Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/CzGr0OfIsgIa2_Kahpx8ll7BVN4.roa
File: CzGr0OfIsgIa2_Kahpx8ll7BVN4.roa (raw, json)
Hash identifier: jMSJ9tifEf2EnjeCXp+lwvsVnbRZ/O035ymn0eAtwuY=
Subject key identifier: 0B:31:AB:D0:E7:C8:B2:02:1A:DB:F2:9A:86:9C:7C:96:5E:C1:54:DE
Certificate issuer: /CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Certificate serial: 01888A5B305075B2B0ABC6F250419C81C97D
Authority key identifier: EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/CzGr0OfIsgIa2_Kahpx8ll7BVN4.roa
Signing time: Mon 05 Jun 2023 07:00:11 +0000
ROA not before: Mon 05 Jun 2023 07:00:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64267
IP address blocks: 147.185.107.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:8a:5b:30:50:75:b2:b0:ab:c6:f2:50:41:9c:81:c9:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eac2c1afd4bdec980506fa07df7c8662d554fa46
Validity
Not Before: Jun 5 07:00:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b31abd0e7c8b2021adbf29a869c7c965ec154de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:cf:c6:59:5a:19:89:8c:60:0c:eb:6e:f6:c3:
4a:cd:83:c6:b7:79:36:8f:c9:70:a7:cd:05:9a:e5:
85:04:ff:40:82:7e:9d:8b:57:54:87:da:9b:52:db:
e4:5b:18:8e:18:df:92:5e:56:f1:9d:e7:00:04:fb:
29:5c:7c:ff:5e:44:b6:2b:9a:30:62:85:a1:75:5d:
d5:eb:03:82:0c:48:2b:c2:c4:0d:35:e8:a9:44:3a:
90:68:90:36:41:4a:36:09:15:03:b2:3d:17:9f:4e:
ff:35:9d:23:b6:75:37:54:62:7b:aa:a1:72:d1:75:
8b:16:c2:d5:03:62:c2:51:18:fc:b4:f9:95:30:f8:
1b:bf:91:46:1a:44:1b:a6:07:e2:cf:48:5e:0a:e1:
4e:85:1e:8d:99:17:bb:56:91:17:57:30:cf:90:84:
33:ab:57:6e:1b:6f:ca:09:32:39:12:23:0e:db:e3:
34:a3:dc:8b:a8:c8:33:c6:65:4c:4a:8d:ac:00:8d:
06:ce:59:eb:86:fd:58:14:b9:60:66:ea:56:51:92:
83:a4:4c:f5:84:64:b4:cb:59:46:36:df:07:1a:38:
80:01:0a:9a:18:24:1a:b8:b7:4d:9c:04:66:d3:05:
7e:06:38:88:ce:f8:75:b3:49:e2:7d:88:5a:50:b5:
6b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:31:AB:D0:E7:C8:B2:02:1A:DB:F2:9A:86:9C:7C:96:5E:C1:54:DE
X509v3 Authority Key Identifier:
keyid:EA:C2:C1:AF:D4:BD:EC:98:05:06:FA:07:DF:7C:86:62:D5:54:FA:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6sLBr9S97JgFBvoH33yGYtVU-kY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/CzGr0OfIsgIa2_Kahpx8ll7BVN4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/589a6b-4d7e-4012-a0fc-c0ceb037ad42/1/6sLBr9S97JgFBvoH33yGYtVU-kY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.185.107.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:28:27:02:74:aa:1f:8c:ea:8a:58:11:6c:c5:c1:6c:7f:ac:
08:4b:eb:fe:ff:97:fb:79:eb:44:fd:8c:9b:0c:da:5e:69:31:
11:6f:cb:39:30:19:a9:26:b4:70:7a:c6:25:fc:56:8a:df:03:
80:db:1b:6d:65:10:f9:ba:67:72:c8:2f:8e:66:aa:b0:e0:92:
aa:ee:cf:e8:72:72:7e:03:fb:39:6c:e2:91:b2:ec:62:27:17:
5f:75:4e:81:dc:b0:be:f4:84:e2:42:ad:d3:ac:97:7d:59:37:
e2:a0:32:dc:76:0d:52:77:ee:f9:08:83:1e:26:cd:a3:5e:f2:
1e:48:0e:f6:af:9e:3c:51:7a:b9:6a:44:7f:96:56:b9:27:69:
84:30:2d:d4:27:4a:4f:40:97:d5:8c:2c:58:76:b1:93:7e:88:
e9:46:1f:1e:dc:e5:dd:3d:3a:3f:dc:8a:58:cb:ed:15:7a:c0:
b6:31:db:63:80:55:44:db:aa:4a:80:a6:b9:31:57:66:ce:45:
ab:4e:1c:24:0d:dc:48:45:f5:85:c3:af:f5:08:b9:6e:c6:87:
5a:fe:12:74:4c:79:17:ce:05:8e:1e:69:91:d2:cf:42:11:d5:
89:f3:dd:11:18:cf:30:00:32:71:3c:05:82:e8:47:e6:66:34:
75:b4:dd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:34 2024 by rpki-client on console-fra.rpki-client.org