Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/CSfwT4sCWNgLGYrnpU2FPEACTv8.roa
File: CSfwT4sCWNgLGYrnpU2FPEACTv8.roa (raw, json)
Hash identifier: WKxjd6YSVnOAhIZcKN0psnwQU7tCav8+A4/kuDa/rS8=
Subject key identifier: 09:27:F0:4F:8B:02:58:D8:0B:19:8A:E7:A5:4D:85:3C:40:02:4E:FF
Certificate issuer: /CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Certificate serial: 0185711E43B2DD48295C9036BC903A7A2F0D
Authority key identifier: 30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/CSfwT4sCWNgLGYrnpU2FPEACTv8.roa
Signing time: Mon 02 Jan 2023 06:14:46 +0000
ROA not before: Mon 02 Jan 2023 06:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31221
IP address blocks: 185.145.77.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:43:b2:dd:48:29:5c:90:36:bc:90:3a:7a:2f:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30f1ba6111c8f1d3f37c1b7c1a5ed737402192f2
Validity
Not Before: Jan 2 06:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0927f04f8b0258d80b198ae7a54d853c40024eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d2:fe:99:46:d9:0e:a0:7f:8e:9a:ed:3e:8b:
1f:2f:ca:a9:ce:93:8b:5c:4a:51:fc:b8:b6:9c:83:
a8:5a:88:db:e9:bd:a8:65:0e:75:1a:ea:6e:3c:11:
40:1a:18:a0:a7:4f:95:35:84:a6:88:a8:6f:ec:7d:
db:7c:4e:be:24:3c:b1:00:a9:aa:7b:de:24:b2:74:
40:56:f0:3a:da:a2:bd:10:7e:f0:9b:f0:b7:82:64:
33:28:b0:c2:22:27:55:0d:25:91:45:1e:e4:f7:c4:
cb:86:21:ac:25:8f:14:f5:98:29:a5:60:e8:3e:10:
81:95:92:75:a6:22:97:fa:29:93:e2:f5:b4:9e:72:
21:64:09:e4:83:ae:94:60:0c:01:4b:f9:f9:7a:e7:
78:3c:71:63:d6:0c:b3:1f:80:19:4f:c6:95:5e:34:
24:56:e3:61:81:0a:b1:ba:09:b2:07:33:13:b8:0e:
92:65:05:a3:4c:46:8a:ae:6f:cd:bc:5f:fe:b2:fb:
75:74:93:77:78:07:66:e4:96:ed:33:df:e1:e9:02:
1d:a7:55:1e:26:a8:84:54:56:c9:e7:ec:d8:f5:03:
51:d3:51:30:a6:3f:e1:a2:00:f7:5a:ea:d6:64:66:
4c:f6:17:89:ae:3e:c4:70:46:b1:25:fb:2b:46:37:
2e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:27:F0:4F:8B:02:58:D8:0B:19:8A:E7:A5:4D:85:3C:40:02:4E:FF
X509v3 Authority Key Identifier:
keyid:30:F1:BA:61:11:C8:F1:D3:F3:7C:1B:7C:1A:5E:D7:37:40:21:92:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/CSfwT4sCWNgLGYrnpU2FPEACTv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8d7c57-ba65-47fc-bcc4-c33018633d33/1/MPG6YRHI8dPzfBt8Gl7XN0AhkvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.77.0/24
Signature Algorithm: sha256WithRSAEncryption
91:43:01:fa:6b:2c:b1:8e:e0:de:09:b2:2f:bb:b5:87:f7:f2:
3a:ec:a2:b9:c0:88:df:54:e5:62:61:2f:b6:3e:f8:20:25:7a:
a8:9f:71:5f:a5:60:3e:fd:fb:7a:69:95:79:f8:8d:71:15:07:
54:19:28:10:da:cc:a4:00:a9:e3:cf:01:2a:36:e5:7a:0f:d2:
ce:5f:44:09:fc:cb:29:5d:75:46:da:de:2c:ef:b8:6b:0f:b7:
f2:35:85:ff:25:71:61:80:29:75:20:86:2a:c6:a7:77:33:e0:
ee:e0:67:05:c3:60:d0:76:5b:e4:ce:7c:2c:14:5b:5e:34:cb:
07:98:cb:30:02:5e:d0:b8:ba:20:a9:8c:02:d3:fb:06:23:20:
9d:8b:4c:cb:80:ec:8c:a7:89:71:f2:6e:83:76:8a:90:a7:34:
8c:e7:d9:ff:63:42:43:23:64:77:e7:58:3d:11:31:ae:f2:cd:
f8:0c:65:0b:5e:96:73:6c:4c:fd:39:9e:7d:09:c7:02:f5:4d:
a7:d1:d6:f4:00:1d:70:5e:d4:b4:f9:6c:32:c9:2a:c3:fe:64:
d5:33:b7:e1:28:a5:8f:ce:58:a0:5a:fa:e6:b6:5c:e6:c4:55:
f2:59:07:19:dc:4a:3a:e6:47:8c:c2:08:ca:db:21:19:f7:68:
d4:04:1e:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:31 2024 by rpki-client on console-ams.rpki-client.org