Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ARCDEDkEBbN9SIgdngZflu6z7a8.roa
File: ARCDEDkEBbN9SIgdngZflu6z7a8.roa (raw, json)
Hash identifier: FX2mt01aV7wLwoOdVNm41B86+0vdnZzjro660lrrw0s=
Subject key identifier: 01:10:83:10:39:04:05:B3:7D:48:88:1D:9E:06:5F:96:EE:B3:ED:AF
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 01856F1DD5C43FD852AE18A551F4D130EE40
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ARCDEDkEBbN9SIgdngZflu6z7a8.roa
Signing time: Sun 01 Jan 2023 20:55:04 +0000
ROA not before: Sun 01 Jan 2023 20:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60144
IP address blocks: 185.222.219.0/24 maxlen: 24
2a09:0:12::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:d5:c4:3f:d8:52:ae:18:a5:51:f4:d1:30:ee:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 20:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=01108310390405b37d48881d9e065f96eeb3edaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:40:34:aa:18:9f:2a:70:96:58:28:6a:71:16:
fb:0f:7a:e7:06:b7:98:d1:9e:51:32:bc:65:29:a4:
62:6f:4d:70:4e:07:09:e5:d9:d4:28:e6:a8:11:74:
ad:50:74:7c:f4:db:71:1b:8c:6b:f1:98:25:64:32:
a8:fb:19:26:ca:9d:0e:08:86:41:7f:9a:6b:3c:a8:
76:4f:b1:fe:ca:fd:59:46:2a:7c:31:90:ce:2d:ad:
f5:25:d2:cf:2e:36:28:60:07:9c:50:be:0c:21:15:
df:74:13:2d:d6:88:a6:81:e1:b7:5e:4a:95:00:8e:
1f:d1:91:9d:ad:1c:a9:98:13:b8:4a:55:5d:bb:db:
0d:f0:35:d1:b6:c7:88:61:25:dd:2c:a8:a3:9a:52:
21:32:82:60:da:20:bc:d4:cf:bf:c5:aa:6e:ea:03:
2c:b1:44:54:2f:99:3f:bb:85:38:c2:fb:b8:72:ff:
a5:00:55:37:29:3d:ae:aa:0f:eb:cd:34:c4:43:79:
2c:74:7d:c8:81:e3:1d:ce:b0:ee:93:4e:e2:84:d4:
75:84:10:93:4c:e2:06:1f:b3:9b:a9:3f:ce:43:52:
16:1c:35:52:8b:4d:87:e3:ac:ac:5c:4b:af:36:5f:
dc:ab:76:e8:4d:01:41:fe:cb:62:36:36:d0:63:95:
e3:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:10:83:10:39:04:05:B3:7D:48:88:1D:9E:06:5F:96:EE:B3:ED:AF
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/ARCDEDkEBbN9SIgdngZflu6z7a8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.219.0/24
IPv6:
2a09:0:12::/48
Signature Algorithm: sha256WithRSAEncryption
2f:80:a7:3d:e2:ff:ee:b1:8c:86:f4:f4:7c:29:ed:73:6f:51:
d2:1d:3d:6c:15:f3:87:98:bf:57:2d:34:5f:90:d2:1e:56:96:
29:6a:bd:2a:26:1b:94:30:84:df:e0:48:53:48:4e:6d:f5:53:
78:76:e4:1d:de:e1:ca:53:f0:80:02:b9:6a:f0:4a:1a:fc:79:
e8:77:af:3b:3b:65:01:77:b1:33:22:bb:c0:6f:e2:a6:e0:23:
da:bd:c5:3f:e3:28:bb:a1:51:44:e5:68:a5:ac:04:c2:bd:05:
a3:b2:2c:3a:74:6b:c4:14:57:1b:4f:86:80:5b:4a:55:b0:b2:
2d:3c:f7:d8:f8:ad:3e:a0:00:56:b3:5c:d2:68:45:40:1d:7f:
39:75:79:55:90:d2:b1:fe:20:60:e7:1d:ff:5c:c6:cd:29:84:
2c:82:ce:1f:2c:b3:27:1a:01:be:ee:13:cd:b3:ad:40:c1:6b:
eb:f4:35:77:d0:78:18:85:6d:53:e3:1e:60:a2:a8:4e:25:7b:
8f:a7:e7:12:52:ff:b1:8e:49:28:02:e1:9c:c7:6c:45:37:96:
e6:a4:90:f5:a8:58:58:4f:da:98:ad:e6:c5:42:82:7c:06:99:
b0:38:eb:29:ca:b3:4f:fa:74:74:60:bc:b1:06:8b:ad:94:26:
cd:0c:2c:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:42 2024 by rpki-client on console-ams.rpki-client.org