Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/5w5VhYgJA2c4S94HS3komdl7GsQ.roa
File: 5w5VhYgJA2c4S94HS3komdl7GsQ.roa (raw, json)
Hash identifier: lMYK1a4KjlBN2b0CBvslOinTfsFg0XeEXSsZQGOMypM=
Subject key identifier: E7:0E:55:85:88:09:03:67:38:4B:DE:07:4B:79:28:99:D9:7B:1A:C4
Certificate issuer: /CN=770d35d7566ee7246e4d2133cbde48a774423c77
Certificate serial: 0185AFBA1DB1D9E9F37A78EDF5E0F0A39928
Authority key identifier: 77:0D:35:D7:56:6E:E7:24:6E:4D:21:33:CB:DE:48:A7:74:42:3C:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dw0111Zu5yRuTSEzy95Ip3RCPHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/5w5VhYgJA2c4S94HS3komdl7GsQ.roa
Signing time: Sat 14 Jan 2023 10:01:27 +0000
ROA not before: Sat 14 Jan 2023 10:01:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44802
IP address blocks: 185.17.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:af:ba:1d:b1:d9:e9:f3:7a:78:ed:f5:e0:f0:a3:99:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=770d35d7566ee7246e4d2133cbde48a774423c77
Validity
Not Before: Jan 14 10:01:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e70e558588090367384bde074b792899d97b1ac4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6d:21:86:02:84:75:88:8e:e8:48:16:d7:4a:
74:aa:63:43:c0:83:dd:f7:77:f7:16:f2:3f:99:2f:
dc:2c:0a:54:86:ff:83:40:a2:1b:14:ac:a6:5d:3a:
53:9c:84:b5:e0:06:2a:ff:38:42:f3:3d:7e:48:f7:
1d:ec:a7:1b:0a:d5:a5:bf:94:87:44:91:02:f9:7a:
74:da:cc:44:ec:57:f1:fd:ce:05:f2:43:25:0c:b1:
07:75:10:14:c5:30:d9:34:e6:d7:77:3f:87:5a:ba:
76:ea:1f:94:ec:a5:8e:dd:cd:21:0f:31:06:f5:b7:
84:21:06:5f:e9:c4:2b:0e:60:2b:09:23:2a:0b:e9:
dc:3f:69:9f:69:f6:74:2d:06:37:84:3f:08:3d:60:
3e:6c:c1:24:18:b3:37:f3:83:c6:39:95:d2:50:a9:
d6:c9:53:27:eb:1e:8a:26:c2:80:c3:33:0c:6c:37:
1e:2f:2e:30:35:94:f6:d8:05:5d:c3:df:8c:0a:e1:
10:0a:26:b7:b4:f9:76:12:97:ac:32:b5:cf:ee:ca:
cc:1d:68:eb:88:f1:12:d9:16:77:69:8e:36:19:6f:
c4:5c:bf:a8:00:ab:e8:2e:59:a4:a7:a1:0c:0b:9f:
00:b9:d0:15:ab:64:4d:ce:0c:ad:a0:7e:a1:33:07:
93:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:0E:55:85:88:09:03:67:38:4B:DE:07:4B:79:28:99:D9:7B:1A:C4
X509v3 Authority Key Identifier:
keyid:77:0D:35:D7:56:6E:E7:24:6E:4D:21:33:CB:DE:48:A7:74:42:3C:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dw0111Zu5yRuTSEzy95Ip3RCPHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/5w5VhYgJA2c4S94HS3komdl7GsQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/36e60b-2411-463b-8254-5475de603cd3/1/dw0111Zu5yRuTSEzy95Ip3RCPHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.8.0/24
Signature Algorithm: sha256WithRSAEncryption
39:2b:35:3c:6b:4b:91:06:72:d3:24:aa:a0:f1:52:75:0d:8c:
7f:f0:bd:7e:30:87:bb:9f:f4:59:ad:0a:32:fc:0b:01:85:cd:
cc:31:b4:e0:47:eb:35:43:4b:1e:a3:63:64:83:dc:07:bc:58:
2b:b0:99:38:0c:b4:ed:8b:e1:d4:c9:70:a2:36:07:85:20:25:
60:c8:81:6f:37:9e:69:c3:bf:30:c5:9a:c4:c5:17:69:76:45:
9b:89:a2:a0:91:11:1c:6e:03:ec:52:c7:1c:07:ae:d7:ae:e0:
bb:46:b1:80:d1:2a:6a:10:13:89:07:90:af:59:84:c8:58:07:
e6:57:79:ae:f9:55:f5:0a:97:80:cb:01:e9:59:aa:00:04:4a:
d9:67:a9:7c:58:ce:11:52:da:17:c4:b5:c8:21:c2:fa:9c:03:
1e:75:1f:20:f3:9c:ce:f5:28:b4:fc:cc:76:46:73:88:e4:c9:
75:57:31:d5:f0:9c:32:ac:49:2b:cd:d5:7b:44:33:7b:ac:a7:
f0:8b:e9:54:d6:1c:fb:ea:04:37:47:84:bc:a9:87:63:0b:6b:
56:2d:d3:d5:fd:d7:95:62:b7:ea:48:2a:9e:d6:66:09:a8:96:
a8:89:00:08:18:df:ca:11:bb:16:b5:87:20:de:be:15:b5:c9:
a4:84:09:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:23 2024 by rpki-client on console-fra.rpki-client.org