Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/jklfO4oKMCBc0gGpYWKCuzzFuI0.roa
File: jklfO4oKMCBc0gGpYWKCuzzFuI0.roa (raw, json)
Hash identifier: EeqEpheWL8lR47rDBqJfK99nWOzQLNEG9/GpEEcf9ws=
Subject key identifier: 8E:49:5F:3B:8A:0A:30:20:5C:D2:01:A9:61:62:82:BB:3C:C5:B8:8D
Certificate issuer: /CN=c98b825f36e9cc330315c940de800cbabce3397b
Certificate serial: 0185735F174848EAE9404F549FFF1289ECCE
Authority key identifier: C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/jklfO4oKMCBc0gGpYWKCuzzFuI0.roa
Signing time: Mon 02 Jan 2023 16:44:49 +0000
ROA not before: Mon 02 Jan 2023 16:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49097
IP address blocks: 185.170.24.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:5f:17:48:48:ea:e9:40:4f:54:9f:ff:12:89:ec:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c98b825f36e9cc330315c940de800cbabce3397b
Validity
Not Before: Jan 2 16:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e495f3b8a0a30205cd201a9616282bb3cc5b88d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:cb:91:51:37:6c:1c:e8:30:8a:c6:fa:b7:ee:
92:fc:c3:76:ed:f8:89:c1:cf:6d:a6:85:db:7c:48:
8e:cf:c0:65:13:f4:f7:c1:66:29:35:2c:cd:dd:6c:
81:d9:7b:1c:bc:2a:5c:be:b3:8a:7c:0c:32:c8:f6:
dc:10:12:25:24:f0:8c:54:6a:b5:a0:80:0d:3a:98:
09:9b:49:60:d6:74:24:41:7e:46:83:ab:59:fd:d2:
43:50:27:f5:70:c6:d6:3e:c9:93:0c:9e:21:ff:9a:
4e:55:c9:82:ef:6e:3e:77:96:97:6f:42:57:7a:a1:
50:2b:45:65:c7:71:b6:63:a0:e2:c8:97:fb:00:bb:
6f:84:00:43:28:dc:e7:8a:25:0c:db:b0:2e:73:cb:
3d:4a:ff:c0:55:f0:3f:1d:f1:94:29:c9:89:7a:0d:
33:69:b0:97:a8:3e:74:d3:33:29:b8:e1:e3:fb:52:
b4:01:81:4f:ad:68:c4:4f:ce:04:88:55:9f:86:89:
59:9f:43:ad:01:cf:f2:2e:9f:58:c3:5a:62:29:38:
f2:21:57:a0:2e:f5:22:10:d8:9c:e9:ea:a7:f8:a6:
9f:40:56:97:94:e6:11:26:83:cb:1b:db:8f:d8:72:
10:df:b6:1d:96:60:22:e7:7c:75:03:df:5f:2a:fa:
de:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:49:5F:3B:8A:0A:30:20:5C:D2:01:A9:61:62:82:BB:3C:C5:B8:8D
X509v3 Authority Key Identifier:
keyid:C9:8B:82:5F:36:E9:CC:33:03:15:C9:40:DE:80:0C:BA:BC:E3:39:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yYuCXzbpzDMDFclA3oAMurzjOXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/jklfO4oKMCBc0gGpYWKCuzzFuI0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/ea3614-f090-4a2b-9355-b89a511c3bbd/1/yYuCXzbpzDMDFclA3oAMurzjOXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.24.0/22
Signature Algorithm: sha256WithRSAEncryption
03:4e:cf:d2:07:75:8d:d0:75:1f:b3:bd:16:bc:d0:4a:76:9a:
3e:ac:f3:72:85:9c:ab:f9:40:f7:ae:dd:d4:69:74:b9:00:9f:
51:f2:94:fc:9f:62:39:4d:72:42:75:d8:f3:7e:f9:ad:89:be:
38:7c:be:98:40:2f:58:45:3f:d9:01:93:a8:c9:b1:d7:54:ca:
58:38:b5:4a:c7:57:9f:af:66:02:ad:9e:d0:d6:2a:ac:1f:e6:
1b:ed:11:68:b8:44:8e:4b:ab:cc:36:45:a8:fe:63:6c:62:22:
f7:61:5e:b5:53:87:57:c7:49:ab:28:45:d5:89:52:75:e4:c6:
c8:b9:5f:98:cb:0a:65:02:8e:1a:cd:2e:28:40:25:57:39:8f:
f8:d4:dd:55:21:e7:0b:2d:8a:18:59:aa:e2:e7:c0:f9:22:47:
e8:9e:db:30:04:8c:e9:e7:76:94:0b:b4:26:c4:f3:1c:9d:29:
ae:f1:63:d9:09:25:3e:f1:f7:1d:51:14:3e:a0:bc:be:1d:d7:
a8:db:bf:b8:2b:97:00:5b:10:7a:42:0e:19:af:2c:27:10:7f:
2a:2c:f2:42:39:07:fa:f4:3b:e4:c0:e8:f5:5b:8c:7b:5d:59:
f0:48:e5:4e:10:3e:52:a3:b4:74:fd:56:23:d3:c2:42:d3:b2:
8c:07:d0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:07 2024 by rpki-client on console-ams.rpki-client.org