Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/2UMx9KR2q_PN5yNEOqC4qNERJvE.roa
File: 2UMx9KR2q_PN5yNEOqC4qNERJvE.roa (raw, json)
Hash identifier: XknNRM41AUkw+hlMm6yJIZqHQlji4ImrdIZpwV5k7UM=
Subject key identifier: D9:43:31:F4:A4:76:AB:F3:CD:E7:23:44:3A:A0:B8:A8:D1:11:26:F1
Certificate issuer: /CN=83286fa6da7d252e7828f84923f55919142b007f
Certificate serial: 01856F54784EE6624672F6C2FFF78522CB88
Authority key identifier: 83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/2UMx9KR2q_PN5yNEOqC4qNERJvE.roa
Signing time: Sun 01 Jan 2023 21:54:44 +0000
ROA not before: Sun 01 Jan 2023 21:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207160
IP address blocks: 185.65.243.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:78:4e:e6:62:46:72:f6:c2:ff:f7:85:22:cb:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83286fa6da7d252e7828f84923f55919142b007f
Validity
Not Before: Jan 1 21:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94331f4a476abf3cde723443aa0b8a8d11126f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fc:96:58:ca:b1:fa:a0:fc:4b:23:ca:69:28:
67:11:d4:92:aa:a9:22:92:1f:6e:78:f5:8d:54:59:
5d:43:78:81:c2:27:87:4a:c7:76:23:f3:97:c1:ed:
41:f2:1a:1d:9a:48:f4:13:8b:b9:ff:92:6d:ec:e7:
50:84:20:5c:ef:00:e5:08:3d:b7:4e:c4:0c:ad:37:
3c:1b:55:6b:c7:6e:d9:d9:85:71:82:0a:20:18:f8:
4c:0c:70:53:b0:f7:f5:d5:a8:0f:f7:4d:96:ec:d4:
f3:be:cc:d6:41:92:aa:66:09:a7:aa:26:70:2f:d5:
78:57:95:aa:fe:46:09:f8:cf:da:8e:19:4f:2f:14:
1f:46:b5:01:f8:e1:57:2b:c5:aa:4e:a2:a8:29:1d:
60:09:9e:6a:81:3e:1a:71:10:c8:94:f2:b1:c1:fd:
a8:d1:48:27:5a:7b:79:44:13:b8:33:d2:d9:79:b6:
52:43:c3:e1:89:87:ec:a4:76:4a:87:2e:53:6c:69:
3e:4d:40:b2:ac:5e:41:11:8a:8f:95:d4:47:4a:68:
63:21:33:20:2b:94:2c:aa:df:44:e1:4f:a2:48:2f:
5d:82:19:ad:ed:c4:b9:6e:16:e2:c8:63:a6:ca:3f:
d0:6c:85:02:b2:b5:d2:65:1e:67:e0:59:06:a8:cc:
b0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:43:31:F4:A4:76:AB:F3:CD:E7:23:44:3A:A0:B8:A8:D1:11:26:F1
X509v3 Authority Key Identifier:
keyid:83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/2UMx9KR2q_PN5yNEOqC4qNERJvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/gyhvptp9JS54KPhJI_VZGRQrAH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.243.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:68:e1:a1:cf:9c:cc:49:61:0e:cc:9e:60:e3:2f:e1:d0:57:
61:bc:1d:a4:64:0e:25:3e:13:99:c5:d9:1a:cc:ef:6c:1e:a1:
5b:35:da:11:f2:60:f2:bc:31:0b:5e:00:2b:a1:a7:d7:40:ca:
d2:0c:8f:00:7e:2e:00:b5:24:9a:b8:79:aa:c0:42:17:db:49:
6f:84:fa:df:b9:53:c8:5d:f7:0b:f7:80:4a:42:6b:43:17:af:
cc:48:e8:14:3a:83:a1:49:61:25:d5:29:78:65:96:ca:a1:61:
ba:d1:55:19:42:31:23:32:0a:55:a9:d0:1b:6a:50:9f:42:74:
01:42:e3:88:3c:be:5a:f3:ac:4d:6c:7f:52:e2:d7:74:a6:67:
b2:70:ef:3a:e4:e4:c8:b8:55:0d:29:cb:84:ec:23:bb:72:c0:
bc:66:cf:ea:82:5a:00:bf:cb:dc:36:2b:16:71:9f:0e:66:3b:
04:4c:b5:5b:8b:65:16:35:63:08:b9:75:50:fc:15:0a:4a:1e:
fd:73:d7:2b:0b:a3:74:81:13:b6:52:54:43:00:d6:c1:2f:3d:
a3:8e:36:e5:31:92:c9:90:a7:b5:31:0e:a6:2d:f8:e5:f4:f4:
ee:20:00:53:84:00:34:32:a5:73:3a:85:a8:d7:b0:68:33:29:
63:2c:7c:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:10:46 2024 by rpki-client on console-ams.rpki-client.org