Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/e52e14-7aad-43e4-88c4-7a4054551fd4/1/1TGoAfXZb8cyHF0cWeVy7BpX5Mc.roa
File: 1TGoAfXZb8cyHF0cWeVy7BpX5Mc.roa (raw, json)
Hash identifier: DjNFiLAqAFmXbz0vKPpNjy3LlsyHGN161PczpyVUDd4=
Subject key identifier: D5:31:A8:01:F5:D9:6F:C7:32:1C:5D:1C:59:E5:72:EC:1A:57:E4:C7
Certificate issuer: /CN=cbffc771f2ed58fc2821ee74cda853fd2e36c428
Certificate serial: 01860805A15E4F9B0CAA36A15EA1E92688FF
Authority key identifier: CB:FF:C7:71:F2:ED:58:FC:28:21:EE:74:CD:A8:53:FD:2E:36:C4:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y__HcfLtWPwoIe50zahT_S42xCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/e52e14-7aad-43e4-88c4-7a4054551fd4/1/1TGoAfXZb8cyHF0cWeVy7BpX5Mc.roa
Signing time: Tue 31 Jan 2023 13:30:32 +0000
ROA not before: Tue 31 Jan 2023 13:30:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198949
IP address blocks: 185.49.16.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:08:05:a1:5e:4f:9b:0c:aa:36:a1:5e:a1:e9:26:88:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbffc771f2ed58fc2821ee74cda853fd2e36c428
Validity
Not Before: Jan 31 13:30:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d531a801f5d96fc7321c5d1c59e572ec1a57e4c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:86:77:6e:22:a3:36:b6:c7:cc:9f:c2:d3:
7d:7b:d5:34:6f:cb:31:31:5f:5f:f5:54:1f:ff:22:
d7:cc:b6:89:f2:13:22:40:24:c2:b8:c5:cc:c3:7d:
93:b1:ff:a3:b4:fc:52:6f:72:c0:0b:50:85:aa:db:
b9:9c:51:f1:73:ec:6b:b0:b2:74:75:81:b2:e0:6e:
13:7d:f8:5e:87:d2:33:04:f7:ef:1b:34:c6:ad:3f:
b7:1e:90:66:19:9d:3f:e6:69:58:c7:31:31:72:e3:
86:a2:00:ec:9d:87:28:45:f4:5b:9d:9c:32:39:87:
15:8f:41:d2:c3:6a:66:59:33:b1:40:a4:78:a2:e8:
22:75:01:5c:c8:d2:ef:f8:74:05:30:ec:59:ba:12:
2e:7c:39:20:11:11:7f:fe:5f:f5:b6:45:6f:89:dd:
b7:be:d5:8a:9f:38:17:b0:91:75:d4:cc:56:6d:76:
fa:23:27:e7:9b:c4:62:10:3b:04:56:d6:83:ae:9e:
3c:0c:7e:78:10:7f:82:7f:a3:d8:ae:b6:b4:a1:2d:
c0:d2:41:b6:db:79:d3:ab:86:59:0d:0a:c2:ab:45:
cb:35:b5:fb:58:2e:f7:23:d6:53:f6:5b:6a:3a:69:
82:9b:c1:48:b0:3e:26:57:67:a2:39:f3:7e:8f:cc:
18:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:31:A8:01:F5:D9:6F:C7:32:1C:5D:1C:59:E5:72:EC:1A:57:E4:C7
X509v3 Authority Key Identifier:
keyid:CB:FF:C7:71:F2:ED:58:FC:28:21:EE:74:CD:A8:53:FD:2E:36:C4:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y__HcfLtWPwoIe50zahT_S42xCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/e52e14-7aad-43e4-88c4-7a4054551fd4/1/1TGoAfXZb8cyHF0cWeVy7BpX5Mc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/e52e14-7aad-43e4-88c4-7a4054551fd4/1/y__HcfLtWPwoIe50zahT_S42xCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.49.16.0/22
Signature Algorithm: sha256WithRSAEncryption
12:72:23:8a:f7:9f:2a:65:da:1e:8c:86:ba:a8:fe:87:5d:da:
d0:12:0c:cb:10:73:bf:45:d2:33:6a:d2:12:0b:c4:8e:72:ae:
8f:f6:78:6f:bc:ac:26:58:ee:c9:26:55:e3:f9:fa:f8:f9:08:
30:44:d3:7f:d5:c4:04:be:80:53:96:8e:d3:fb:8c:08:1b:40:
3e:ef:a3:43:c4:63:4b:09:9d:b0:d8:e7:ad:b9:d2:02:32:96:
12:32:7d:a4:e2:31:34:b9:82:a9:bb:38:52:59:83:6b:69:b3:
7c:12:0c:5b:18:2d:f9:8d:ba:67:04:27:05:3a:0e:ac:e3:8d:
95:ec:5a:b0:62:29:d2:a4:cd:fd:da:52:77:1c:79:65:f6:db:
5e:a1:b4:1f:f6:ac:7c:f3:a9:14:9a:7e:06:97:89:e0:f2:65:
01:dd:a0:26:37:14:7f:6f:34:e0:19:99:2d:4f:74:4a:c4:97:
c7:6c:b8:8b:08:6d:a6:38:0c:16:62:da:e5:0b:47:6b:b9:a6:
bf:22:50:55:33:00:2e:02:38:78:aa:53:79:57:45:3e:9a:b2:
7b:0c:88:37:6e:54:d3:35:ad:1a:08:8f:ca:b5:a4:8e:aa:47:
86:b3:2b:90:27:1f:75:ce:57:38:85:07:a8:6b:a9:df:0a:ab:
34:60:b7:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:09 2024 by rpki-client on console-ams.rpki-client.org