Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/_cfC_e5-UsI9CgHWHFIm138K6vE.roa
File: _cfC_e5-UsI9CgHWHFIm138K6vE.roa (raw, json)
Hash identifier: f/HxxFmapRlTQtuPyFMmQzkzDLWtU6D6oZhzJKwPLEo=
Subject key identifier: FD:C7:C2:FD:EE:7E:52:C2:3D:0A:01:D6:1C:52:26:D7:7F:0A:EA:F1
Certificate issuer: /CN=f5b75ad5609cef112579bd01938c6c73267fff07
Certificate serial: 01890271C3B51F203AC1FEF00F7CD527825F
Authority key identifier: F5:B7:5A:D5:60:9C:EF:11:25:79:BD:01:93:8C:6C:73:26:7F:FF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9bda1WCc7xEleb0Bk4xscyZ__wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/_cfC_e5-UsI9CgHWHFIm138K6vE.roa
Signing time: Wed 28 Jun 2023 14:39:17 +0000
ROA not before: Wed 28 Jun 2023 14:39:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 185.201.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:71:c3:b5:1f:20:3a:c1:fe:f0:0f:7c:d5:27:82:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5b75ad5609cef112579bd01938c6c73267fff07
Validity
Not Before: Jun 28 14:39:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fdc7c2fdee7e52c23d0a01d61c5226d77f0aeaf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:3d:b9:94:db:ae:1c:47:69:5c:57:48:1e:01:
7b:13:71:4a:4f:ef:a3:fc:e1:e6:e3:f6:59:4e:a5:
58:60:44:5f:37:e2:33:f3:aa:a3:50:98:67:3d:95:
af:a6:26:d2:ae:d9:a7:5e:79:e3:24:95:b3:a8:dc:
42:1c:0d:7e:cd:06:d8:6f:f8:1f:d2:32:f6:a2:6a:
3f:01:d0:be:fb:9e:62:89:71:03:3f:5c:00:ef:0d:
59:f1:98:61:74:5b:85:4b:70:2f:3f:1e:e7:ac:68:
4d:0e:34:50:da:58:59:f5:a2:e9:fd:1b:14:9e:5b:
64:ff:a3:49:a7:30:33:fe:e6:00:a3:f8:1c:b9:67:
36:9b:62:1a:50:bc:9f:f1:e0:8c:dd:e7:e2:cc:b0:
f5:6d:b3:36:7a:09:e3:84:0c:dc:07:06:e6:f8:c4:
94:2c:34:d0:52:72:a7:50:b9:56:a1:91:49:52:9f:
c4:dd:b9:f3:b2:a7:85:95:8b:66:1f:2d:3d:11:54:
6a:ee:4d:c4:62:0a:dc:77:d5:f2:b3:a2:84:4c:f9:
9c:fd:f0:2e:89:54:2d:d3:64:42:20:31:15:a8:88:
7a:5f:19:c8:3c:c1:dc:5a:01:3d:1e:8e:88:cc:26:
a1:48:63:b4:c1:14:c8:97:7d:44:51:06:5a:17:0b:
d3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:C7:C2:FD:EE:7E:52:C2:3D:0A:01:D6:1C:52:26:D7:7F:0A:EA:F1
X509v3 Authority Key Identifier:
keyid:F5:B7:5A:D5:60:9C:EF:11:25:79:BD:01:93:8C:6C:73:26:7F:FF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9bda1WCc7xEleb0Bk4xscyZ__wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/_cfC_e5-UsI9CgHWHFIm138K6vE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/6ad54c-7564-489f-8f84-592c8bceb0d5/1/9bda1WCc7xEleb0Bk4xscyZ__wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.28.0/24
Signature Algorithm: sha256WithRSAEncryption
e0:17:32:f4:01:e6:c0:8b:77:b3:7e:86:1d:6e:05:df:d4:0a:
ec:1c:89:54:6c:a1:ad:97:c8:8a:e7:f6:0d:dd:3b:d0:1e:19:
9d:db:43:2d:ce:a3:ff:1c:ce:b1:20:bd:7d:91:bb:4b:70:ca:
d9:9a:e1:2a:72:25:6c:d5:51:3a:29:ab:fb:b7:35:86:0d:c2:
f4:f0:db:5f:44:09:fa:29:b0:01:25:06:0a:08:33:3e:ea:d8:
1e:e2:12:cd:30:36:d2:14:96:51:77:16:37:2a:98:b5:df:80:
e8:42:d0:61:58:27:65:bb:da:6f:33:94:83:89:22:50:6f:04:
d9:34:73:ba:9b:11:91:45:b1:a8:51:37:86:e4:2d:ce:f9:96:
e6:eb:b3:e1:c1:50:f7:39:bc:88:70:e0:8f:16:4c:e9:ff:6d:
33:35:de:ee:a6:8a:ff:30:e8:cf:50:ab:a4:25:e4:0f:f7:14:
46:98:18:8d:9e:00:ad:4f:ee:86:9c:e9:68:a2:8f:46:81:25:
24:73:21:9b:19:d7:68:d7:8d:10:21:51:d2:22:ab:4d:ff:14:
32:bb:ac:5d:93:93:78:04:49:3b:91:38:f8:db:ef:70:c4:b5:
fe:c1:2f:46:d4:09:8f:dd:7d:9e:13:1a:6a:53:91:1a:f4:9a:
40:24:09:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:36 2024 by rpki-client on console-fra.rpki-client.org