Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/pKPS7abRmN8z_--9IgbGaXC9pRk.roa
File: pKPS7abRmN8z_--9IgbGaXC9pRk.roa (raw, json)
Hash identifier: 4deVukiFcP2pTal3JhSDfTgFehsTVob8F11kusXWSKc=
Subject key identifier: A4:A3:D2:ED:A6:D1:98:DF:33:FF:EF:BD:22:06:C6:69:70:BD:A5:19
Certificate issuer: /CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Certificate serial: 01856CAEF3E60B007B7245DD1CD0722769ED
Authority key identifier: DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/pKPS7abRmN8z_--9IgbGaXC9pRk.roa
Signing time: Sun 01 Jan 2023 09:34:43 +0000
ROA not before: Sun 01 Jan 2023 09:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 185.248.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ae:f3:e6:0b:00:7b:72:45:dd:1c:d0:72:27:69:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc41411e93e25d5ec65099569b1b5c5fadc1ae3d
Validity
Not Before: Jan 1 09:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4a3d2eda6d198df33ffefbd2206c66970bda519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6a:50:38:39:c6:5d:5e:a5:81:d2:49:40:16:
e5:22:74:91:91:ec:17:16:c7:57:5f:39:0e:c9:11:
ed:89:ba:1b:e2:a1:b7:5f:70:de:32:cc:bb:4f:95:
90:de:7a:9f:e7:e4:84:05:23:da:c7:8d:14:61:de:
e2:20:e5:00:fa:61:a7:44:fc:43:de:20:c8:06:64:
a6:f8:ef:5c:f8:45:ac:fe:32:73:f1:bf:27:90:eb:
59:ed:83:28:69:aa:f5:bd:d2:f6:57:1f:13:b8:d0:
72:83:31:9d:f1:bb:40:60:3e:a3:31:26:96:16:63:
b4:cb:a0:71:f9:ad:3a:a8:00:6c:8f:42:43:e1:5c:
d1:de:53:61:b0:cc:4c:a2:c0:0a:a8:c0:3f:56:bf:
ce:d4:bc:c6:6d:30:09:94:0a:e1:4f:42:8b:8c:0a:
ae:37:48:23:e1:40:25:3b:e4:54:1d:7d:0f:8f:a8:
da:fa:68:6c:58:4b:29:e0:ea:ae:54:61:da:92:62:
90:eb:92:0e:04:4b:86:1b:6b:85:72:20:4c:dc:a3:
8e:d5:67:24:d3:bd:57:1a:c8:f8:5c:93:1a:5b:ac:
05:44:b0:2b:f0:b7:ad:15:78:e9:e5:11:77:3f:0a:
88:e0:d2:41:4a:dd:9d:d6:96:5d:8b:1d:3b:e3:34:
eb:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A3:D2:ED:A6:D1:98:DF:33:FF:EF:BD:22:06:C6:69:70:BD:A5:19
X509v3 Authority Key Identifier:
keyid:DC:41:41:1E:93:E2:5D:5E:C6:50:99:56:9B:1B:5C:5F:AD:C1:AE:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3EFBHpPiXV7GUJlWmxtcX63Brj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/pKPS7abRmN8z_--9IgbGaXC9pRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/3d4731-8cf3-4327-ae6a-51387d160ba9/1/3EFBHpPiXV7GUJlWmxtcX63Brj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.48.0/24
Signature Algorithm: sha256WithRSAEncryption
04:d4:79:ea:bb:8b:51:48:46:99:8f:d3:36:bb:48:36:c3:9f:
fb:b9:41:7e:d0:fc:5e:37:65:41:b7:0c:32:91:20:60:b8:7a:
e6:30:75:ea:71:a9:58:88:97:f7:6d:d3:80:97:9b:54:b2:d3:
cf:a7:14:64:05:45:f7:e9:05:1c:95:29:8c:32:e5:b3:42:d4:
b2:d9:70:68:80:c8:41:ab:3a:4c:b7:75:14:86:41:13:ed:1e:
03:00:bc:40:bf:09:99:2d:6b:81:e7:07:91:82:26:c3:71:af:
8e:d6:a8:65:09:80:8a:fd:96:0c:e0:a4:d6:a9:ca:03:a3:1b:
56:0c:c5:61:ec:db:ee:6e:b7:c8:60:80:8d:8a:9e:09:90:76:
b9:d7:43:a9:31:fd:52:e5:e1:8c:3e:9a:94:a6:0b:f1:03:2d:
f3:4c:e3:24:d3:db:c3:d5:e6:25:55:f0:2f:e2:26:8f:69:65:
f7:4e:e7:de:c3:a6:51:c6:5a:a1:ae:35:a6:96:95:80:e9:3e:
f8:42:65:c9:b1:0c:8a:4d:77:7f:89:37:bb:9c:3c:0c:3b:d4:
5a:6e:88:2e:b3:d1:3b:bd:c5:e1:80:2b:b3:c2:9b:a1:c9:48:
9d:30:82:86:94:90:9e:76:ab:7a:97:a3:19:9e:be:a7:c0:64:
c7:57:6a:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:15 2023 by rpki-client on console-fra.rpki-client.org