Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/V_-MJWKK3BFuw1yzToefxKG71YM.roa
File: V_-MJWKK3BFuw1yzToefxKG71YM.roa (raw, json)
Hash identifier: DudcmvnfneCHJ7fdrn+gCPEscBMbwFfpRNcTVpRBYmE=
Subject key identifier: 57:FF:8C:25:62:8A:DC:11:6E:C3:5C:B3:4E:87:9F:C4:A1:BB:D5:83
Certificate issuer: /CN=ed800950a31dcdacaac56adb936a42beb845e24b
Certificate serial: 01856F0B5887C9D5C9388D4557511DDDB720
Authority key identifier: ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/V_-MJWKK3BFuw1yzToefxKG71YM.roa
Signing time: Sun 01 Jan 2023 20:34:52 +0000
ROA not before: Sun 01 Jan 2023 20:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 185.221.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:58:87:c9:d5:c9:38:8d:45:57:51:1d:dd:b7:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed800950a31dcdacaac56adb936a42beb845e24b
Validity
Not Before: Jan 1 20:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57ff8c25628adc116ec35cb34e879fc4a1bbd583
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:53:29:28:28:13:22:31:20:8d:2c:ae:89:5b:
88:a6:5e:4d:d3:d6:d6:b8:59:6e:15:a5:07:88:a7:
1b:b5:51:4b:89:84:6d:d9:9a:68:c6:d6:f8:fc:32:
ca:9f:05:9f:9e:b6:89:d6:84:c8:39:10:83:b4:fe:
52:44:ee:fe:34:a3:b4:16:de:9f:c3:c3:85:b5:87:
64:70:e6:69:1c:78:7d:33:fa:7b:68:70:4c:91:6b:
fb:5b:8f:91:86:60:7e:d6:b9:c1:c9:7e:64:0f:2b:
ae:a1:55:c4:27:2e:4e:ca:dc:4b:f0:de:c8:a9:f3:
be:a3:a9:6e:e0:ea:64:b1:89:25:bc:d7:76:78:bf:
1b:bf:28:4c:85:df:b4:68:0c:9c:43:63:e2:40:03:
70:a3:74:6b:3d:03:a6:7a:08:27:98:7d:7d:48:f0:
be:b5:ff:21:6d:57:db:fa:2f:f1:54:3f:aa:ad:45:
e7:de:fa:d0:74:ae:ba:a6:60:46:bf:46:1f:64:76:
29:34:8c:dc:61:1e:6e:c0:74:e5:b9:e8:e1:d7:36:
91:a6:38:11:22:61:3e:6d:c2:aa:31:c5:66:67:be:
75:3e:72:89:1f:ed:cd:cc:8e:98:eb:a3:65:7a:b5:
82:62:dc:c7:3f:40:7a:77:fe:dd:c6:73:a1:e9:6f:
35:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:FF:8C:25:62:8A:DC:11:6E:C3:5C:B3:4E:87:9F:C4:A1:BB:D5:83
X509v3 Authority Key Identifier:
keyid:ED:80:09:50:A3:1D:CD:AC:AA:C5:6A:DB:93:6A:42:BE:B8:45:E2:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7YAJUKMdzayqxWrbk2pCvrhF4ks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/V_-MJWKK3BFuw1yzToefxKG71YM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/8a6f72-c822-451f-a5c5-a7fd6c8e70fd/1/7YAJUKMdzayqxWrbk2pCvrhF4ks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.221.219.0/24
Signature Algorithm: sha256WithRSAEncryption
62:6a:be:ef:84:78:f8:d6:3c:fd:bc:ed:51:98:11:ab:25:47:
c5:1d:5c:48:a4:b4:7a:11:bd:26:21:37:2b:5d:7f:4d:72:34:
d2:1a:64:f9:8f:20:57:82:bc:4a:40:86:e6:ef:2c:9c:0b:8c:
dd:6a:f7:c4:bd:eb:fc:bb:1f:0c:a6:4f:f9:00:8d:4f:ed:97:
51:f7:aa:df:94:30:2c:4a:ac:0c:a2:13:08:cd:3b:5d:82:8e:
84:14:9b:08:86:eb:a0:84:a1:78:e2:a7:95:ea:70:40:54:74:
3d:e5:ec:a3:af:8e:38:fe:e5:45:02:65:29:82:4e:52:17:4c:
f7:36:3c:cc:77:7e:11:e0:b9:7f:e9:a8:e4:cc:28:7f:bf:de:
34:77:37:67:9f:b5:a6:c2:29:65:e3:2f:39:1a:69:d9:e0:a8:
aa:57:79:cc:31:76:7b:43:da:0b:3f:3b:4a:b0:04:00:e4:1b:
12:d6:62:4d:0c:94:f7:11:37:43:cb:31:32:45:c6:e3:13:29:
2b:b5:9a:8f:17:17:c3:05:ea:53:e3:b1:44:2d:5c:d6:3d:3d:
b1:c1:48:98:f7:1b:36:ba:81:0d:2a:ef:64:eb:4e:7f:1e:e6:
18:ff:7d:d0:23:81:27:41:be:e4:f2:cb:39:c0:3a:19:dd:3e:
3b:a5:35:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:49 2024 by rpki-client on console-ams.rpki-client.org