Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/2EkVhFlIZJkxEzRxyCyLC14KHeA.roa
File: 2EkVhFlIZJkxEzRxyCyLC14KHeA.roa (raw, json)
Hash identifier: RStrPsEtkR6CfGq/zmbw/Vyw9EgnRGIGdhRhALyh8SI=
Subject key identifier: D8:49:15:84:59:48:64:99:31:13:34:71:C8:2C:8B:0B:5E:0A:1D:E0
Certificate issuer: /CN=79d437584abdb48213630dcaa5f00c9d2c3cc179
Certificate serial: 01856B40F0BA3561D98E3F4579697B1C2197
Authority key identifier: 79:D4:37:58:4A:BD:B4:82:13:63:0D:CA:A5:F0:0C:9D:2C:3C:C1:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edQ3WEq9tIITYw3KpfAMnSw8wXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/2EkVhFlIZJkxEzRxyCyLC14KHeA.roa
Signing time: Sun 01 Jan 2023 02:54:56 +0000
ROA not before: Sun 01 Jan 2023 02:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203183
IP address blocks: 185.143.92.0/22 maxlen: 24
144.2.160.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:40:f0:ba:35:61:d9:8e:3f:45:79:69:7b:1c:21:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d437584abdb48213630dcaa5f00c9d2c3cc179
Validity
Not Before: Jan 1 02:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d84915845948649931133471c82c8b0b5e0a1de0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:26:52:06:4e:d3:c6:ac:a5:ee:3d:fa:1b:25:
dd:7d:0d:69:17:0e:5c:fb:10:23:62:a4:e7:3b:6c:
9d:ee:53:c1:39:78:74:e2:e1:61:e8:8e:28:3a:2f:
0b:a5:d7:08:a2:2c:09:ab:a4:90:f7:05:28:7d:e8:
e7:ee:ee:c9:8d:3e:87:47:cc:c4:16:0b:bb:0f:be:
23:27:71:3d:27:ed:34:7b:e4:a9:2d:3e:dd:2b:b2:
78:5e:82:b3:39:1a:46:bb:4b:32:16:c8:10:2d:06:
a6:e5:42:c5:ef:46:ca:3b:bd:17:53:2d:5c:86:a9:
7d:81:bd:d5:ee:9c:a3:7b:89:63:d5:ac:d1:52:a1:
43:f1:75:7e:ef:81:49:fd:ee:07:33:d4:40:7c:77:
08:8f:82:0f:31:55:d5:04:28:4e:6b:dc:88:c8:9e:
b1:9d:8e:32:f8:b5:00:d7:34:84:5f:06:90:27:82:
ee:d5:5f:e3:8a:36:e9:05:a1:45:24:26:32:52:17:
23:97:35:74:53:69:dd:74:85:8f:8e:50:94:24:28:
c5:c6:0e:e8:42:c4:ea:2e:e6:b9:b2:cb:88:c0:fb:
7f:73:13:e6:d8:e9:29:0f:7a:09:e9:1b:82:ec:4d:
a7:3e:a7:95:cf:d1:a4:7b:f8:7b:f4:ad:d9:10:c7:
ed:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:49:15:84:59:48:64:99:31:13:34:71:C8:2C:8B:0B:5E:0A:1D:E0
X509v3 Authority Key Identifier:
keyid:79:D4:37:58:4A:BD:B4:82:13:63:0D:CA:A5:F0:0C:9D:2C:3C:C1:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edQ3WEq9tIITYw3KpfAMnSw8wXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/2EkVhFlIZJkxEzRxyCyLC14KHeA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/3496a4-cc9f-4419-ad81-aaa2380982bc/1/edQ3WEq9tIITYw3KpfAMnSw8wXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.2.160.0/22
185.143.92.0/22
Signature Algorithm: sha256WithRSAEncryption
15:d1:9d:38:27:73:2a:32:be:47:48:fd:3b:8b:ac:7d:8b:08:
a1:11:28:80:74:dc:8d:3c:f8:38:31:ff:99:3b:01:d6:6f:22:
3d:e5:65:ee:d0:af:fc:b3:18:51:44:10:6d:54:3c:2e:85:07:
b5:17:30:de:4c:66:f9:7e:b0:5b:f2:8d:20:ae:79:69:32:10:
ae:d7:c6:fb:0c:e6:3b:5d:4f:34:08:28:f5:a4:ff:65:07:d8:
c7:d5:a8:7c:f8:e0:25:19:b5:9b:e3:df:fd:c5:7c:fd:b7:28:
7c:5d:7b:07:01:c0:78:50:8c:2d:d6:3c:2a:35:b5:b9:29:c0:
0c:f8:83:43:8a:3c:cf:a4:fa:bd:c3:94:9c:53:10:85:bc:f4:
a9:57:0f:97:1a:41:db:8f:f4:6c:31:b7:56:a2:39:83:54:8b:
15:90:35:0a:ea:01:2b:ae:50:5a:69:e7:2a:b9:bd:bc:1c:9d:
d5:57:eb:bc:95:a5:7b:69:a8:95:97:a8:0d:59:40:a5:b3:db:
95:d8:7d:4f:11:e4:2d:7b:59:9a:8a:49:21:f0:29:aa:c6:77:
a4:8d:8e:2c:c8:2c:1d:c0:f7:ed:6b:05:45:98:13:b6:e0:18:
23:00:03:7e:b9:3c:1a:da:3b:5b:0b:5d:aa:3f:be:67:87:d8:
82:e9:4e:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:23:28 2024 by rpki-client on console-fra.rpki-client.org