Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/72WrH9LjenR039wyuE90X5AA_zw.roa
File: 72WrH9LjenR039wyuE90X5AA_zw.roa (raw, json)
Hash identifier: jizdLtarms0myPEmBfJAI++HZ64zzUZ2LmsH2YD+4SU=
Subject key identifier: EF:65:AB:1F:D2:E3:7A:74:74:DF:DC:32:B8:4F:74:5F:90:00:FF:3C
Certificate issuer: /CN=634d6eec403eff86b40f9c598091dd4302a9a721
Certificate serial: 018BC9658B811EA89ED240C04DFC9EC907EC
Authority key identifier: 63:4D:6E:EC:40:3E:FF:86:B4:0F:9C:59:80:91:DD:43:02:A9:A7:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y01u7EA-_4a0D5xZgJHdQwKppyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/72WrH9LjenR039wyuE90X5AA_zw.roa
Signing time: Mon 13 Nov 2023 15:55:57 +0000
ROA not before: Mon 13 Nov 2023 15:55:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.216.13.0/24 maxlen: 24
2a13:6300::/32 maxlen: 32
2a13:6303::/32 maxlen: 32
2a13:6301::/32 maxlen: 32
2a13:6305::/32 maxlen: 32
2a13:6304::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c9:65:8b:81:1e:a8:9e:d2:40:c0:4d:fc:9e:c9:07:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=634d6eec403eff86b40f9c598091dd4302a9a721
Validity
Not Before: Nov 13 15:55:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef65ab1fd2e37a7474dfdc32b84f745f9000ff3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:51:33:5f:06:73:3b:47:e6:86:4e:87:51:1f:
ee:57:04:cc:1c:04:df:f4:c1:6e:5e:ed:48:eb:d0:
72:51:28:59:6c:38:d3:41:97:95:1a:2b:a0:7a:51:
6e:ea:5b:cf:2f:a2:f1:e3:d6:f1:8b:7a:28:c8:63:
f5:a6:18:0b:16:7f:3f:f1:37:90:65:37:03:37:41:
12:22:6f:76:f0:e6:1d:15:c8:1f:7a:4b:b9:5c:00:
d1:82:e0:d3:45:be:f3:89:7d:d9:f2:9d:72:8e:58:
be:e4:14:e6:9b:dc:24:09:50:02:c2:f6:a5:64:a8:
1f:01:7f:d3:9c:6e:81:7a:f4:96:8d:fe:97:2a:00:
55:4c:da:c2:a3:6d:2f:ac:80:08:fa:bd:ec:87:18:
93:d5:77:bd:42:52:a0:55:2f:68:e9:38:46:a5:46:
04:ed:4e:df:dc:1d:fc:dc:3b:af:7c:02:7c:4a:24:
e4:06:70:50:20:e4:12:7d:f6:de:78:f7:39:5f:80:
bd:e6:72:54:22:7b:47:18:ab:d1:a0:24:8c:94:c9:
88:f3:99:d8:42:56:70:18:6d:1a:d1:0a:fa:59:84:
d9:3e:32:1f:78:09:36:c9:40:2a:d9:d2:43:b9:74:
c0:d1:f7:b4:3b:c0:02:5a:30:67:51:6f:06:bf:b9:
86:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:65:AB:1F:D2:E3:7A:74:74:DF:DC:32:B8:4F:74:5F:90:00:FF:3C
X509v3 Authority Key Identifier:
keyid:63:4D:6E:EC:40:3E:FF:86:B4:0F:9C:59:80:91:DD:43:02:A9:A7:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y01u7EA-_4a0D5xZgJHdQwKppyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/72WrH9LjenR039wyuE90X5AA_zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/77c532-59c9-412a-aea8-02bd3dcae4ad/1/Y01u7EA-_4a0D5xZgJHdQwKppyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.13.0/24
IPv6:
2a13:6300::/31
2a13:6303::-2a13:6305:ffff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
8b:f3:d0:5b:90:95:f3:b7:dc:dd:40:5d:72:b8:6a:84:cb:ff:
86:eb:fe:b0:90:e5:73:d9:dc:24:e7:86:91:d8:6a:8c:53:13:
ef:97:23:dc:4b:f5:6d:6f:25:17:39:cf:a9:ec:57:94:ef:62:
07:85:fc:a5:18:45:7a:4d:33:96:3d:81:af:f2:10:f2:e9:4c:
bd:b6:22:91:9e:50:4d:50:a9:c4:49:bd:fa:ef:c7:a6:eb:58:
59:a6:a3:07:73:fd:b6:86:8b:84:cd:02:e1:02:86:81:3f:e1:
ec:f6:0d:b3:87:64:ce:34:03:89:45:db:d0:8e:58:01:95:1c:
25:7d:cf:f3:52:e3:e0:6b:13:1b:6d:9c:dd:99:ca:4b:34:48:
c6:cd:cc:21:44:1c:76:2c:c9:0b:97:36:d2:92:e7:22:c8:64:
b9:45:4f:41:7b:db:69:70:03:a8:67:a0:08:0e:2c:15:31:52:
34:b6:a1:50:a3:bc:4e:a8:8f:2c:e6:c9:3d:0a:b9:3a:aa:29:
32:15:43:93:c6:92:18:b1:38:99:1c:bd:81:8f:05:6c:f2:dd:
05:de:1f:97:fc:fa:71:93:e5:a6:66:89:4e:2b:ce:dc:20:7e:
11:e7:33:8e:bb:18:ba:b8:31:a2:7b:d1:35:6d:74:b9:76:28:
55:aa:1b:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:14 2024 by rpki-client on console-fra.rpki-client.org