Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/SsJGbSPCyIsJeKCcDFH81M69e0A.roa
File: SsJGbSPCyIsJeKCcDFH81M69e0A.roa (raw, json)
Hash identifier: MFO7CaEnMw6nHJ8U/FLeOdUDJ+mTw/D2KETVoHTSSf4=
Subject key identifier: 4A:C2:46:6D:23:C2:C8:8B:09:78:A0:9C:0C:51:FC:D4:CE:BD:7B:40
Certificate issuer: /CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Certificate serial: 0187DCD6E4744B115DB4ABDC0A778E433982
Authority key identifier: E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/SsJGbSPCyIsJeKCcDFH81M69e0A.roa
Signing time: Tue 02 May 2023 14:21:23 +0000
ROA not before: Tue 02 May 2023 14:21:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 185.206.58.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:dc:d6:e4:74:4b:11:5d:b4:ab:dc:0a:77:8e:43:39:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e319d0cd65593d969e8d45382a194aaa73c0ff8c
Validity
Not Before: May 2 14:21:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ac2466d23c2c88b0978a09c0c51fcd4cebd7b40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:12:fe:1e:b1:c0:34:83:6b:44:59:14:c2:6e:
d3:ab:c0:34:b5:ed:20:26:6f:a8:52:56:e0:11:a3:
0e:2d:c5:9c:93:4d:ea:09:2d:76:b3:0c:7b:a6:ae:
23:86:ad:c3:a9:fc:6c:19:9f:3a:58:51:37:7b:4b:
7a:c9:50:e1:53:a9:9d:fb:4e:87:d5:cb:72:5c:58:
4c:28:64:c8:06:ba:4b:d6:2c:ca:a7:43:49:6b:3f:
5b:35:f1:ca:1d:61:69:4e:66:d2:37:6b:2c:28:22:
a9:da:e9:b5:59:87:ac:64:bf:ae:a0:19:c8:96:cc:
ba:52:43:12:b0:1a:33:75:5f:4e:07:2f:da:e2:11:
50:cf:1c:3e:70:38:64:89:a4:89:e7:e7:a6:24:51:
3d:2b:33:e2:ab:c9:cb:08:9f:af:5f:2e:97:d1:c0:
2b:08:11:fa:14:bf:18:44:30:09:54:2a:e6:0f:91:
61:02:3e:6e:db:2d:cf:96:b9:78:67:9b:42:7c:57:
9f:78:10:bb:8c:f8:c3:1e:44:fe:43:2c:3f:7e:07:
d7:9e:85:5b:5c:e9:b5:8f:ef:47:b3:f6:f1:36:e2:
2d:e3:0d:c3:de:1e:17:f3:23:81:80:b0:13:e3:73:
3a:61:74:07:b1:65:86:49:f2:42:41:55:81:99:67:
cc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:C2:46:6D:23:C2:C8:8B:09:78:A0:9C:0C:51:FC:D4:CE:BD:7B:40
X509v3 Authority Key Identifier:
keyid:E3:19:D0:CD:65:59:3D:96:9E:8D:45:38:2A:19:4A:AA:73:C0:FF:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xnQzWVZPZaejUU4KhlKqnPA_4w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/SsJGbSPCyIsJeKCcDFH81M69e0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/ae869c-812c-4cd6-baf9-217cf93845bc/1/4xnQzWVZPZaejUU4KhlKqnPA_4w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.58.0/23
Signature Algorithm: sha256WithRSAEncryption
87:51:e9:05:dd:ef:32:68:ed:d1:bd:d8:65:21:99:d2:d3:da:
67:9a:06:47:c7:4a:ab:0f:9d:4a:3e:08:de:fe:03:76:b0:13:
90:77:d4:d4:e9:71:d7:af:e6:69:ae:5f:d5:ef:3b:7a:da:cf:
3b:e8:43:5a:78:55:f5:ea:98:5a:c5:08:2b:c3:fc:9a:f6:32:
ad:5b:9d:a4:e1:f4:22:4b:00:2e:02:8e:f9:c4:5b:a7:6c:c0:
53:2d:ab:df:9e:ae:ed:ec:cd:05:16:8b:e3:5a:d8:f6:85:d1:
6e:f9:42:c5:b9:7e:dd:02:05:a7:47:3e:a8:69:73:8e:2e:32:
43:b4:7a:83:9a:01:29:cb:8e:26:f3:8d:97:6a:a2:5d:f0:58:
37:89:79:4d:5a:94:15:41:df:d6:1f:d2:7e:f1:d5:71:4b:8b:
6a:60:dc:95:47:4a:4c:bb:97:60:af:d3:f3:fd:0a:03:8c:82:
59:44:f4:06:79:4c:d5:06:7b:0c:60:bd:04:05:9d:f4:04:11:
b0:4d:92:2c:94:13:22:1f:f2:cd:e2:f5:b9:41:73:b7:bc:7f:
ad:77:d2:a5:ad:49:81:a7:fa:36:97:f6:c6:bb:5e:18:ee:23:
3b:2a:e7:77:f3:49:cc:76:1e:56:1f:34:ea:aa:42:e9:65:71:
2a:8b:bb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:31 2023 by rpki-client on console-fra.rpki-client.org