Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/LyASRDVzsF1NYDsZ4vEtI4B0spY.roa
File: LyASRDVzsF1NYDsZ4vEtI4B0spY.roa (raw, json)
Hash identifier: 9bY3HqfDqRXu0ROyNIuJFPi6j7qzJ6DFAVJmqB96lIs=
Subject key identifier: 2F:20:12:44:35:73:B0:5D:4D:60:3B:19:E2:F1:2D:23:80:74:B2:96
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C1BEC679D897BF18772F049135949
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/LyASRDVzsF1NYDsZ4vEtI4B0spY.roa
Signing time: Mon 02 Jan 2023 05:54:57 +0000
ROA not before: Mon 02 Jan 2023 05:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41904
IP address blocks: 185.229.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:1b:ec:67:9d:89:7b:f1:87:72:f0:49:13:59:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f2012443573b05d4d603b19e2f12d238074b296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:44:c0:92:c7:45:22:d6:f8:ec:42:ca:3c:e1:
00:f3:18:22:1c:99:ee:28:c6:5b:69:4b:d4:26:3e:
99:5a:bd:04:04:a6:6f:17:c4:20:d0:c3:f0:6d:19:
93:cb:3d:c9:43:7a:ac:fe:78:0a:49:80:2f:08:74:
a3:dc:38:ba:e7:82:8a:ce:7c:a9:14:64:c1:f2:1a:
a5:d7:88:5e:62:b8:5b:b7:58:53:79:4d:fd:91:e2:
73:af:77:60:67:c1:0f:17:15:59:b9:48:d7:c6:a3:
97:a0:17:25:fa:17:dd:ef:6b:85:05:37:ef:d2:75:
45:dc:46:25:fb:a1:02:2b:ea:d8:61:db:f8:60:5b:
b7:b6:47:16:9d:b3:e7:28:bc:7c:45:f2:ef:df:70:
a3:5e:35:0b:a8:0a:08:dc:d8:33:6d:78:b8:c7:46:
8e:b0:88:9d:fe:d9:67:54:49:2a:c5:f9:34:e7:cc:
24:d4:03:ad:ef:44:74:4e:40:69:22:75:5b:51:57:
9e:f2:4b:25:9e:9b:c4:2f:4f:50:25:77:7b:46:73:
78:21:a1:1d:7e:09:6c:e7:13:f0:fd:87:fb:7a:84:
28:b5:4c:fb:3b:2b:88:63:43:6e:17:41:a9:d9:0a:
9c:5b:55:a5:f6:e6:47:68:59:2c:f2:0c:60:b1:9f:
67:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:20:12:44:35:73:B0:5D:4D:60:3B:19:E2:F1:2D:23:80:74:B2:96
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/LyASRDVzsF1NYDsZ4vEtI4B0spY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.67.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:fe:a5:08:61:38:d0:2e:58:46:c4:fa:6c:48:6c:e0:ef:3e:
a7:f3:cc:32:a8:e6:98:41:1c:e2:27:a4:b7:8a:94:1d:aa:c6:
b5:7d:c9:28:c6:2e:f6:0c:ad:a0:9e:6b:66:20:b5:b4:62:1f:
75:68:5b:a1:cf:81:56:d5:78:6f:9b:d9:31:4f:10:5c:5e:9c:
c4:51:15:76:32:94:82:21:7b:c7:d5:75:ed:b3:e2:6c:f2:52:
aa:d8:28:23:d8:32:83:89:ff:75:71:02:cc:fe:9b:37:5c:1d:
96:f6:24:2b:ad:f5:e5:94:74:3a:b3:96:32:d7:cc:36:09:ce:
8c:16:8d:0f:9a:88:dc:f7:60:06:37:85:57:4a:2b:12:4a:7c:
84:ba:74:54:2e:e1:db:89:e2:cc:d5:73:46:4a:b6:52:27:a4:
f7:54:9a:40:f6:8f:b2:1d:44:1c:a7:9e:16:77:b0:3a:92:9a:
5e:d5:b2:03:97:f3:d9:53:54:03:22:7d:d3:32:53:e5:20:65:
c1:fc:af:e3:6d:09:16:0d:57:f2:3c:66:72:06:1f:d3:4c:1c:
ad:46:15:24:59:b3:41:58:3a:5d:f4:f2:3d:21:c8:b8:cc:bd:
66:cb:3c:57:3c:4e:dc:89:48:2d:ff:9d:82:a6:97:77:38:19:
66:00:84:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:28 2024 by rpki-client on console-fra.rpki-client.org