Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/VoIlJ2ZFOJz7tN-nt16nXF9BiCw.roa
File: VoIlJ2ZFOJz7tN-nt16nXF9BiCw.roa (raw, json)
Hash identifier: fCyFonPvyAJYgd7hCDITkX8B3q7cC7xXBEQTt6X1vcc=
Subject key identifier: 56:82:25:27:66:45:38:9C:FB:B4:DF:A7:B7:5E:A7:5C:5F:41:88:2C
Certificate issuer: /CN=dc4e453affe895b6452b84027437c5c00fd37067
Certificate serial: 018573039B547EFC1D29372422D39374E0B6
Authority key identifier: DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/VoIlJ2ZFOJz7tN-nt16nXF9BiCw.roa
Signing time: Mon 02 Jan 2023 15:04:54 +0000
ROA not before: Mon 02 Jan 2023 15:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206309
IP address blocks: 185.179.43.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:03:9b:54:7e:fc:1d:29:37:24:22:d3:93:74:e0:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc4e453affe895b6452b84027437c5c00fd37067
Validity
Not Before: Jan 2 15:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=568225276645389cfbb4dfa7b75ea75c5f41882c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:cf:d9:8a:78:36:e5:8e:34:54:75:2b:6b:32:
c5:85:c5:f0:3b:f9:6b:3e:d1:ec:71:67:1e:a5:a1:
65:81:a1:66:c4:04:74:fb:9f:5e:6d:c0:13:24:51:
05:f8:60:4a:57:92:51:8d:3a:c5:9f:07:f2:54:3f:
3a:cf:1b:b9:70:6c:b9:76:f6:c2:d3:04:fe:09:cf:
31:d6:25:70:68:55:a2:5d:e9:af:30:91:9d:50:96:
4a:36:f0:53:0b:60:f0:30:e9:9f:3e:3f:60:9d:48:
7f:d7:39:e3:b9:47:94:ca:5e:94:89:86:6a:7b:66:
ac:dc:07:48:64:cb:8f:42:c8:ba:67:6b:7c:66:cb:
d5:65:24:7b:c5:7e:05:11:d3:41:84:5c:fa:d3:fc:
33:80:0b:95:b4:3f:80:27:6f:b7:a0:c6:42:3a:78:
16:e5:82:92:f3:b4:12:eb:39:31:d1:e1:9c:7f:0d:
80:59:32:a7:96:66:b5:d4:31:f0:e4:c5:4d:4a:57:
82:de:79:0a:70:b3:86:b8:34:fc:12:68:0b:a7:0c:
f5:e6:b9:47:d4:77:74:ec:28:e3:a1:8b:4d:74:ad:
20:c5:27:21:52:9e:88:dc:2b:d0:07:6f:fa:7d:04:
f5:c2:a4:dd:8c:5d:4a:e2:25:f9:0a:43:76:b9:18:
1e:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:82:25:27:66:45:38:9C:FB:B4:DF:A7:B7:5E:A7:5C:5F:41:88:2C
X509v3 Authority Key Identifier:
keyid:DC:4E:45:3A:FF:E8:95:B6:45:2B:84:02:74:37:C5:C0:0F:D3:70:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3E5FOv_olbZFK4QCdDfFwA_TcGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/VoIlJ2ZFOJz7tN-nt16nXF9BiCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/58e655-e713-45d2-958a-1822867e1596/1/3E5FOv_olbZFK4QCdDfFwA_TcGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.179.43.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:c0:a3:ce:91:af:90:0c:09:9a:e8:26:75:46:c0:9b:78:40:
7d:76:89:57:55:76:29:5f:33:43:f6:a9:8a:42:f1:35:d1:4c:
53:88:59:c2:cd:f9:81:f2:e1:ad:de:fe:74:c0:87:9b:d1:d9:
9d:28:3b:8f:50:fc:4e:99:c6:84:1b:cf:8b:7b:e3:66:52:7c:
9a:a6:5b:34:7b:fa:a8:96:98:37:fb:ad:20:64:59:73:aa:12:
42:0e:5e:6c:39:00:2d:43:61:ac:34:40:bb:2f:73:69:e2:86:
17:ae:d0:c9:d4:c8:91:51:7e:d5:8b:9c:28:4c:9b:aa:40:85:
ab:22:67:24:2a:93:6f:14:c5:58:8a:06:5b:33:19:ae:6e:b4:
c8:94:07:db:ba:48:b0:23:6c:cd:b7:59:f2:34:da:60:3d:4e:
0e:58:45:64:b5:32:ba:0d:b9:21:9a:c4:b4:cc:b5:a2:e7:f3:
e4:3b:f2:28:6a:45:f0:82:16:d9:ca:7c:12:0d:4b:1f:67:17:
72:e6:f4:8c:3e:c0:79:d2:70:6f:e0:08:90:9d:b3:21:74:34:
6d:51:82:71:29:57:86:19:45:bc:46:70:d5:cc:a8:71:bc:76:
4b:82:8c:92:8d:43:b8:01:97:dc:bf:21:f0:35:b0:56:fd:1d:
26:d7:46:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:35 2024 by rpki-client on console-fra.rpki-client.org