Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/qsjhtroqSmif70fGWSMKoX71b94.roa
File: qsjhtroqSmif70fGWSMKoX71b94.roa (raw, json)
Hash identifier: 7mF6oJgBCUT0/Rd9rW23KmjazHo6bwfbE7QtAx3lqOc=
Subject key identifier: AA:C8:E1:B6:BA:2A:4A:68:9F:EF:47:C6:59:23:0A:A1:7E:F5:6F:DE
Certificate issuer: /CN=114c56d595de33cb8751739dbdd9b45edb2eff0c
Certificate serial: 01856F30282AE63E179B9EAE0E52507425BE
Authority key identifier: 11:4C:56:D5:95:DE:33:CB:87:51:73:9D:BD:D9:B4:5E:DB:2E:FF:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/qsjhtroqSmif70fGWSMKoX71b94.roa
Signing time: Sun 01 Jan 2023 21:15:05 +0000
ROA not before: Sun 01 Jan 2023 21:15:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60274
IP address blocks: 185.233.67.0/24 maxlen: 24
2a10:df80::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:28:2a:e6:3e:17:9b:9e:ae:0e:52:50:74:25:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=114c56d595de33cb8751739dbdd9b45edb2eff0c
Validity
Not Before: Jan 1 21:15:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aac8e1b6ba2a4a689fef47c659230aa17ef56fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f9:10:07:41:89:4d:56:2a:f8:62:b7:64:8c:
1b:70:2c:62:ef:6a:2d:2d:cd:15:b9:64:1c:93:3d:
cf:a9:79:b8:40:ed:dc:fb:fe:69:45:81:22:f9:3c:
40:be:67:a6:51:f5:a0:ee:2e:32:b2:73:9b:67:85:
52:4d:21:7a:50:71:79:21:54:db:fa:f2:d2:d5:a9:
30:72:fd:f9:7e:2e:d5:01:04:0a:77:c0:5e:eb:4a:
a8:39:da:68:aa:d0:b6:09:5a:2a:41:95:7f:f5:fc:
94:a0:9c:88:03:f2:a4:52:aa:b6:cc:1e:cd:91:0e:
29:59:e4:22:f9:6a:7e:f1:34:07:30:72:74:ff:7e:
38:49:05:9b:c1:5b:22:fc:9e:4d:72:86:35:4f:37:
a9:0c:fd:20:3e:4c:e1:78:79:d0:f8:5d:96:ab:7d:
9a:93:5e:55:81:32:51:ff:3b:46:ed:70:4a:71:14:
46:54:fd:e2:ca:c7:c4:fb:6d:3f:b0:fb:e4:d6:95:
60:da:32:9d:83:d4:34:0a:43:53:21:fa:45:b5:5b:
ed:de:cf:94:bc:51:23:f4:c4:f2:b7:af:0f:87:fe:
36:62:77:d7:52:f4:d5:22:45:d5:c2:85:cb:37:5a:
fd:cd:eb:5d:24:1e:02:fd:9e:ca:33:c3:b7:7d:3b:
2f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C8:E1:B6:BA:2A:4A:68:9F:EF:47:C6:59:23:0A:A1:7E:F5:6F:DE
X509v3 Authority Key Identifier:
keyid:11:4C:56:D5:95:DE:33:CB:87:51:73:9D:BD:D9:B4:5E:DB:2E:FF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/qsjhtroqSmif70fGWSMKoX71b94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/0f082c-b18f-41c5-9fd4-3011068eeb69/1/EUxW1ZXeM8uHUXOdvdm0Xtsu_ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.67.0/24
IPv6:
2a10:df80::/29
Signature Algorithm: sha256WithRSAEncryption
06:ad:32:82:8b:a3:d9:8a:2d:fa:28:82:0f:17:a9:ac:6a:09:
77:a4:77:49:23:01:f9:54:ac:15:c7:bc:58:8a:cc:ad:15:dd:
37:75:05:ec:bb:57:89:2f:a0:18:61:86:fb:86:be:6c:d2:ce:
9d:fd:13:7b:b6:3a:5c:f0:3e:cf:f0:2f:0b:c1:d6:5c:35:13:
cd:ca:3f:56:4b:07:43:0c:03:c9:e2:8c:6f:db:6f:8a:26:d3:
73:1d:ff:63:f0:77:1e:24:16:f9:04:af:a5:c5:f5:1c:45:28:
29:7c:5f:4f:2f:43:7a:6b:ea:fa:55:fa:ff:96:32:50:db:ca:
05:77:5e:bf:3f:4e:0f:d3:d1:ef:e7:6f:e1:77:24:d9:11:62:
48:b2:5b:b7:11:38:7f:5f:00:04:dc:48:14:92:67:d8:3f:0f:
dd:4b:74:e2:62:e1:53:c4:15:5a:9e:89:15:7b:36:36:86:3b:
02:83:08:2e:eb:95:1b:68:21:34:33:64:0e:67:de:7e:c5:a0:
dc:c9:c7:f1:d2:0c:df:c3:ec:1a:77:c0:ed:b3:c6:14:b5:bb:
00:2d:17:aa:5f:28:2d:bf:c9:4b:0a:19:65:3a:0a:42:a5:96:
59:98:f5:ce:d3:d7:a3:3a:c0:5e:28:e9:d6:c8:5f:25:c9:6d:
e5:b9:24:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:06 2023 by rpki-client on console-fra.rpki-client.org