Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/EOzO92EXfhEC4117-MuOH-9u9nw.roa
File: EOzO92EXfhEC4117-MuOH-9u9nw.roa (raw, json)
Hash identifier: 9+xhDDPL4DqAVFKi+gQnirD6nM3KSWAbqEUGhCXSGfU=
Subject key identifier: 10:EC:CE:F7:61:17:7E:11:02:E3:5D:7B:F8:CB:8E:1F:EF:6E:F6:7C
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 018572D5CA0AEA6AF399FA1113DC272155D4
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/EOzO92EXfhEC4117-MuOH-9u9nw.roa
Signing time: Mon 02 Jan 2023 14:14:51 +0000
ROA not before: Mon 02 Jan 2023 14:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12695
IP address blocks: 185.113.138.0/23 maxlen: 23
185.95.231.0/24 maxlen: 24
185.75.135.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:ca:0a:ea:6a:f3:99:fa:11:13:dc:27:21:55:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Jan 2 14:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10eccef761177e1102e35d7bf8cb8e1fef6ef67c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b4:33:35:31:f4:29:84:21:65:ec:9e:b3:96:
86:b7:0b:b1:08:16:d6:2a:bd:53:7e:97:bb:03:99:
ed:0c:ed:3c:1f:18:35:fc:d8:49:52:de:a8:76:23:
c3:f7:97:8d:52:8c:a3:45:fb:36:de:ff:77:90:19:
d4:a1:2a:ad:c3:bf:06:ff:5a:fd:a3:b8:6e:81:55:
49:ee:9a:72:c9:82:a3:66:20:c0:df:b3:3c:ff:6a:
c2:56:42:5f:e6:6b:dc:4e:7b:01:45:02:d1:0f:20:
b0:ad:38:d4:ac:8a:07:d0:41:ba:56:75:07:94:cd:
69:03:84:e8:63:24:ba:80:ad:e5:79:00:fc:75:a5:
f8:c1:67:50:05:cc:0c:7a:7c:4c:9d:c7:47:68:bd:
88:61:25:a5:3a:bb:39:c1:5d:e5:1f:f8:20:91:ce:
14:69:d7:2c:5e:5c:f6:0d:36:3d:b4:d5:67:de:6e:
9b:95:e7:4d:aa:d5:18:b9:9b:41:d9:6b:28:9e:5b:
42:be:dc:46:d6:05:81:9d:6a:44:20:4b:d3:48:ce:
a5:de:2e:46:7a:cb:a9:a2:13:22:13:1d:41:59:84:
fc:ea:f2:3a:16:e1:52:0c:0b:32:90:a3:52:63:b7:
7d:b4:5b:f0:57:88:0f:f7:35:b6:33:2e:ee:46:a5:
5e:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:EC:CE:F7:61:17:7E:11:02:E3:5D:7B:F8:CB:8E:1F:EF:6E:F6:7C
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/EOzO92EXfhEC4117-MuOH-9u9nw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.75.135.0/24
185.95.231.0/24
185.113.138.0/23
Signature Algorithm: sha256WithRSAEncryption
27:65:4d:26:ef:86:cf:a1:aa:f9:27:e7:36:06:43:89:ff:8e:
4d:40:20:8d:32:48:c8:d0:4d:8c:27:d0:50:7d:b0:67:af:03:
ba:7e:25:79:22:0b:03:8a:19:0e:24:f5:61:de:0d:e2:3c:10:
6d:67:02:ea:a8:c3:87:18:c6:10:48:71:9d:ac:47:fb:d6:ba:
42:40:e1:7d:d5:8a:62:e6:66:80:88:07:5b:fe:35:6a:12:04:
db:9b:65:8f:e5:44:42:ff:68:de:8b:49:6f:98:ee:e0:f8:ea:
01:6a:00:80:84:23:08:75:78:a4:e6:08:58:61:19:bb:cb:fc:
f3:e9:07:89:19:0a:75:2f:81:9c:bd:00:91:8c:f0:82:38:b6:
8b:03:69:ee:bc:63:8a:66:8b:ef:18:c7:71:b9:b6:cd:fb:0c:
db:dd:95:cf:c2:a6:9b:d6:46:8c:dd:e8:7c:20:0a:c8:f0:f3:
4a:ef:84:90:cb:48:d5:fc:ef:4f:d6:06:c1:6d:47:35:b1:68:
f5:da:10:d2:cc:f4:bd:ab:f2:94:85:50:de:7c:72:6a:7c:fa:
64:11:ef:30:f6:c6:ad:8d:96:34:36:d1:c7:ee:61:a2:af:4a:
3b:7e:8b:d1:75:ea:ec:aa:81:42:dc:cd:8b:b3:c3:68:45:3c:
f3:47:62:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:54 2023 by rpki-client on console-ams.rpki-client.org