Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/2wOAgkmAWrQ4VI3dCbVZF0mbyDI.roa
File: 2wOAgkmAWrQ4VI3dCbVZF0mbyDI.roa (raw, json)
Hash identifier: ZcXfn1cOhGdJcK6Gl1OFdxH+l0NwSeCG9MpM5k30KWk=
Subject key identifier: DB:03:80:82:49:80:5A:B4:38:54:8D:DD:09:B5:59:17:49:9B:C8:32
Certificate issuer: /CN=0a73778fb1bec28c9982652aede86a004c2682f1
Certificate serial: 018572C39CCF1D68508348F4529F3CDB860C
Authority key identifier: 0A:73:77:8F:B1:BE:C2:8C:99:82:65:2A:ED:E8:6A:00:4C:26:82:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CnN3j7G-woyZgmUq7ehqAEwmgvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/2wOAgkmAWrQ4VI3dCbVZF0mbyDI.roa
Signing time: Mon 02 Jan 2023 13:55:00 +0000
ROA not before: Mon 02 Jan 2023 13:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202192
IP address blocks: 185.30.28.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:c3:9c:cf:1d:68:50:83:48:f4:52:9f:3c:db:86:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a73778fb1bec28c9982652aede86a004c2682f1
Validity
Not Before: Jan 2 13:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db03808249805ab438548ddd09b55917499bc832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b7:12:0e:9b:23:c4:93:33:8c:1d:dc:7f:cf:
4b:d4:96:10:c9:07:d0:7d:1d:9d:f7:de:6d:b1:be:
ef:aa:2a:a2:02:97:6f:e1:d4:9f:d6:72:f1:3f:fb:
92:bd:ed:f3:f6:d4:c8:a5:03:2f:b5:42:16:aa:dc:
c8:71:36:09:58:bc:c1:d5:7e:a9:a4:a8:bd:54:f0:
b5:40:6f:52:02:92:a3:87:ab:ae:15:ef:22:ed:3d:
68:d6:69:a9:4d:d2:b4:d9:f0:00:68:b8:b5:a3:1f:
56:0c:44:92:0f:54:40:b6:ef:d3:68:a7:f7:37:1e:
53:b4:b5:42:cf:07:48:24:af:4a:97:0e:a1:98:7a:
f8:d7:f7:01:50:0a:08:81:d8:f9:d5:77:78:26:9a:
89:70:b6:ea:87:8e:f3:0e:23:4e:bb:20:00:c8:56:
d2:7b:67:af:1e:c8:58:09:bb:6e:b8:7f:8e:21:9a:
12:81:41:1b:b7:58:ab:a0:bc:c3:31:58:de:2e:8f:
c0:2e:ac:20:c9:18:7e:3e:61:57:c2:62:3d:83:fb:
2f:a5:c2:14:08:e7:e5:12:f0:88:40:60:61:4d:7e:
c5:9e:af:99:e2:10:cc:c0:52:27:1b:ce:53:38:08:
3c:a8:59:9a:55:3f:05:31:e1:ec:8f:76:f1:94:54:
3f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:03:80:82:49:80:5A:B4:38:54:8D:DD:09:B5:59:17:49:9B:C8:32
X509v3 Authority Key Identifier:
keyid:0A:73:77:8F:B1:BE:C2:8C:99:82:65:2A:ED:E8:6A:00:4C:26:82:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CnN3j7G-woyZgmUq7ehqAEwmgvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/2wOAgkmAWrQ4VI3dCbVZF0mbyDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e6e15c-12b0-40be-8bc1-5708f580e36a/1/CnN3j7G-woyZgmUq7ehqAEwmgvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.30.28.0/22
Signature Algorithm: sha256WithRSAEncryption
18:cf:cb:1b:c2:9d:60:78:8f:40:d5:f2:d1:d3:85:be:6c:7c:
93:18:29:da:2f:ba:75:4f:d8:1d:86:bd:04:c0:65:87:62:23:
bd:b1:8b:76:66:0f:60:c9:eb:58:74:f4:f6:90:07:9f:0a:c3:
63:46:a9:3b:b2:38:37:6d:7e:60:4e:6b:9c:07:de:1d:9c:33:
bf:66:53:42:48:a5:7d:02:af:65:07:6c:8a:af:06:c9:1f:87:
0c:08:a6:65:d5:db:a7:45:f4:c8:14:98:3f:0a:b3:3e:ff:c7:
47:42:71:05:01:48:9a:9d:9d:e3:e5:aa:e9:93:01:0a:d8:b0:
9a:66:6b:5a:0e:a1:66:1d:a6:e9:d3:2d:82:01:3d:09:c4:9a:
8a:67:2e:3c:29:36:67:10:a5:51:07:f9:63:03:50:29:44:44:
18:fc:e9:e2:56:d1:77:42:1f:b3:ca:e4:d4:24:44:13:35:7a:
10:29:de:56:fb:67:1c:e7:04:a3:89:4c:da:35:93:57:02:e3:
5e:8f:6e:86:28:ec:7a:47:7b:39:52:07:26:e8:de:e4:57:77:
de:15:b6:70:5e:5b:95:28:de:13:8f:ad:ad:f2:8e:5e:d8:6e:
8a:ed:b9:d3:cb:85:78:04:21:38:a8:01:1b:d2:5e:cf:f6:4d:
ee:13:29:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:02:54 2024 by rpki-client on console-ams.rpki-client.org