Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/GllIfX2jYl4MeOt13JOiij7YNTM.roa
File: GllIfX2jYl4MeOt13JOiij7YNTM.roa (raw, json)
Hash identifier: eektsVNNub3iixgCTNtMsjH6BI1bLKUY9BMkj5xOGNQ=
Subject key identifier: 1A:59:48:7D:7D:A3:62:5E:0C:78:EB:75:DC:93:A2:8A:3E:D8:35:33
Certificate issuer: /CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Certificate serial: 01860CABD24DB181771221E47CD89BA8584D
Authority key identifier: EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/GllIfX2jYl4MeOt13JOiij7YNTM.roa
Signing time: Wed 01 Feb 2023 11:10:32 +0000
ROA not before: Wed 01 Feb 2023 11:10:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16134
IP address blocks: 185.66.72.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:0c:ab:d2:4d:b1:81:77:12:21:e4:7c:d8:9b:a8:58:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef4f78947341ce55888b7ebf3690143b0cbff3d6
Validity
Not Before: Feb 1 11:10:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1a59487d7da3625e0c78eb75dc93a28a3ed83533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:19:5b:07:29:a4:04:bd:ec:b4:e2:a2:1d:24:
42:a0:e1:80:34:7f:7c:7c:7b:7b:d6:0d:1d:bb:2a:
dc:06:3a:15:b6:22:9a:0d:31:16:25:5d:eb:65:0c:
24:d7:d0:ea:f0:b9:75:69:0d:03:f4:7b:72:ab:81:
02:41:d8:c4:f9:ce:19:51:0b:61:e7:aa:ae:3d:2d:
cc:12:3f:8f:bb:28:e3:8b:cd:25:05:75:c7:43:34:
f0:cc:0d:83:c8:7b:b4:06:f5:a5:68:6b:85:28:62:
37:ad:ab:37:09:07:41:a3:ac:1d:67:1c:e3:d2:16:
42:f7:f2:84:c0:8c:26:52:e1:9b:8c:c9:12:f7:45:
28:57:6f:ad:5d:34:c5:19:ba:f6:06:d1:cf:70:6c:
e1:42:36:c5:49:4f:d5:49:5d:e3:97:f5:7a:15:aa:
84:39:2d:88:5d:e6:94:83:0a:ac:a3:ff:57:41:d2:
7a:47:64:28:3d:d7:b9:2d:45:76:e7:08:a1:75:c9:
70:ed:26:b9:12:d8:39:7b:21:0d:3e:b2:08:d9:c6:
0c:e2:94:7c:f2:4f:af:00:98:fc:ef:c7:35:f6:3a:
65:3c:9d:1e:86:15:44:fe:7d:d7:10:b6:1e:d0:ed:
49:45:2b:b1:ff:1c:02:5a:61:db:1b:60:38:88:d2:
aa:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:59:48:7D:7D:A3:62:5E:0C:78:EB:75:DC:93:A2:8A:3E:D8:35:33
X509v3 Authority Key Identifier:
keyid:EF:4F:78:94:73:41:CE:55:88:8B:7E:BF:36:90:14:3B:0C:BF:F3:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7094lHNBzlWIi36_NpAUOwy_89Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/GllIfX2jYl4MeOt13JOiij7YNTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/005c9e-fe7c-469a-b6f0-9baa66ca1404/1/7094lHNBzlWIi36_NpAUOwy_89Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.66.72.0/24
Signature Algorithm: sha256WithRSAEncryption
18:12:44:7e:86:a1:9d:2d:0b:43:03:43:eb:bd:ac:2c:8f:2a:
38:37:3d:86:b3:08:25:a4:8e:82:ea:47:03:4d:23:20:34:ec:
aa:f4:cb:ee:6a:cb:72:96:e6:49:45:d0:64:92:be:b3:47:df:
22:0e:b7:00:49:6e:64:52:1a:7e:83:2d:97:64:05:79:1f:87:
7f:ad:72:0d:a4:7c:bf:f5:c8:ab:24:4d:9f:63:87:ff:e5:5e:
85:d7:25:54:66:13:90:e5:59:70:91:d3:e9:b7:9a:5d:39:d1:
a2:dd:a9:55:28:7b:b0:96:34:11:94:2d:8d:cb:d0:0f:16:d1:
03:57:02:3c:53:35:6a:17:24:20:a7:6d:62:eb:25:68:60:76:
72:19:1c:93:f4:34:67:c1:72:f4:3b:15:e5:50:3c:77:7a:1d:
f8:5b:4e:51:3f:0e:52:bd:ce:cc:55:34:71:55:7c:fb:02:e0:
a7:be:6c:2f:61:12:f1:4d:12:20:57:e8:82:aa:a1:f4:9b:8a:
0b:bb:c5:a6:00:23:83:19:a7:72:e3:62:79:96:3e:48:56:ab:
98:28:8d:9b:e0:ae:76:05:10:e2:0b:7e:60:38:80:cc:71:4b:
5c:aa:7b:33:26:e6:5c:cb:d5:ff:22:30:a4:52:06:a1:16:ba:
26:e5:28:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:16 2023 by rpki-client on console-fra.rpki-client.org