Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/dc1724-3165-47ef-a6fe-1c6aa1f6b70b/1/1-5cKvWQTst74mbMLE1xNAjypaSM.roa
File: 1-5cKvWQTst74mbMLE1xNAjypaSM.roa (raw, json)
Hash identifier: 2pzYS3bV3/A/ud1Ak86cIfv5bI8ou+nRtkwz+lBPQGM=
Subject key identifier: FB:97:0A:BD:64:13:B2:DE:F8:99:B3:0B:13:5C:4D:02:3C:A9:69:23
Certificate issuer: /CN=d325fc508a7373256720a54d73fa9057d8a21c13
Certificate serial: 01856ECB81B5D0DAF69885DD04F993270EAD
Authority key identifier: D3:25:FC:50:8A:73:73:25:67:20:A5:4D:73:FA:90:57:D8:A2:1C:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0yX8UIpzcyVnIKVNc_qQV9iiHBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/dc1724-3165-47ef-a6fe-1c6aa1f6b70b/1/1-5cKvWQTst74mbMLE1xNAjypaSM.roa
Signing time: Sun 01 Jan 2023 19:25:08 +0000
ROA not before: Sun 01 Jan 2023 19:25:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47123
IP address blocks: 185.133.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:81:b5:d0:da:f6:98:85:dd:04:f9:93:27:0e:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d325fc508a7373256720a54d73fa9057d8a21c13
Validity
Not Before: Jan 1 19:25:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb970abd6413b2def899b30b135c4d023ca96923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3f:a1:ab:12:12:86:48:b1:4a:7d:a4:f0:bb:
ca:d2:2e:e5:23:55:f6:88:23:d5:8d:90:67:53:e7:
f6:fe:4a:f5:f1:97:45:0f:c0:22:3c:1c:b8:58:7e:
fd:65:f7:be:2d:a8:0e:db:1c:34:78:4f:19:2c:8b:
12:c8:87:61:26:e5:41:55:c8:71:cb:9d:17:d2:9e:
6b:f3:13:b0:eb:3e:9a:77:a4:dc:b3:f7:81:b2:64:
2e:90:c0:67:76:ad:23:00:73:d4:98:e5:f5:ee:ba:
a2:71:3b:69:3b:91:83:ba:ab:ac:d9:dd:48:c9:da:
9c:47:28:b7:25:bf:30:f5:ee:e0:fd:41:68:c4:40:
38:cc:bb:4e:3e:e7:20:6d:16:f9:29:df:b3:3b:76:
97:84:1e:56:ac:a8:4a:db:12:a0:dc:99:89:24:77:
59:eb:ca:fa:ff:05:13:0d:20:35:d9:a2:f0:ce:aa:
81:5f:1d:e9:36:e3:98:68:23:fc:11:16:48:ac:df:
23:bc:49:14:a9:9f:7a:89:6b:de:b7:8f:35:8e:4b:
0a:55:62:8e:c1:ac:48:87:ff:d7:ec:ef:35:c7:25:
7e:71:2c:eb:9e:6d:16:0f:0f:ca:4c:a0:4f:0b:0a:
cf:d0:45:a5:eb:ed:d0:e0:90:c4:44:bb:3b:b6:6c:
28:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:97:0A:BD:64:13:B2:DE:F8:99:B3:0B:13:5C:4D:02:3C:A9:69:23
X509v3 Authority Key Identifier:
keyid:D3:25:FC:50:8A:73:73:25:67:20:A5:4D:73:FA:90:57:D8:A2:1C:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0yX8UIpzcyVnIKVNc_qQV9iiHBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/dc1724-3165-47ef-a6fe-1c6aa1f6b70b/1/1-5cKvWQTst74mbMLE1xNAjypaSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/dc1724-3165-47ef-a6fe-1c6aa1f6b70b/1/0yX8UIpzcyVnIKVNc_qQV9iiHBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:d9:76:5c:fa:08:69:6a:9a:61:f1:10:80:6f:52:a0:50:c6:
e4:92:f1:0b:cd:58:03:36:9e:6c:93:94:b1:a4:3a:ef:0e:5a:
82:35:df:cd:60:a2:18:47:86:d6:38:5a:32:c3:d1:b4:0e:7a:
10:4a:b8:bf:50:26:fc:ab:21:88:78:92:58:9b:d4:38:03:97:
47:e8:ec:84:f8:f3:60:01:61:6c:0d:ab:ce:8e:0a:67:30:3c:
23:39:48:db:2f:28:b2:db:73:f2:94:b8:88:4b:bf:ae:5f:a4:
9b:e3:c1:a1:f7:57:5e:62:08:b2:4c:09:c6:ac:74:16:89:ac:
52:7e:bd:0c:a1:a5:78:de:1f:66:9a:23:a9:eb:b9:0b:86:2c:
0a:21:95:9c:2b:da:f5:99:7f:ed:c8:8f:9d:92:e2:2c:f8:bc:
5a:ec:c8:12:91:67:2b:71:47:b3:39:6e:bd:22:aa:6f:34:29:
e9:34:ca:93:7d:42:54:bc:89:b5:74:9c:93:07:f3:32:18:7d:
58:6d:d6:fc:6e:63:b3:3e:54:19:91:96:9d:09:33:b0:b0:48:
9b:a6:a0:05:85:84:93:00:fa:d4:cb:cc:30:5d:99:bd:e2:4d:
0e:ed:00:df:0b:7e:07:d9:9c:5b:9f:00:6b:4e:3a:60:c8:ef:
74:8b:c8:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:41 2024 by rpki-client on console-fra.rpki-client.org