Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/efP2zk14vkZcvh3HBAT0x-UWtuY.roa
File: efP2zk14vkZcvh3HBAT0x-UWtuY.roa (raw, json)
Hash identifier: ZUof8jTwDvsLCnODfxe5nKesBnCycWYA6bI6kaaLT7Y=
Subject key identifier: 79:F3:F6:CE:4D:78:BE:46:5C:BE:1D:C7:04:04:F4:C7:E5:16:B6:E6
Certificate issuer: /CN=19d65fa33ce5b3f7bdb497e5fca509d7fc03c693
Certificate serial: 01856BEEB4569C548E9727A9EFAAFBAFB7EA
Authority key identifier: 19:D6:5F:A3:3C:E5:B3:F7:BD:B4:97:E5:FC:A5:09:D7:FC:03:C6:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdZfozzls_e9tJfl_KUJ1_wDxpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/efP2zk14vkZcvh3HBAT0x-UWtuY.roa
Signing time: Sun 01 Jan 2023 06:04:43 +0000
ROA not before: Sun 01 Jan 2023 06:04:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56532
IP address blocks: 185.103.232.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:b4:56:9c:54:8e:97:27:a9:ef:aa:fb:af:b7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d65fa33ce5b3f7bdb497e5fca509d7fc03c693
Validity
Not Before: Jan 1 06:04:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=79f3f6ce4d78be465cbe1dc70404f4c7e516b6e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f5:a4:82:e1:3e:5f:fd:87:48:f5:1b:49:51:
e4:4e:36:c0:45:61:b5:81:fd:10:4d:29:10:b8:d0:
d8:34:a1:cd:90:dd:52:1c:07:e9:57:ae:5f:3f:ee:
a0:6e:1a:ed:44:cb:47:1e:76:f1:8c:f7:dc:ec:ce:
ad:46:f9:ae:7f:bb:3f:a4:50:23:22:18:35:98:0d:
36:35:88:a7:a9:8b:f0:f4:1a:08:e3:81:7f:f2:65:
a9:15:c7:53:84:ad:97:0a:23:5a:15:38:98:27:de:
b5:87:2e:44:6f:38:23:a5:42:b4:0b:39:41:e1:3d:
dd:e0:d9:a8:ec:cf:76:27:cd:02:8a:37:9c:ae:5e:
19:02:98:34:20:b1:c2:48:e3:43:17:ff:0f:a3:d6:
0f:39:92:99:e6:ba:d1:02:13:06:8f:13:86:90:81:
bf:f6:dc:9e:c1:9e:5a:8f:74:bf:d3:c4:e2:5d:34:
19:a3:76:88:11:ab:a5:0d:8c:6b:a9:f6:8a:68:1f:
cb:0d:92:bd:a1:d3:ae:84:9b:db:12:47:f2:79:da:
4d:ee:be:01:21:6e:ed:36:ce:78:46:d0:bd:41:03:
25:ce:37:02:7a:8a:9f:99:b0:30:4e:dc:ca:a5:f7:
d2:6a:ad:58:15:8e:ff:fe:fa:66:ac:2e:85:1b:e9:
d7:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F3:F6:CE:4D:78:BE:46:5C:BE:1D:C7:04:04:F4:C7:E5:16:B6:E6
X509v3 Authority Key Identifier:
keyid:19:D6:5F:A3:3C:E5:B3:F7:BD:B4:97:E5:FC:A5:09:D7:FC:03:C6:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdZfozzls_e9tJfl_KUJ1_wDxpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/efP2zk14vkZcvh3HBAT0x-UWtuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/725c22-7eec-4033-a763-c87ce76383bc/1/GdZfozzls_e9tJfl_KUJ1_wDxpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.103.232.0/22
Signature Algorithm: sha256WithRSAEncryption
13:20:35:12:76:1f:fb:cc:ea:d1:a3:ed:fd:15:2a:af:a0:46:
df:d4:ee:a5:d8:01:bc:c7:da:b0:09:a1:8d:bf:b6:04:37:f6:
e3:e3:9b:a3:39:02:44:f4:51:63:8b:b8:95:c1:36:c9:30:60:
3e:85:37:0a:17:d6:6e:01:52:2f:79:ce:89:28:30:d1:6d:d7:
7e:67:10:65:f9:4f:fc:46:d8:18:50:e8:76:8a:1e:57:c7:9a:
a1:85:32:ee:37:e7:70:75:18:76:d5:66:9d:39:9d:90:a7:b4:
95:6d:7e:38:cc:74:0f:61:c4:e6:b0:b9:72:ef:51:f2:93:84:
0d:16:ed:6b:3e:4e:09:a3:01:de:ad:47:20:bf:a3:42:57:ff:
da:7b:27:51:07:d4:8f:5b:b6:81:44:6f:5b:eb:81:aa:fe:c2:
b7:46:60:eb:8e:e4:78:2a:5c:ef:15:85:dc:c4:77:ef:f8:d1:
5b:5a:4b:33:8e:27:81:47:e9:32:87:a9:7b:82:96:13:01:38:
c6:ad:69:1e:a6:14:5f:b0:48:37:50:c8:0e:d0:e1:e3:3a:7f:
c1:c1:d8:b1:0f:f3:d7:29:c0:c5:f4:3a:2f:0a:d1:eb:d1:86:
92:77:14:b8:e8:53:98:b5:76:57:26:e6:ce:f2:bf:87:ee:76:
8e:77:d2:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:44 2024 by rpki-client on console-ams.rpki-client.org