Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/xi2GN46l9UA7FF3qMxzdI9Cws00.roa
File: xi2GN46l9UA7FF3qMxzdI9Cws00.roa (raw, json)
Hash identifier: yxyXit+jhkx+lv6gyp8jSl69VzAt/+Af7cf+FkjX4HA=
Subject key identifier: C6:2D:86:37:8E:A5:F5:40:3B:14:5D:EA:33:1C:DD:23:D0:B0:B3:4D
Certificate issuer: /CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Certificate serial: 0185715E47C2A1A2735069643D46B2A43BA2
Authority key identifier: 1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/xi2GN46l9UA7FF3qMxzdI9Cws00.roa
Signing time: Mon 02 Jan 2023 07:24:42 +0000
ROA not before: Mon 02 Jan 2023 07:24:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17782
IP address blocks: 185.192.56.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:47:c2:a1:a2:73:50:69:64:3d:46:b2:a4:3b:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4dd11554247bd2bd301cea43ff5180372c38e4
Validity
Not Before: Jan 2 07:24:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c62d86378ea5f5403b145dea331cdd23d0b0b34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8f:ca:39:5e:d9:0c:51:92:ac:3c:20:0c:d7:
a6:f0:de:22:d2:5f:0a:1b:e5:3b:0d:81:d7:ce:57:
b6:c2:0e:cc:75:4e:2c:0f:0a:5e:bc:c6:39:3c:ad:
92:6d:73:af:ff:6b:84:1a:10:aa:ee:d4:d6:d6:1c:
a9:15:35:e1:22:f2:31:f4:ae:87:92:4a:c8:58:12:
14:cf:95:bd:f1:c9:92:ec:bb:72:c3:2d:24:f8:3a:
99:36:6c:43:f8:17:60:1f:0f:09:9d:47:7a:46:d9:
7d:37:24:73:a0:0c:75:83:a4:19:ea:dc:fd:7e:5a:
b7:05:fe:f6:80:6a:ec:fb:ea:a3:f2:93:5f:62:18:
09:67:e3:47:7b:fd:63:9b:2e:c9:9d:69:8d:a3:cf:
bb:36:c8:6f:4d:24:4e:1c:1c:e3:c3:59:2b:b2:b0:
b5:5f:1c:e0:3d:d4:7d:b2:4c:5d:5d:75:ed:6e:4d:
3d:78:31:5d:5f:f2:61:b8:4a:43:69:3a:2a:5a:30:
a8:7e:5d:93:6d:f4:31:50:a5:40:34:0e:e3:38:e4:
93:ed:3d:eb:d8:71:5a:e1:20:3b:09:cc:dd:46:98:
87:09:48:8c:d1:64:26:ba:a2:66:f0:68:5b:4a:03:
6b:6b:69:66:77:3e:1b:85:ab:14:94:26:ff:31:d1:
d4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:2D:86:37:8E:A5:F5:40:3B:14:5D:EA:33:1C:DD:23:D0:B0:B3:4D
X509v3 Authority Key Identifier:
keyid:1A:4D:D1:15:54:24:7B:D2:BD:30:1C:EA:43:FF:51:80:37:2C:38:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/xi2GN46l9UA7FF3qMxzdI9Cws00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/7bddda-0c6c-4a5e-b1c5-3ba5f30caabf/1/Gk3RFVQke9K9MBzqQ_9RgDcsOOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.192.56.0/22
Signature Algorithm: sha256WithRSAEncryption
88:42:5c:55:c5:5a:6e:df:4a:c9:ce:c9:4c:ff:3a:57:be:7d:
1e:fa:79:48:41:00:b7:d6:f2:16:fe:3e:46:8b:9a:b8:ca:e7:
d2:5c:8b:be:ef:dc:a7:5b:87:52:34:45:1a:f9:50:a9:b5:fe:
c8:3a:5a:58:cf:4e:b8:eb:5b:5b:77:ed:0b:ae:56:90:0e:77:
fc:c9:65:2b:8a:1b:01:15:d5:3e:00:70:1c:28:92:54:c0:81:
f7:a8:1b:f1:9f:d2:72:db:6e:64:8f:28:ca:13:6f:d9:57:15:
fd:25:1f:90:9e:f5:b1:36:1d:c1:79:dc:78:72:fd:b4:44:f8:
53:fa:e8:15:b8:94:e9:e6:6a:2d:43:ac:04:1a:c6:9c:69:c3:
4b:6b:1d:a5:fd:91:0e:bf:41:c3:17:0d:3c:30:97:fc:a7:3f:
05:54:6b:75:67:dd:43:bb:dc:e9:82:8d:1b:8f:3b:26:cb:0a:
49:49:ec:41:2c:ac:82:d3:4c:a7:ba:32:5d:e5:c9:e3:31:97:
0e:56:73:cd:fa:17:0b:49:21:35:bf:f0:16:bf:59:2c:71:a6:
64:b5:ee:63:d3:c0:31:f5:41:db:2b:e7:24:12:e9:54:7b:5d:
7f:df:e2:c7:6a:7b:08:cb:6c:5c:df:89:0e:17:74:e2:5e:4a:
cd:3d:3d:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:16:14 2024 by rpki-client on console-ams.rpki-client.org