Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/sG4C4jUFDqFxToj-PkWbnPZlYK0.roa
File: sG4C4jUFDqFxToj-PkWbnPZlYK0.roa (raw, json)
Hash identifier: 7coRv0hGjofDjcqCXi3uzaKz7MAZ8VwRP0GWYAPrPzk=
Subject key identifier: B0:6E:02:E2:35:05:0E:A1:71:4E:88:FE:3E:45:9B:9C:F6:65:60:AD
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 018573B19672EC97A6A681B3A643F02C342E
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/sG4C4jUFDqFxToj-PkWbnPZlYK0.roa
Signing time: Mon 02 Jan 2023 18:14:56 +0000
ROA not before: Mon 02 Jan 2023 18:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204333
IP address blocks: 185.255.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:96:72:ec:97:a6:a6:81:b3:a6:43:f0:2c:34:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Jan 2 18:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b06e02e235050ea1714e88fe3e459b9cf66560ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dc:fa:74:da:89:e8:47:a1:05:c0:80:ed:03:
2d:53:b0:02:61:23:72:eb:20:df:24:ad:dc:c6:9a:
0e:16:32:6f:dc:91:35:7b:02:a0:b5:30:45:cd:2a:
cd:3b:eb:a3:11:e9:1e:87:ba:02:6e:3e:f0:ae:d9:
b3:a9:37:07:64:9e:34:52:6b:21:0e:dc:2f:43:c4:
32:90:a4:b3:3e:a7:51:9b:30:e6:48:af:07:1c:2b:
48:cd:77:f1:34:a0:dc:ab:a9:f2:ed:6d:47:18:16:
5b:c1:ce:f8:6c:4d:31:d6:13:5a:84:6d:41:df:fc:
c9:15:c7:aa:f7:08:27:dd:88:1a:14:75:37:70:c1:
cc:25:74:06:14:f3:aa:8e:ed:06:8a:e7:50:89:e5:
7a:31:1a:7d:f3:10:9b:0f:bc:17:76:0b:2c:8d:c8:
96:74:b1:44:0c:20:2b:9b:67:66:15:ef:68:71:b7:
f3:e5:ff:05:99:bc:3f:56:e7:e6:da:49:33:73:66:
02:e7:14:f8:ed:23:2b:93:b4:85:10:19:a1:2a:4e:
41:66:eb:ab:5e:42:5d:76:1f:8d:e5:33:b9:7a:e7:
e0:c2:d8:09:9b:bf:b0:03:2a:2d:9a:2c:6b:5f:3d:
46:65:52:4b:f7:78:18:eb:ef:cb:bf:49:d9:f1:d0:
7a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:6E:02:E2:35:05:0E:A1:71:4E:88:FE:3E:45:9B:9C:F6:65:60:AD
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/sG4C4jUFDqFxToj-PkWbnPZlYK0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.121.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:ed:38:b8:6d:40:fe:22:db:ae:81:4a:67:57:16:eb:48:ec:
0f:4b:4b:fb:45:bf:5d:3d:b9:00:36:b3:88:9c:4a:08:89:f4:
c7:40:72:a7:12:b6:15:e0:d3:dc:c2:90:20:d4:dd:cc:9f:05:
f8:c1:67:f4:0e:36:a2:7e:98:a0:6f:30:99:d0:c5:86:fa:6e:
d8:dc:75:11:bb:fc:95:4f:00:63:17:54:af:91:12:0d:9b:a2:
83:a6:78:14:90:13:4b:07:6d:e0:49:38:d0:32:72:6c:39:52:
ff:57:98:7f:67:1f:01:c6:3a:90:21:8f:17:8b:d9:ff:46:9a:
cd:a7:36:6e:30:c9:8b:49:d5:df:59:2b:ed:c9:cf:40:38:86:
90:bb:84:e0:28:f7:e9:c0:db:30:5f:5d:56:1d:77:32:15:46:
98:72:e7:ba:61:ce:3a:b4:ca:19:3a:79:e0:12:21:96:8d:e6:
90:9c:f1:46:18:0b:4d:aa:93:1a:cb:d3:b2:ba:5a:85:f2:c1:
c9:e9:4f:2c:65:0c:68:4e:1a:ff:0d:b5:3f:bf:0f:b9:2d:77:
97:1c:ad:a8:93:ac:ba:a8:86:08:b9:75:5b:9a:dc:07:49:e5:
b1:21:75:bc:87:9e:c3:39:84:80:69:63:50:96:e8:22:4e:33:
19:54:69:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:42 2024 by rpki-client on console-ams.rpki-client.org