Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/cL7pFYZA0SmBNJ_0O0nf7BESwAg.roa
File: cL7pFYZA0SmBNJ_0O0nf7BESwAg.roa (raw, json)
Hash identifier: 53iTOpDnVwNrlu94u+N4adAqLvl0SV2u4sJXBWQEtAA=
Subject key identifier: 70:BE:E9:15:86:40:D1:29:81:34:9F:F4:3B:49:DF:EC:11:12:C0:08
Certificate issuer: /CN=31db847d1db1e0b2c2c25502210ff5a719967a19
Certificate serial: 01876FCAB6780A2D8E16B708C18F58609BCC
Authority key identifier: 31:DB:84:7D:1D:B1:E0:B2:C2:C2:55:02:21:0F:F5:A7:19:96:7A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MduEfR2x4LLCwlUCIQ_1pxmWehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/cL7pFYZA0SmBNJ_0O0nf7BESwAg.roa
Signing time: Tue 11 Apr 2023 10:09:28 +0000
ROA not before: Tue 11 Apr 2023 10:09:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44547
IP address blocks: 185.238.212.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:6f:ca:b6:78:0a:2d:8e:16:b7:08:c1:8f:58:60:9b:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31db847d1db1e0b2c2c25502210ff5a719967a19
Validity
Not Before: Apr 11 10:09:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70bee9158640d12981349ff43b49dfec1112c008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:a3:15:1a:12:be:51:ff:9c:1e:5a:89:49:40:
63:a7:e3:2b:d3:7e:59:98:3a:98:04:c2:5b:34:42:
a9:b6:b5:64:7f:ed:46:aa:ca:b4:16:fd:a5:0f:33:
ce:82:fe:7c:54:44:c1:5d:99:f1:ee:11:c1:e2:51:
70:91:b1:df:17:a3:69:77:cc:f7:6b:16:85:3c:3d:
67:c1:80:1c:da:eb:ef:11:0c:ce:3b:c5:03:06:17:
f4:46:23:80:47:40:0e:c4:13:94:b0:b4:6f:b3:ec:
06:6b:0a:63:d0:07:6f:62:26:98:9e:ff:5d:b2:33:
5c:c2:97:fa:08:97:27:fe:2f:8a:f3:b0:4e:55:05:
b3:a6:a6:15:e4:7a:94:e5:6a:11:99:58:61:34:5a:
6f:35:a9:3b:7a:20:71:31:45:db:09:f0:96:ee:00:
f9:70:44:32:36:ac:eb:3c:5d:01:25:77:03:12:78:
06:66:2f:70:a9:bb:12:77:ab:a0:d6:8e:0d:96:e1:
11:de:0d:07:9c:7d:f7:db:1f:ff:e4:a5:0b:5d:f2:
19:30:f8:5a:02:1f:da:b6:40:6f:4d:fa:7b:0e:1d:
cf:46:4a:8f:39:07:73:0e:f8:06:bf:99:47:53:75:
bc:6a:d8:46:fd:3f:cd:b0:0b:5d:fd:08:d4:35:be:
3d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BE:E9:15:86:40:D1:29:81:34:9F:F4:3B:49:DF:EC:11:12:C0:08
X509v3 Authority Key Identifier:
keyid:31:DB:84:7D:1D:B1:E0:B2:C2:C2:55:02:21:0F:F5:A7:19:96:7A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MduEfR2x4LLCwlUCIQ_1pxmWehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/cL7pFYZA0SmBNJ_0O0nf7BESwAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/3dbd39-5f9f-48fb-9c01-bd6e3b026c37/1/MduEfR2x4LLCwlUCIQ_1pxmWehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.212.0/23
Signature Algorithm: sha256WithRSAEncryption
55:de:01:f6:11:cc:55:02:73:09:ff:6a:01:02:ef:8e:d9:85:
6f:1f:27:6a:be:2f:0e:66:30:94:4b:5b:7d:ee:a8:aa:07:c0:
db:1f:85:94:68:97:f0:b4:6a:1a:86:1d:8e:8d:ab:b2:03:83:
b7:11:38:0c:72:7d:81:a5:fc:0c:e6:93:41:59:10:15:b6:ad:
d2:8a:9d:62:95:16:63:41:3e:f4:fb:40:03:cb:d7:2b:f8:3e:
23:ca:cb:0d:25:10:31:26:77:6b:06:d0:ca:55:0d:1e:10:63:
9b:1e:c9:b6:db:90:58:f0:fa:55:39:d4:f4:de:ae:25:2d:30:
40:93:2a:d4:9b:41:6b:73:71:b0:0f:88:24:9f:33:10:8e:82:
da:b2:50:f6:e3:97:4f:9f:77:00:7e:48:3e:49:1e:d4:33:e6:
36:25:94:65:58:2c:a3:13:18:2d:5f:4b:97:00:40:f1:d7:7c:
75:02:a0:8c:4c:44:37:57:9c:c6:69:5e:9f:9c:14:aa:0c:12:
2c:1b:d5:25:96:1e:e2:2d:48:fe:24:bc:87:dd:94:4f:f9:e0:
2f:a7:70:06:f6:8a:56:c2:e9:4c:08:8b:90:86:9e:f9:fe:ab:
67:4a:2d:12:49:60:b3:6d:d4:4e:a7:de:89:3d:ba:08:cb:7b:
60:16:69:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:55 2023 by rpki-client on console-ams.rpki-client.org