Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/hGzbef3xq_CoS1RQyITHIPy1aGg.roa
File: hGzbef3xq_CoS1RQyITHIPy1aGg.roa (raw, json)
Hash identifier: XEZkfkyvA3tLIWVB0lpyS3oFeT1EHJiwhXCX6Ya39CM=
Subject key identifier: 84:6C:DB:79:FD:F1:AB:F0:A8:4B:54:50:C8:84:C7:20:FC:B5:68:68
Certificate issuer: /CN=281597558437c58185d4c2fe71b9d52779d800d6
Certificate serial: 0186B0C0A5C38F6AEA6E66C14AD01C03C5FE
Authority key identifier: 28:15:97:55:84:37:C5:81:85:D4:C2:FE:71:B9:D5:27:79:D8:00:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBWXVYQ3xYGF1ML-cbnVJ3nYANY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/hGzbef3xq_CoS1RQyITHIPy1aGg.roa
Signing time: Sun 05 Mar 2023 07:51:00 +0000
ROA not before: Sun 05 Mar 2023 07:51:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 146.19.227.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b0:c0:a5:c3:8f:6a:ea:6e:66:c1:4a:d0:1c:03:c5:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=281597558437c58185d4c2fe71b9d52779d800d6
Validity
Not Before: Mar 5 07:51:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=846cdb79fdf1abf0a84b5450c884c720fcb56868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c2:4c:4c:66:4b:e4:d4:7b:47:ce:6d:13:99:
2c:2e:c7:c8:69:95:b3:68:a5:ff:96:ef:c5:e2:0a:
03:60:9a:c8:bb:6e:73:24:76:e7:39:0d:a6:1a:91:
bd:2d:c2:fb:1f:99:eb:ea:58:15:f9:c4:24:c4:65:
34:f3:0a:cd:e3:4c:c3:9e:05:8e:5f:86:ce:72:8b:
93:15:07:23:84:b6:19:34:8d:38:31:40:e9:0f:97:
55:34:9c:20:70:e8:6f:be:0e:d3:fc:6d:18:85:e8:
05:74:08:a8:e6:2b:a5:ea:dd:13:58:e0:8a:5c:bb:
0d:a3:27:98:4c:71:a2:70:b3:ba:5c:14:15:65:6e:
94:d1:75:57:89:83:35:1b:7b:7e:4f:e3:b7:53:55:
00:b5:05:8e:d8:8d:50:10:1d:69:01:78:c7:5a:aa:
05:ba:2c:51:14:fc:6b:e0:f8:87:5b:52:ad:1b:47:
1e:b1:10:73:f8:e9:2f:48:62:b5:aa:e7:94:f6:dd:
36:a5:f9:4a:3a:a2:80:2a:e4:77:d3:bc:74:9d:7b:
9d:c8:9d:82:9b:7d:52:c8:e8:c0:24:1c:d2:fe:a1:
bb:8b:6b:12:d3:ac:a1:df:dc:66:bd:5c:e8:60:63:
6b:7f:df:a6:5d:06:63:a6:b2:41:39:c8:ac:06:84:
22:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:6C:DB:79:FD:F1:AB:F0:A8:4B:54:50:C8:84:C7:20:FC:B5:68:68
X509v3 Authority Key Identifier:
keyid:28:15:97:55:84:37:C5:81:85:D4:C2:FE:71:B9:D5:27:79:D8:00:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBWXVYQ3xYGF1ML-cbnVJ3nYANY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/hGzbef3xq_CoS1RQyITHIPy1aGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f95bb4-5c31-4a3c-8b3c-b174a94155ed/1/KBWXVYQ3xYGF1ML-cbnVJ3nYANY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.19.227.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:b7:e9:58:36:44:ff:88:a7:9d:3b:26:bc:f9:3a:a1:aa:9c:
ff:34:81:d8:92:a9:a7:ba:b7:c2:95:75:e2:86:bd:b4:5c:6d:
f6:bd:fa:60:b0:16:6c:8b:c4:b4:6e:6e:be:5c:71:42:ea:86:
bb:75:42:48:c0:5d:96:3d:f5:2b:45:cb:6b:70:6e:89:72:7e:
e4:d4:17:9f:9b:ac:fa:33:3a:b0:8d:08:48:89:78:f3:b1:f9:
ca:04:17:1a:67:5f:40:77:ba:ec:2b:b0:1e:6a:0b:c5:21:40:
85:6a:d5:b0:4f:03:96:51:9d:dd:48:23:e1:32:6a:eb:eb:a2:
d5:56:b8:c7:6d:7b:ad:71:08:cc:4d:33:57:1d:e5:f1:78:46:
cd:03:29:00:5e:a3:41:3b:76:9e:d4:34:ca:db:21:cd:90:ec:
46:11:fc:5f:89:f1:06:82:15:d4:de:fe:0b:33:e8:8a:da:3a:
5d:6b:c7:ac:ca:7f:e0:1f:fe:53:1b:37:5b:2a:b7:67:1d:f1:
30:f4:c3:9d:99:6a:c0:49:6d:e9:7f:6b:87:f4:af:fb:87:15:
8e:43:99:c2:2b:94:54:33:33:f1:e4:c7:ae:1a:04:45:72:78:
2e:d5:b4:a9:55:4f:ea:5e:b6:de:e8:e9:40:33:67:3c:53:d7:
16:40:c4:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:38 2023 by rpki-client on console-fra.rpki-client.org