Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d525f8-d549-4909-b8c0-ff014900be8a/1/PTOUPdh4Pxj7ASdJbaxm3mINvl8.roa
File: PTOUPdh4Pxj7ASdJbaxm3mINvl8.roa (raw, json)
Hash identifier: 3xbyYgE6RoIJM6AVJVGYyPsBpnsgz3xoycqce/RyHFk=
Subject key identifier: 3D:33:94:3D:D8:78:3F:18:FB:01:27:49:6D:AC:66:DE:62:0D:BE:5F
Certificate issuer: /CN=d533b09430b048f0526ef6a937774e7f06203731
Certificate serial: 0186C7CF870674315E931AB5B555B85D2C68
Authority key identifier: D5:33:B0:94:30:B0:48:F0:52:6E:F6:A9:37:77:4E:7F:06:20:37:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1TOwlDCwSPBSbvapN3dOfwYgNzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d525f8-d549-4909-b8c0-ff014900be8a/1/PTOUPdh4Pxj7ASdJbaxm3mINvl8.roa
Signing time: Thu 09 Mar 2023 19:18:31 +0000
ROA not before: Thu 09 Mar 2023 19:18:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35112
IP address blocks: 185.135.44.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c7:cf:87:06:74:31:5e:93:1a:b5:b5:55:b8:5d:2c:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d533b09430b048f0526ef6a937774e7f06203731
Validity
Not Before: Mar 9 19:18:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d33943dd8783f18fb0127496dac66de620dbe5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:65:61:39:69:c7:a2:64:00:f5:7e:1e:89:30:
23:da:06:20:75:f2:92:46:2d:e6:04:db:c3:6a:8e:
ad:f5:e3:85:d9:01:dd:5c:78:77:ae:66:82:f6:b9:
10:44:42:12:f2:99:35:e7:b3:c5:98:18:ba:1f:a9:
6e:ab:e5:ee:5d:5a:ed:7d:2b:37:aa:8f:8f:02:17:
e4:97:8c:be:03:bc:14:91:36:03:ad:09:74:e2:5e:
29:dc:da:cc:07:ef:d2:84:6f:bb:79:aa:ee:30:cc:
84:af:35:a4:aa:68:9a:b8:51:4d:81:9b:a7:5e:58:
cf:03:a1:c0:63:cc:c0:2d:8c:1c:77:2c:3b:19:c2:
63:bd:16:89:c8:14:0b:58:07:ce:57:99:df:e4:55:
e7:db:b8:0e:27:7a:5f:d0:eb:ea:df:98:1c:78:01:
de:93:29:1f:5d:ad:f6:3a:9b:d6:53:df:cf:df:64:
dd:00:43:73:df:72:5e:70:df:74:00:3a:a2:2d:45:
20:c6:da:a5:be:15:ed:3f:9d:50:cd:4b:f1:1e:58:
22:98:0c:4e:4c:d4:43:75:69:c8:ef:72:0b:62:43:
98:20:60:ce:78:11:b9:a9:40:9c:9e:a1:33:0d:65:
fc:11:27:10:9c:7c:7c:fd:19:e1:48:25:4a:b5:9e:
a8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:33:94:3D:D8:78:3F:18:FB:01:27:49:6D:AC:66:DE:62:0D:BE:5F
X509v3 Authority Key Identifier:
keyid:D5:33:B0:94:30:B0:48:F0:52:6E:F6:A9:37:77:4E:7F:06:20:37:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1TOwlDCwSPBSbvapN3dOfwYgNzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d525f8-d549-4909-b8c0-ff014900be8a/1/PTOUPdh4Pxj7ASdJbaxm3mINvl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d525f8-d549-4909-b8c0-ff014900be8a/1/1TOwlDCwSPBSbvapN3dOfwYgNzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.135.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:f1:c6:de:72:a8:26:de:e5:a5:fa:97:3d:fc:4f:04:25:4f:
bb:f8:c0:bf:ba:1c:5d:3e:b7:4b:26:df:4b:dc:e9:5c:c3:22:
67:25:c8:bc:68:0f:e3:c2:4f:ad:79:67:c6:68:e4:a6:8d:86:
c1:35:1c:2d:41:03:94:c4:c5:90:87:98:27:b7:e3:f9:6e:72:
7d:c5:ca:08:1b:41:ed:a3:84:3e:53:75:f1:92:52:52:1f:1e:
24:58:78:67:33:ed:9f:0a:5d:6c:99:7b:b8:71:68:d7:a1:b7:
c3:8f:34:ac:98:5b:64:35:39:ff:3f:3f:a5:b5:d8:08:d2:58:
b4:bb:db:98:3c:d1:34:36:3f:57:7c:88:9c:a0:96:eb:38:60:
e4:1b:1a:27:75:1d:5a:82:84:43:ba:14:3c:ad:04:41:b9:0d:
c0:54:ed:0b:e0:cf:28:23:2b:36:41:1e:09:27:c1:c7:88:2e:
ef:04:6d:26:28:50:4e:be:f1:be:07:9e:9b:43:50:4b:06:d1:
2a:e8:3e:38:0a:3b:15:36:74:72:f4:e1:52:b4:1f:5a:92:64:
8e:f8:eb:58:d9:3e:45:ec:60:8c:9e:1d:a7:20:e8:54:7c:b6:
4e:03:23:28:22:7f:47:e7:80:8b:51:fc:2f:3b:0e:e6:b0:9b:
f7:8d:8d:d2
-----BEGIN CERTIFICATE-----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Generated at Tue Aug 22 20:56:34 2023 by rpki-client on console-ams.rpki-client.org