Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/CRu7mflZqpeL6Zesj-piXjfwMuU.roa
File: CRu7mflZqpeL6Zesj-piXjfwMuU.roa (raw, json)
Hash identifier: zMXFgB/pRsKkslM5G00Qbg4B9eg6NrtNWcqrF1t7kNg=
Subject key identifier: 09:1B:BB:99:F9:59:AA:97:8B:E9:97:AC:8F:EA:62:5E:37:F0:32:E5
Certificate issuer: /CN=d67618d34179c3ea52330264a1964187b23cdd24
Certificate serial: 01857283579872027EAA8C21B15072E32810
Authority key identifier: D6:76:18:D3:41:79:C3:EA:52:33:02:64:A1:96:41:87:B2:3C:DD:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1nYY00F5w-pSMwJkoZZBh7I83SQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/CRu7mflZqpeL6Zesj-piXjfwMuU.roa
Signing time: Mon 02 Jan 2023 12:44:48 +0000
ROA not before: Mon 02 Jan 2023 12:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62313
IP address blocks: 185.168.0.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:57:98:72:02:7e:aa:8c:21:b1:50:72:e3:28:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d67618d34179c3ea52330264a1964187b23cdd24
Validity
Not Before: Jan 2 12:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=091bbb99f959aa978be997ac8fea625e37f032e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:83:8d:d6:d5:c5:c9:7a:19:be:99:a9:93:29:
ce:74:cd:4c:99:a8:b6:92:32:58:e1:9c:65:ec:93:
5d:d4:46:13:f0:79:ac:f8:53:63:0d:c9:01:1b:39:
25:16:67:28:1d:88:65:98:f1:16:da:9f:0e:c6:b6:
53:7d:29:a9:ed:ae:91:0c:ee:7b:68:f1:65:4d:ee:
5a:49:58:5c:da:29:0c:c6:0a:60:df:f3:2b:04:90:
d0:54:72:71:ca:49:2d:b7:6b:3d:6a:f1:db:dd:5d:
cd:69:02:9c:41:a3:0e:36:37:0d:56:01:9e:ee:ad:
d7:93:22:96:fa:e8:20:ad:e4:4c:49:ce:c3:22:28:
81:38:d7:aa:d0:c5:ec:85:e9:41:26:35:63:45:1a:
16:fc:2f:ad:cd:97:41:87:ca:a8:b6:ff:c6:4e:e6:
5e:4e:45:45:ed:c4:10:bc:cc:a5:92:68:15:13:99:
15:82:ac:24:72:5e:da:a9:44:3f:81:8c:ef:71:51:
5a:84:d8:0e:d8:62:0a:d6:52:27:c2:96:e5:a8:e2:
6d:9f:90:9c:ca:70:72:6e:89:91:fb:e7:b8:df:2d:
55:c4:74:0f:93:1f:1c:bf:cb:a7:4b:af:c1:16:8f:
60:3a:b1:55:06:9f:c3:0a:b7:14:ab:d2:7c:6d:a1:
1c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1B:BB:99:F9:59:AA:97:8B:E9:97:AC:8F:EA:62:5E:37:F0:32:E5
X509v3 Authority Key Identifier:
keyid:D6:76:18:D3:41:79:C3:EA:52:33:02:64:A1:96:41:87:B2:3C:DD:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1nYY00F5w-pSMwJkoZZBh7I83SQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/CRu7mflZqpeL6Zesj-piXjfwMuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/47f513-76db-4a61-b1be-74dc8386dc6a/1/1nYY00F5w-pSMwJkoZZBh7I83SQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.0.0/22
Signature Algorithm: sha256WithRSAEncryption
82:3a:d8:c6:a6:6a:64:50:f7:90:fc:2b:3c:3a:6c:e9:67:8c:
0a:d3:78:62:59:4b:f5:a9:a4:c8:68:fc:28:28:d8:a1:91:0b:
cd:d6:dc:e6:68:ab:d0:a2:2c:35:95:7d:57:60:5e:83:3e:dc:
e4:74:ba:95:9d:30:37:8e:77:ea:5d:5b:73:a9:6c:77:83:c9:
b0:ee:ef:5f:4e:ee:2c:35:c7:df:4d:cf:b5:ae:d0:0f:b5:ae:
4d:14:71:a8:e6:6d:6c:d1:1f:d7:49:5a:32:b5:9e:e4:e7:68:
51:35:b3:83:a3:9d:91:a5:c1:30:8b:84:73:37:53:f5:40:41:
f2:45:7a:53:a1:fb:14:1b:15:37:53:fe:be:c4:53:32:fd:9b:
ee:0e:ec:2f:41:24:30:5e:31:4c:68:6a:94:63:cc:fb:f8:bb:
72:16:2d:4c:d3:a0:d7:e9:44:a4:86:ac:03:a1:94:81:f8:ff:
bd:9b:b3:dd:49:6c:18:a2:24:41:60:b7:03:43:9b:d9:e1:d4:
76:6a:d9:bd:f8:98:cc:93:3d:a8:31:bd:a3:74:04:3f:e3:38:
0c:51:e6:f7:41:91:48:61:5a:81:3e:44:26:72:c5:0e:43:9e:
8a:82:e1:8f:da:8f:41:bb:8b:a5:df:15:2c:cf:e7:c9:c6:06:
53:8c:73:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:35 2024 by rpki-client on console-ams.rpki-client.org