Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/fCdePQkuwkwonV8eSjIufRvBY4E.roa
File: fCdePQkuwkwonV8eSjIufRvBY4E.roa (raw, json)
Hash identifier: vn5whZwssz6F6MD9sLHMtL3TtIr9+9dyGLHPSk0wlZU=
Subject key identifier: 7C:27:5E:3D:09:2E:C2:4C:28:9D:5F:1E:4A:32:2E:7D:1B:C1:63:81
Certificate issuer: /CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Certificate serial: 01856FD4F1A90897032D4826AA4725D0CE10
Authority key identifier: 13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/fCdePQkuwkwonV8eSjIufRvBY4E.roa
Signing time: Mon 02 Jan 2023 00:15:04 +0000
ROA not before: Mon 02 Jan 2023 00:15:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204478
IP address blocks: 185.11.168.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:f1:a9:08:97:03:2d:48:26:aa:47:25:d0:ce:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13fc5ddf49e36d69936301ad22bf243a471b524c
Validity
Not Before: Jan 2 00:15:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c275e3d092ec24c289d5f1e4a322e7d1bc16381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f5:03:51:88:39:06:22:27:3d:5f:a4:fc:8e:
ce:c1:fb:96:55:b0:2d:de:43:42:cd:bf:a7:32:73:
de:73:e0:fe:b3:c7:aa:1a:17:14:65:11:16:c8:bd:
07:21:09:e9:7a:2d:1d:88:c6:90:75:6e:bc:05:f6:
36:fe:7b:cb:81:ee:26:15:ad:1f:43:e1:4a:19:3e:
3f:0b:2b:18:d4:ac:35:3e:30:e3:28:a0:68:27:6b:
99:1b:cc:e1:80:93:3a:b5:87:75:b3:7e:b0:8a:5a:
4b:f4:99:06:f1:08:2f:26:19:ce:ec:a9:02:44:64:
85:ab:09:bc:e1:47:66:07:65:7b:f5:cb:4a:92:e2:
1c:f5:6f:e8:2b:58:0a:32:1e:af:c5:f6:1b:01:f3:
de:d5:54:5e:44:87:69:26:d7:26:da:f7:54:c7:3f:
e6:72:a7:aa:26:d4:6b:df:6a:e9:27:99:d9:e0:de:
5e:52:dc:6f:10:fb:3e:d6:a4:cc:af:2d:16:ac:be:
d9:c4:2a:c5:46:3e:de:30:cd:f4:76:83:9c:be:5b:
52:d1:81:2a:d8:d2:a4:ec:dc:21:22:92:c4:e8:50:
2d:09:ed:5a:79:08:ae:0d:3e:a9:f5:e4:b5:e9:e8:
5b:47:4c:ed:49:24:f6:bb:bc:6c:68:ad:6e:ac:68:
44:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:27:5E:3D:09:2E:C2:4C:28:9D:5F:1E:4A:32:2E:7D:1B:C1:63:81
X509v3 Authority Key Identifier:
keyid:13:FC:5D:DF:49:E3:6D:69:93:63:01:AD:22:BF:24:3A:47:1B:52:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E_xd30njbWmTYwGtIr8kOkcbUkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/fCdePQkuwkwonV8eSjIufRvBY4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/2ef848-3611-40c0-a6bc-44a7a1588162/1/E_xd30njbWmTYwGtIr8kOkcbUkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.11.168.0/22
Signature Algorithm: sha256WithRSAEncryption
62:06:98:06:47:c3:ba:5d:6f:cf:41:a4:3b:0f:6b:0c:83:34:
d4:04:38:e5:e2:ae:74:6e:cd:a7:cd:fa:96:aa:88:4b:59:cc:
10:61:14:92:f1:d2:c2:73:b7:05:1c:29:c3:5f:53:16:2c:21:
1b:bf:98:78:27:7e:a0:fd:c4:6d:f7:a2:3c:bb:e5:ce:2a:55:
78:e7:a7:f5:13:b3:29:7a:39:21:8d:1b:08:94:75:f7:6f:89:
05:9d:43:51:d5:7d:7e:3d:70:8f:17:dc:ed:62:33:d0:09:cf:
37:33:e0:ad:d7:6a:02:35:07:b7:a9:55:f6:79:73:75:cb:52:
ae:91:b2:2d:85:50:a7:b6:cf:a4:96:89:f0:8b:41:06:54:e6:
2a:42:0b:0d:bc:de:26:c4:f7:38:3f:a8:c6:13:9f:42:c4:17:
a3:ff:50:60:e3:a6:1d:8e:f2:d4:92:cb:b8:0b:f7:b2:13:85:
6b:6c:7e:b4:70:12:36:63:95:47:60:b5:5d:81:37:f2:24:47:
9a:9c:12:4d:b1:5d:18:78:2a:1c:25:b1:64:0d:38:1c:ce:de:
41:a3:9b:5c:5f:c3:08:78:1a:a2:2a:b7:ce:bc:40:a9:d3:50:
a1:2b:e7:17:21:2f:1e:36:d2:fa:64:1f:ea:b6:ff:6d:73:2a:
eb:b5:f6:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:26 2024 by rpki-client on console-fra.rpki-client.org