Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4652e8-5d20-42f6-a739-d54921604ecd/1/B-Pv63cXoCVQpP0woXdBmwzBGo0.roa
File: B-Pv63cXoCVQpP0woXdBmwzBGo0.roa (raw, json)
Hash identifier: Mj+S7LvWGVdl4qbu/gtS3jvBYiuIq3Kii2jjfnZWGxA=
Subject key identifier: 07:E3:EF:EB:77:17:A0:25:50:A4:FD:30:A1:77:41:9B:0C:C1:1A:8D
Certificate issuer: /CN=b744309908269e538b2b4fa963370c9ec2077a78
Certificate serial: 0185737AA5A3607C6389523399F013AC6766
Authority key identifier: B7:44:30:99:08:26:9E:53:8B:2B:4F:A9:63:37:0C:9E:C2:07:7A:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t0QwmQgmnlOLK0-pYzcMnsIHeng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4652e8-5d20-42f6-a739-d54921604ecd/1/B-Pv63cXoCVQpP0woXdBmwzBGo0.roa
Signing time: Mon 02 Jan 2023 17:14:55 +0000
ROA not before: Mon 02 Jan 2023 17:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57777
IP address blocks: 185.173.128.0/24 maxlen: 24
2a10:fc40::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:a5:a3:60:7c:63:89:52:33:99:f0:13:ac:67:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b744309908269e538b2b4fa963370c9ec2077a78
Validity
Not Before: Jan 2 17:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=07e3efeb7717a02550a4fd30a177419b0cc11a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:70:0a:ac:7d:fb:8b:70:38:b0:67:91:c3:75:
c7:a6:77:2f:c0:06:d0:02:3f:5f:aa:d8:7d:e7:ef:
0d:55:61:c8:59:45:ba:f6:d5:bd:70:8d:8d:98:f4:
52:a1:7f:58:8f:a8:54:94:0b:12:85:05:74:52:52:
b2:35:71:52:55:f9:ce:12:53:66:e2:ca:bd:85:91:
ae:c4:e5:26:4d:6c:75:f4:79:74:2f:55:eb:6e:bb:
d0:4f:04:0d:01:64:5e:48:69:e6:f6:4e:84:9e:ae:
6d:dd:89:ad:28:16:73:db:3e:f0:f4:eb:8e:b2:54:
9d:bf:f0:0a:59:a5:ef:41:f9:e7:88:61:57:fd:8e:
1c:ee:d4:5d:39:56:d7:9c:4c:6c:17:56:14:fa:34:
ea:8a:ae:3a:64:e1:f6:4d:31:78:59:00:9f:53:4c:
5b:51:70:d3:d1:36:7c:d0:f9:24:ce:07:8d:b5:13:
04:2b:a1:1c:e1:0c:3c:09:b0:45:bf:a2:49:42:c5:
77:ff:c3:b6:d4:e4:f6:fb:96:97:29:68:97:6e:53:
e6:b1:ce:57:43:e4:a6:ad:bc:1c:b1:1b:ca:53:64:
8a:ef:4e:c1:28:6f:ea:02:d7:3c:3d:74:3b:b2:f5:
c4:8c:d7:e3:d6:b1:2f:e0:0a:2f:53:55:1c:eb:30:
52:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:E3:EF:EB:77:17:A0:25:50:A4:FD:30:A1:77:41:9B:0C:C1:1A:8D
X509v3 Authority Key Identifier:
keyid:B7:44:30:99:08:26:9E:53:8B:2B:4F:A9:63:37:0C:9E:C2:07:7A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t0QwmQgmnlOLK0-pYzcMnsIHeng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4652e8-5d20-42f6-a739-d54921604ecd/1/B-Pv63cXoCVQpP0woXdBmwzBGo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4652e8-5d20-42f6-a739-d54921604ecd/1/t0QwmQgmnlOLK0-pYzcMnsIHeng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.173.128.0/24
IPv6:
2a10:fc40::/29
Signature Algorithm: sha256WithRSAEncryption
13:d3:1c:ec:35:c0:bd:2f:cf:73:b5:4e:5f:86:e6:97:87:b1:
ad:83:11:57:ce:f7:17:f6:8b:57:b6:8d:16:36:13:e9:01:56:
02:a5:d8:6a:a2:6c:fa:42:26:82:a7:98:27:3a:de:4d:75:33:
57:db:78:d3:db:a1:8b:42:16:ba:55:68:20:97:62:25:7a:3a:
c6:db:48:10:68:a7:d6:21:4f:d5:45:36:70:5b:ad:c9:60:a0:
e9:9d:ef:5c:ab:14:66:fe:14:d1:4a:29:f2:56:e9:6a:c6:41:
25:9b:72:35:d7:d2:ef:0e:92:96:eb:a5:b7:09:93:5b:9d:ea:
a4:a7:e7:97:09:19:39:4f:c5:de:6d:46:2f:2a:98:cd:7a:63:
e5:d9:d9:e9:66:ff:97:5e:88:12:a2:6b:f4:47:5a:6e:a4:f7:
59:56:f2:d2:e9:3d:fa:1f:fe:13:0d:e8:61:59:b3:fb:82:1c:
c5:59:5f:cc:7a:59:98:fc:68:cf:f5:60:68:f2:4f:1e:52:82:
92:bc:d7:36:d8:24:70:ec:95:f8:50:bc:ae:03:99:df:98:e4:
21:f8:86:ce:cf:0f:aa:4f:81:69:48:d0:51:eb:74:8d:45:87:
9a:40:55:da:fd:09:76:8d:83:8b:db:f3:58:67:d5:db:53:f1:
d9:fe:01:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:45 2024 by rpki-client on console-ams.rpki-client.org