Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/4G2aLUfzSiyAFq5E6eQvTcKD01Y.roa
File: 4G2aLUfzSiyAFq5E6eQvTcKD01Y.roa (raw, json)
Hash identifier: vghkkdNX141dMkvRqn7GzpLMFGVSouf4SuL3E9pwwTk=
Subject key identifier: E0:6D:9A:2D:47:F3:4A:2C:80:16:AE:44:E9:E4:2F:4D:C2:83:D3:56
Certificate issuer: /CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Certificate serial: 01856C780741624EC0B0A5A898E66872FBC9
Authority key identifier: 53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/4G2aLUfzSiyAFq5E6eQvTcKD01Y.roa
Signing time: Sun 01 Jan 2023 08:34:43 +0000
ROA not before: Sun 01 Jan 2023 08:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205176
IP address blocks: 185.227.116.0/22 maxlen: 22
185.227.116.0/24 maxlen: 24
2a0c:aa00::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:07:41:62:4e:c0:b0:a5:a8:98:e6:68:72:fb:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53799560453dcf4af31f9b2a40cd238b8457c5de
Validity
Not Before: Jan 1 08:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e06d9a2d47f34a2c8016ae44e9e42f4dc283d356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5e:0b:cf:23:2a:3d:7f:f5:44:7d:0f:6d:27:
cd:bc:99:f6:03:25:08:aa:9d:c0:e4:df:09:f3:31:
dd:88:42:d6:2a:b8:0f:88:51:21:f3:57:0c:4e:b8:
4d:24:a7:ae:3c:10:d6:0a:72:fd:d1:92:15:35:e5:
b1:81:b0:67:ea:ff:13:14:fe:33:28:28:97:59:9f:
03:3e:64:3d:bd:02:6b:33:44:34:05:89:16:37:ff:
16:ae:d7:79:d9:66:82:d2:f8:bb:9a:ee:03:b5:6f:
57:b6:b4:6c:7d:3e:13:66:02:4f:a9:09:0d:6e:0c:
03:fb:f8:8e:f0:b8:f0:40:0d:78:7e:8f:a5:09:40:
3f:28:90:19:ed:8e:60:b3:b6:3a:21:53:f7:ca:12:
2c:15:98:db:32:01:57:10:8a:5b:0c:2c:c5:12:0b:
a4:87:2f:4c:9b:05:04:d0:94:e3:98:e2:de:93:10:
71:85:47:f0:b7:fd:99:e1:30:c6:81:77:b0:67:56:
5e:63:52:94:78:36:9b:49:33:73:cb:c8:0f:e4:c8:
bd:ff:1d:92:db:f4:c6:24:b7:9b:be:f8:ed:2f:6c:
dd:89:31:2d:ae:3a:e9:0d:fb:68:b4:aa:cf:d3:72:
d1:f0:9e:62:5b:6d:81:41:84:3b:2b:05:02:9a:19:
50:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:6D:9A:2D:47:F3:4A:2C:80:16:AE:44:E9:E4:2F:4D:C2:83:D3:56
X509v3 Authority Key Identifier:
keyid:53:79:95:60:45:3D:CF:4A:F3:1F:9B:2A:40:CD:23:8B:84:57:C5:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U3mVYEU9z0rzH5sqQM0ji4RXxd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/4G2aLUfzSiyAFq5E6eQvTcKD01Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/d8771a-e753-406c-a1d8-39ab77b833ea/1/U3mVYEU9z0rzH5sqQM0ji4RXxd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.227.116.0/22
IPv6:
2a0c:aa00::/29
Signature Algorithm: sha256WithRSAEncryption
8c:d5:cc:00:33:02:e5:75:e6:6a:3e:cb:97:8d:1c:3d:3d:45:
b5:5b:45:0e:d6:c1:3f:be:d7:89:1e:76:73:81:e2:53:29:e4:
82:96:a9:7b:60:9d:62:1d:1c:58:8e:18:42:0f:ce:7d:76:2a:
07:5d:5e:f2:7c:b6:a2:0e:7e:4a:f0:11:2d:2f:d9:86:be:ed:
5d:82:e2:88:23:12:4f:41:1e:e3:20:a8:16:d9:ba:49:2c:77:
22:53:d2:1d:c0:a5:5a:29:d4:45:e2:8b:e8:55:31:f4:99:30:
bf:75:b4:47:f3:8f:14:65:93:50:e9:f1:e0:e7:9e:5d:c1:f3:
41:f1:9e:cb:a8:6d:f3:1b:dd:2d:0f:62:17:61:32:ea:83:9d:
7d:99:35:1a:7e:82:4d:44:0d:c8:b4:4b:5c:98:a5:a7:54:29:
f2:60:02:a2:89:7c:76:f6:16:51:79:e0:0b:87:ef:19:59:68:
6c:1a:f6:5d:f9:34:c4:1e:05:cf:4a:0a:63:76:b7:3e:8b:09:
b3:09:af:76:4d:84:01:91:ee:45:bb:d1:1f:7b:63:9f:06:6b:
32:a4:90:b0:33:43:9f:6f:64:cd:e4:df:01:5f:9c:b3:69:5e:
6f:07:bc:04:01:ba:87:d5:d7:5c:0b:4d:bd:b1:3d:83:6b:97:
ca:fb:97:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:04 2024 by rpki-client on console-fra.rpki-client.org