5:
86:6a:bc:8e:1a:be:b0:22:33:05:a4:ae:13:1a:e0:
f3:0f:62:4b:01:0b:6a:d5:7d:3b:ec:c7:82:d2:f7:
43:a6:3f:d2:f1:44:cd:77:b0:77:cf:0d:f6:82:af:
ab:77:d6:81:d6:b2:d8:43:a8:8b:ec:5e:02:f6:f7:
03:9a:fb:41:6d:a7:ae:1a:6a:d8:06:53:0f:99:28:
49:ec:df:c2:90:2d:a7:98:d9:ca:04:37:c5:3c:b3:
e6:56:56:f8:3e:28:7a:97:e8:2b:3f:12:ff:e6:da:
e4:76:1b:0d:5d:74:31:65:6c:d9:69:f7:65:78:c5:
9c:5f:9d:f4:5c:46:33:4a:7c:d9:f6:7f:90:e8:27:
2f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:19:19:F7:1E:70:AE:91:7B:68:8F:71:63:F0:39:54:50:77:72:ED
X509v3 Authority Key Identifier:
keyid:DD:97:C7:CA:05:BC:C3:D6:A2:AD:1B:A2:35:BE:D8:FE:AB:69:45:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3ZfHygW8w9airRuiNb7Y_qtpRVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/SRkZ9x5wrpF7aI9xY_A5VFB3cu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/e32a9a-83e0-4fb9-ac71-4d4b16144d68/1/3ZfHygW8w9airRuiNb7Y_qtpRVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.140.0/22
Signature Algorithm: sha256WithRSAEncryption
db:83:41:bc:9b:e0:b0:92:e0:30:e3:fb:7b:84:54:24:f7:23:
90:e9:b1:e5:fd:d2:b4:cc:d4:b7:77:2c:5b:48:fe:1f:55:78:
4a:5b:da:73:54:eb:b1:a2:b8:c9:20:c2:75:bb:36:4f:85:75:
de:9d:b7:9e:43:10:6b:74:2e:01:18:35:2b:38:df:77:e0:d1:
f3:3d:33:64:b2:80:b8:55:93:ac:f6:85:b3:56:50:3c:5a:47:
ea:8f:76:40:1a:3c:f9:ac:8b:07:50:6f:91:c8:ce:d5:84:de:
e5:2d:10:ce:f4:17:12:97:9b:a4:a2:d9:77:44:71:46:fb:f0:
26:9e:8a:26:60:6f:56:ca:83:b2:32:ef:e8:30:4c:04:0b:12:
74:59:a4:d1:98:24:ce:0a:77:f8:51:85:2e:de:9a:57:7b:05:
34:0e:10:03:9d:75:f0:c4:75:02:c4:72:b6:26:0c:5b:09:27:
81:d4:26:48:a0:f6:14:95:b2:73:cc:8b:4e:08:f7:1d:7c:cf:
82:78:75:6d:fc:49:8d:69:01:3c:43:32:03:a2:44:ec:8a:00:
85:92:b0:b7:e9:64:0f:5d:88:2b:66:17:b5:27:3f:f4:2b:77:
48:1b:f1:ee:82:88:19:35:f7:92:82:66:21:be:86:13:cf:c0:
a4:61:e4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:40 2023 by rpki-client on console-ams.rpki-client.org