Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/529zrI7nC1Y83kH9feOLvoNGCQ0.roa
File: 529zrI7nC1Y83kH9feOLvoNGCQ0.roa (raw, json)
Hash identifier: HqT5z7XQIe6PKsTWBQCJuk2HWC5/Si5v9m6mFlTuc/8=
Subject key identifier: E7:6F:73:AC:8E:E7:0B:56:3C:DE:41:FD:7D:E3:8B:BE:83:46:09:0D
Certificate issuer: /CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Certificate serial: 018C679809C7580C8AC60043E947090488D1
Authority key identifier: A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/529zrI7nC1Y83kH9feOLvoNGCQ0.roa
Signing time: Thu 14 Dec 2023 09:11:06 +0000
ROA not before: Thu 14 Dec 2023 09:11:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.228.3.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:98:09:c7:58:0c:8a:c6:00:43:e9:47:09:04:88:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c6373eab19cf43dd2f43111398383ee2bad030
Validity
Not Before: Dec 14 09:11:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e76f73ac8ee70b563cde41fd7de38bbe8346090d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:61:70:33:81:ce:98:ac:ef:33:83:45:54:cd:
ef:73:3c:ee:14:5a:db:0f:52:6f:af:c6:d0:75:74:
e6:d2:aa:d8:6d:50:45:18:8f:b7:d3:92:fd:34:ee:
d9:dc:fa:1b:e7:7f:da:05:46:4e:62:11:e6:ce:f1:
41:38:c8:c4:db:ca:8c:33:00:b1:8e:e8:d8:81:d2:
dc:5b:69:b7:e8:a2:73:2c:6b:72:8b:cb:e9:c1:96:
e7:1d:55:25:f9:79:ec:d8:19:35:85:ef:d2:0c:d3:
71:21:31:af:bd:76:7d:87:17:94:a6:7a:92:93:3a:
36:4f:46:54:e4:2a:c2:7e:92:a5:3f:29:78:44:f6:
7e:32:2d:6a:5f:4d:78:bb:65:c5:83:ac:5d:f7:bf:
72:53:c9:71:21:f4:8f:ca:ad:25:f3:12:1a:da:fb:
ee:b8:7b:15:21:4b:37:39:11:76:96:31:51:67:e0:
21:97:f2:3d:d5:5f:ec:38:30:a1:bd:0e:3b:0e:20:
45:62:79:a8:f0:4b:7b:3e:7d:2c:c4:47:b5:c4:9b:
2e:34:a5:8d:2d:ec:60:dc:7f:f2:e6:7b:75:f4:04:
ca:99:6c:bb:b8:29:ff:f5:e1:7a:2e:40:5d:5e:21:
6d:c7:03:42:cf:c9:d1:f1:b0:44:9d:61:60:db:7b:
54:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:6F:73:AC:8E:E7:0B:56:3C:DE:41:FD:7D:E3:8B:BE:83:46:09:0D
X509v3 Authority Key Identifier:
keyid:A5:C6:37:3E:AB:19:CF:43:DD:2F:43:11:13:98:38:3E:E2:BA:D0:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcY3PqsZz0PdL0MRE5g4PuK60DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/529zrI7nC1Y83kH9feOLvoNGCQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f0f5e3-6050-4e2d-a4ea-a4ea0a63f766/1/pcY3PqsZz0PdL0MRE5g4PuK60DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.3.0/24
Signature Algorithm: sha256WithRSAEncryption
78:51:5b:ee:df:cf:13:a3:94:26:f2:40:c8:7a:f7:df:17:60:
f0:ee:da:53:9d:db:7e:69:81:0b:f6:ea:f7:73:c2:cd:d2:99:
49:66:6c:05:0a:5f:be:41:d5:ac:a8:8f:3a:3f:a3:5d:79:0d:
34:12:f8:69:2e:c1:81:4b:bc:5d:7b:00:a8:85:0d:7a:67:c6:
91:7b:7e:a0:69:8e:3b:1f:45:1d:43:8d:b2:10:5c:81:54:e0:
c3:1e:72:cd:94:32:93:bb:cf:ee:bf:77:67:00:8b:c4:d8:53:
98:ee:e2:81:71:c0:74:f5:81:df:89:c4:b1:9a:de:71:42:2b:
3d:bf:dd:30:ce:eb:f6:49:e4:da:06:8c:a8:ec:ef:be:57:d2:
e2:9a:80:50:80:66:29:a0:ae:a5:57:46:0b:a5:75:6d:de:bf:
4a:a0:2d:12:f1:0c:d1:fb:58:bc:6d:de:37:79:92:04:ee:48:
ef:4b:fa:28:98:0b:cf:3d:4e:67:04:d1:0b:c0:72:a1:9a:cb:
f6:7c:68:dd:ba:cd:27:1b:16:1e:0c:bb:90:17:f9:62:09:56:
c5:6d:c2:f6:90:55:04:44:e6:9b:7a:e6:4f:49:21:7b:15:bf:
3b:0f:3a:c8:e3:3a:6d:34:c3:5c:90:83:be:e3:4b:4b:41:bb:
12:51:60:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Dec 15 12:05:31 2023 by rpki-client on console-fra.rpki-client.org