Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/iHjMevKpLao3eCsGYrY7GUM90zk.roa
File: iHjMevKpLao3eCsGYrY7GUM90zk.roa (raw, json)
Hash identifier: VMqxO9UwPYR4jmtFdz/XzNr1waNwMYbBJYAer72twEc=
Subject key identifier: 88:78:CC:7A:F2:A9:2D:AA:37:78:2B:06:62:B6:3B:19:43:3D:D3:39
Certificate issuer: /CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Certificate serial: 0187533BB5145FAFD00DBDF214B7DF6FFA69
Authority key identifier: 52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/iHjMevKpLao3eCsGYrY7GUM90zk.roa
Signing time: Wed 05 Apr 2023 21:03:54 +0000
ROA not before: Wed 05 Apr 2023 21:03:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.76.43.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:53:3b:b5:14:5f:af:d0:0d:bd:f2:14:b7:df:6f:fa:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52a5c90ca928313bc70d2683bb0f64d632b273a1
Validity
Not Before: Apr 5 21:03:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8878cc7af2a92daa37782b0662b63b19433dd339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:ae:bb:2a:9e:89:52:b1:8b:78:cc:c2:8f:a0:
6a:7c:54:06:ee:cc:19:7b:66:4a:d5:26:b6:57:56:
9b:93:65:cf:67:21:71:d9:d7:a4:af:99:5e:20:d5:
03:55:91:e7:b1:3e:e2:2b:90:54:24:f4:8d:eb:1a:
c4:99:c0:7a:df:5f:35:51:89:92:45:9a:eb:a1:32:
7c:50:ad:a3:eb:66:74:17:ac:f6:07:6d:26:45:76:
ea:35:cd:74:84:33:2e:26:a0:5a:9c:21:25:57:f4:
6c:46:a6:32:94:c5:73:fe:54:9c:e0:87:5d:d5:f6:
dc:ff:27:82:15:2a:1c:52:7b:40:35:2a:21:8d:7c:
27:95:e5:b2:12:e3:18:cf:3f:66:70:d4:33:29:f7:
bb:e7:d8:73:b0:96:90:53:d7:16:30:b0:7f:bc:8d:
f0:54:43:60:fe:5e:4c:98:4d:f8:ba:65:e8:f2:f1:
20:11:c5:12:63:fb:69:e1:aa:d0:12:7f:56:10:ea:
f7:34:4d:72:9d:3c:31:10:9d:dd:69:67:55:f5:76:
5c:e7:0a:70:e6:e3:8f:34:44:8e:24:63:6e:16:9f:
81:6c:60:92:81:33:c8:05:74:95:e3:b4:29:89:a5:
a5:d2:c3:ad:f5:d5:50:a1:2f:ef:97:d4:5a:ad:1a:
cc:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:78:CC:7A:F2:A9:2D:AA:37:78:2B:06:62:B6:3B:19:43:3D:D3:39
X509v3 Authority Key Identifier:
keyid:52:A5:C9:0C:A9:28:31:3B:C7:0D:26:83:BB:0F:64:D6:32:B2:73:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UqXJDKkoMTvHDSaDuw9k1jKyc6E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/iHjMevKpLao3eCsGYrY7GUM90zk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/c4b7a0-1e50-403c-b24e-13ed633f922a/1/UqXJDKkoMTvHDSaDuw9k1jKyc6E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.76.43.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:2e:7a:65:18:d1:57:29:f6:ef:25:9c:dd:5f:6b:c3:c7:9c:
7a:14:97:1b:2f:06:66:e8:b0:75:db:27:28:fe:a6:26:af:d3:
fe:f0:bf:42:79:2d:cf:da:b8:ab:a0:2e:c9:94:9b:53:68:75:
ab:28:48:03:43:3b:ff:62:0a:98:52:a2:03:f1:21:81:1f:98:
fe:8f:69:7a:1f:96:18:3c:c6:bd:15:84:8e:7a:e2:fd:5f:7e:
b8:cf:5b:15:ff:4e:f9:8e:82:88:8d:7d:b9:99:19:74:a6:ae:
dc:70:15:61:9d:85:27:04:18:97:06:bd:66:bf:c5:31:30:e7:
9e:fb:c8:0c:20:c5:8d:bb:69:bc:31:13:62:fb:aa:5a:3a:ca:
74:c2:13:5e:85:41:1e:d9:c1:62:7f:d2:f0:ac:f8:42:e4:98:
27:90:ab:4d:14:c0:22:e2:97:56:0c:35:bb:5a:14:a8:ee:0b:
b6:d1:46:a4:1b:60:1d:46:9f:0b:d7:f0:27:98:2a:c3:1f:54:
f4:f4:55:c3:8f:19:7b:cc:f0:0f:9a:9e:ac:e6:b3:ee:7d:a9:
4f:be:20:d3:7a:cb:44:99:e3:64:6d:d8:92:5a:d2:46:62:a7:
29:62:6a:cf:d4:35:f9:22:a1:fb:46:5f:9e:bb:ff:4d:10:6f:
6c:a3:5f:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:25 2023 by rpki-client on console-ams.rpki-client.org