Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/A77WgR7pw6VHEwtrnR9ZDdagKf4.roa
File: A77WgR7pw6VHEwtrnR9ZDdagKf4.roa (raw, json)
Hash identifier: E9wnI5aQCKFCdxSn34D0XdN9qr6ZddtPfcz87N4GlnQ=
Subject key identifier: 03:BE:D6:81:1E:E9:C3:A5:47:13:0B:6B:9D:1F:59:0D:D6:A0:29:FE
Certificate issuer: /CN=e2ed643095ffa657de05ceeca5d20b265c1b7f52
Certificate serial: 018571B0E7F708F81551B4C161991477858F
Authority key identifier: E2:ED:64:30:95:FF:A6:57:DE:05:CE:EC:A5:D2:0B:26:5C:1B:7F:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4u1kMJX_plfeBc7spdILJlwbf1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/A77WgR7pw6VHEwtrnR9ZDdagKf4.roa
Signing time: Mon 02 Jan 2023 08:54:57 +0000
ROA not before: Mon 02 Jan 2023 08:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60111
IP address blocks: 185.255.156.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:e7:f7:08:f8:15:51:b4:c1:61:99:14:77:85:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2ed643095ffa657de05ceeca5d20b265c1b7f52
Validity
Not Before: Jan 2 08:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03bed6811ee9c3a547130b6b9d1f590dd6a029fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:1b:42:c8:df:68:04:c0:38:23:4a:6c:c8:86:
5f:f6:fb:9e:1c:fa:97:ca:53:8d:e3:a7:02:f6:88:
3b:c4:e8:55:6d:94:98:2e:8e:4d:da:7c:9c:79:41:
4b:80:de:3e:60:5a:2c:e0:99:f8:1a:56:aa:17:0d:
55:36:d0:5f:ff:6d:55:68:a0:5f:da:e9:81:24:fc:
99:bf:c0:79:27:97:37:f6:26:c7:c4:c7:e1:23:f9:
48:af:06:7b:36:35:03:86:92:a7:c9:83:96:9b:94:
04:dc:7a:e8:fc:40:1a:2d:49:4e:d5:92:71:28:51:
6d:95:d0:ea:e6:5f:4d:32:a6:9b:60:52:e6:e0:fe:
49:9a:d8:bc:0f:f2:00:cb:72:23:9c:cb:2c:60:0a:
92:9b:bd:f3:ba:e9:a7:36:69:7c:d9:0b:59:45:3b:
22:b0:79:85:33:bd:00:f2:55:d0:f1:1e:2d:aa:02:
59:44:e4:99:48:bb:a0:03:45:9e:ef:49:6c:fe:d9:
1d:1b:f1:02:1f:e2:70:54:03:8c:a7:0b:5d:8b:7b:
8e:07:dc:43:43:5e:1c:f2:41:e2:1c:11:5d:14:0b:
fb:65:25:ed:21:b8:a3:24:16:b8:3b:b3:f1:84:2e:
e1:03:ad:80:4b:c4:bd:4f:e0:cb:6e:09:f4:bc:06:
67:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:BE:D6:81:1E:E9:C3:A5:47:13:0B:6B:9D:1F:59:0D:D6:A0:29:FE
X509v3 Authority Key Identifier:
keyid:E2:ED:64:30:95:FF:A6:57:DE:05:CE:EC:A5:D2:0B:26:5C:1B:7F:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4u1kMJX_plfeBc7spdILJlwbf1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/A77WgR7pw6VHEwtrnR9ZDdagKf4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/eee6f4-548e-4cef-8fa4-93b020fe8ff1/1/4u1kMJX_plfeBc7spdILJlwbf1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.156.0/22
Signature Algorithm: sha256WithRSAEncryption
69:9c:5f:de:6f:ee:dd:18:72:97:fb:ad:78:48:4a:55:45:ce:
87:29:91:fb:e4:19:ea:59:20:08:6a:66:0e:2a:87:ef:3f:f8:
b0:8a:83:e5:6b:6a:92:46:67:2b:e2:48:ba:98:90:50:bb:fc:
c0:fe:04:35:8c:39:2a:ba:15:ee:d4:e5:7a:5f:0f:ec:90:b7:
6b:af:f4:38:5f:be:46:a7:87:c5:36:27:5f:ee:97:59:54:07:
98:40:24:6d:43:1a:29:eb:ea:d4:14:4e:83:86:88:09:5b:4a:
ac:09:98:c1:8d:71:eb:78:a4:97:3e:d0:e9:b3:ff:14:f7:71:
4f:61:b8:e7:70:7c:de:3b:ec:af:32:a2:06:62:56:64:52:6e:
e0:18:22:05:5a:9d:5a:97:af:32:fa:cf:2e:a8:22:34:00:e4:
10:17:5d:4c:74:70:b3:8d:29:81:6a:e1:a2:ae:16:20:21:a9:
b7:cf:c1:bf:8e:22:ec:f8:ec:03:1d:7b:21:3e:74:a1:21:6d:
c5:a8:e0:c5:5b:62:97:eb:1d:9e:74:45:50:f6:f9:0a:54:c0:
e2:46:61:ed:20:3b:ea:9f:94:84:5f:71:ef:a5:d3:b7:97:ba:
61:b0:11:fb:08:05:83:ee:21:5f:9a:1d:ce:52:51:bb:23:9e:
2c:d5:2d:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:24:26 2024 by rpki-client on console-fra.rpki-client.org