Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/ct2RmTla6gCUWFlgWIiE-ck3GlU.roa
File: ct2RmTla6gCUWFlgWIiE-ck3GlU.roa (raw, json)
Hash identifier: 0u55bzmKBv0CfC9ZtMdzzqLFUkZnTDFYgBve0NkgcHE=
Subject key identifier: 72:DD:91:99:39:5A:EA:00:94:58:59:60:58:88:84:F9:C9:37:1A:55
Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Certificate serial: 0186DA4273E2596C9FC79B3DE818142DA2F0
Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/ct2RmTla6gCUWFlgWIiE-ck3GlU.roa
Signing time: Mon 13 Mar 2023 09:17:13 +0000
ROA not before: Mon 13 Mar 2023 09:17:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 193.28.228.0/24 maxlen: 24
185.217.192.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:42:73:e2:59:6c:9f:c7:9b:3d:e8:18:14:2d:a2:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Validity
Not Before: Mar 13 09:17:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72dd9199395aea0094585960588884f9c9371a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b7:91:48:19:01:07:f0:3f:4e:44:61:58:27:
00:25:47:47:fd:14:33:13:81:79:af:70:c4:ca:21:
2c:df:b1:2e:78:9a:a5:06:08:9a:9b:56:60:5e:7e:
f6:de:e1:95:fb:46:39:5a:b6:ec:fd:7c:88:06:f0:
ca:0a:8d:0d:3f:a9:12:fa:70:45:d2:32:dd:16:3b:
df:28:05:83:19:11:3a:6c:3a:02:d3:c2:aa:d1:ce:
92:16:66:59:56:59:be:e0:56:29:eb:fd:ea:01:c6:
9e:92:80:53:21:ca:9e:79:ea:0c:f2:06:e1:b9:55:
d3:40:d7:c6:fd:df:25:28:51:5d:2c:45:40:db:9b:
57:1a:a2:fb:0b:a6:99:13:79:db:55:a5:d2:40:7a:
cd:fc:dc:f7:eb:a9:3a:35:39:4a:e2:3a:f1:04:45:
5f:3e:15:9c:79:15:20:1d:c9:cb:27:87:d2:d7:51:
83:14:0b:71:9b:a4:2c:ac:3e:b7:2a:0d:96:2f:3d:
7b:59:c1:39:19:3e:85:4e:b5:b2:ff:d4:c6:96:95:
c9:e8:4c:9d:0d:89:34:7e:a0:76:68:30:bc:95:08:
16:53:fc:7d:10:9f:ab:75:44:fa:06:75:b0:69:f8:
22:55:d1:bf:4f:32:36:46:ba:a7:cc:43:18:6d:d6:
71:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:DD:91:99:39:5A:EA:00:94:58:59:60:58:88:84:F9:C9:37:1A:55
X509v3 Authority Key Identifier:
keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/ct2RmTla6gCUWFlgWIiE-ck3GlU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.217.192.0/22
193.28.228.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:58:13:5f:ee:15:8b:85:ee:89:a7:2e:c1:13:ce:97:75:2d:
35:ea:a6:97:5c:76:91:86:b6:3b:21:53:0e:06:8c:ac:8e:1c:
31:b9:48:ee:64:3e:fa:c4:04:44:eb:d8:45:f0:8f:4c:34:bb:
f2:2a:40:28:87:79:b5:c5:c9:ec:2a:fa:00:e0:f2:7d:72:ab:
9b:c4:56:bb:f7:03:6b:6a:8b:ef:c5:6b:0c:66:b3:61:bd:b7:
57:20:60:1f:d2:e7:e1:0d:50:bb:37:59:50:a0:88:d4:ad:e0:
31:1b:78:3e:07:42:83:2a:c6:f3:e7:ea:39:66:ff:04:14:44:
60:30:99:f0:12:2b:26:20:eb:70:37:1a:63:66:9e:cf:9e:a8:
c9:75:a2:5b:40:02:b0:c1:5d:e8:78:fc:29:7a:3c:05:b2:88:
ce:69:81:f6:3d:57:6f:65:e0:be:5f:e7:b5:af:ee:41:5b:9e:
e5:83:fb:02:cd:6c:4b:8d:94:ba:d3:56:96:a8:6c:0e:3c:f5:
07:57:35:51:12:3e:3b:cc:af:0e:39:aa:7e:b7:28:60:de:05:
23:72:85:a1:4f:2d:ea:58:a7:0b:be:ab:20:48:6e:9e:20:04:
bf:5e:e7:6f:f0:71:f4:dc:dd:fe:d5:2b:a4:28:79:7d:59:b1:
2c:32:a8:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:48 2023 by rpki-client on console-ams.rpki-client.org