Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/3eef64-90c5-4a2e-bc1e-3633dcd4c9dc/1/FhYZujHEwr8h4lw9v5ArwPMalT8.roa
File: FhYZujHEwr8h4lw9v5ArwPMalT8.roa (raw, json)
Hash identifier: DxEBHmTdslJPix6K+y+fJ4MoDnr7W0AwRsjBjq62DPY=
Subject key identifier: 16:16:19:BA:31:C4:C2:BF:21:E2:5C:3D:BF:90:2B:C0:F3:1A:95:3F
Certificate issuer: /CN=b473166566a08d032053ccace23068e1953f4eb2
Certificate serial: 01856D6F6C1DBA1180C5064C736B339EA67B
Authority key identifier: B4:73:16:65:66:A0:8D:03:20:53:CC:AC:E2:30:68:E1:95:3F:4E:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tHMWZWagjQMgU8ys4jBo4ZU_TrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/3eef64-90c5-4a2e-bc1e-3633dcd4c9dc/1/FhYZujHEwr8h4lw9v5ArwPMalT8.roa
Signing time: Sun 01 Jan 2023 13:04:56 +0000
ROA not before: Sun 01 Jan 2023 13:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.138.165.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:6c:1d:ba:11:80:c5:06:4c:73:6b:33:9e:a6:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b473166566a08d032053ccace23068e1953f4eb2
Validity
Not Before: Jan 1 13:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=161619ba31c4c2bf21e25c3dbf902bc0f31a953f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:70:0d:3e:62:61:0a:2b:52:ae:6b:ee:54:f0:
a3:57:54:58:09:90:e9:a4:22:79:fd:bc:af:87:8b:
b1:26:87:d0:a9:d3:1c:3b:6b:7d:9f:db:a7:d4:4b:
27:eb:dc:4b:4c:11:7e:d2:0a:7c:fe:97:d0:aa:bf:
72:7b:5a:2d:14:68:84:27:d4:7d:f4:56:8b:43:e2:
f5:b4:9c:91:bc:c2:b4:c5:81:2d:9a:50:42:06:38:
69:86:92:0f:78:cd:cd:18:58:14:e1:af:b6:97:c8:
7e:39:4a:37:5d:6f:06:9d:16:4e:d2:3a:d6:7f:28:
66:e6:f3:22:97:82:52:1e:db:b6:46:79:cf:8e:de:
b1:1a:c3:c7:19:fd:16:33:34:8c:fe:82:c2:04:4c:
9a:bb:13:45:60:0e:e5:38:2a:11:63:b3:8b:94:27:
5a:1b:c0:77:f1:74:00:38:4f:42:55:30:01:5f:35:
13:d7:03:9d:1a:b4:70:9e:36:91:99:3c:bd:e3:9d:
60:b3:ec:c0:b9:a2:c7:af:5d:ed:ff:6a:77:da:a2:
02:9a:7c:40:87:2f:e0:ad:b3:29:34:2a:63:b4:00:
95:30:44:90:93:2d:0b:32:5e:34:05:2d:f9:49:b0:
16:31:6a:70:5e:cc:16:bd:79:85:12:5e:c0:34:b8:
8c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:16:19:BA:31:C4:C2:BF:21:E2:5C:3D:BF:90:2B:C0:F3:1A:95:3F
X509v3 Authority Key Identifier:
keyid:B4:73:16:65:66:A0:8D:03:20:53:CC:AC:E2:30:68:E1:95:3F:4E:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tHMWZWagjQMgU8ys4jBo4ZU_TrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3eef64-90c5-4a2e-bc1e-3633dcd4c9dc/1/FhYZujHEwr8h4lw9v5ArwPMalT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/3eef64-90c5-4a2e-bc1e-3633dcd4c9dc/1/tHMWZWagjQMgU8ys4jBo4ZU_TrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.165.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a7:39:7e:89:ee:d8:73:d1:e3:9f:c6:2d:6e:a2:60:d9:9e:
f0:0c:f2:93:9e:6a:e4:30:8e:88:93:de:1e:cd:89:f6:b9:84:
0c:08:2c:c4:95:9c:9e:00:26:2a:b3:18:bf:13:4a:f5:84:cf:
e7:03:7e:6e:2c:94:97:29:18:59:e3:84:0d:73:2f:8c:b5:cd:
86:67:b9:3e:0c:2c:05:b6:e4:9c:90:37:6e:eb:43:64:56:18:
4c:c9:29:3c:0d:ba:cc:2f:b5:22:3a:f4:d1:8a:f9:9f:0b:71:
f0:f7:ba:ad:e8:29:ea:87:4e:3d:9a:2a:43:c9:b9:64:f0:35:
18:e7:f7:43:e1:6d:d5:df:4e:0e:04:c0:94:1f:b0:2e:5f:b2:
06:0e:96:48:4c:36:68:46:86:76:68:6b:e5:82:14:6e:3f:06:
10:bb:e2:02:1c:72:0f:03:17:da:d0:ef:0d:13:b6:f4:cb:5d:
67:7a:d6:18:ba:c8:7a:63:29:72:1a:71:33:da:1a:ae:b8:e2:
ef:56:cf:d4:42:53:46:4d:ce:59:59:ff:44:91:7d:2a:85:f1:
93:94:c1:cc:1f:30:12:c5:de:75:12:8b:b1:77:79:bb:88:0f:
43:17:f3:5e:f4:53:0b:de:95:e0:12:20:7e:ba:c2:b6:90:39:
89:c9:a0:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:02 2023 by rpki-client on console-fra.rpki-client.org