Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/19FoQbjocrL1kneRFegfgJAEt1o.roa
File: 19FoQbjocrL1kneRFegfgJAEt1o.roa (raw, json)
Hash identifier: oUlQkVEusSTCN5iLlxBL5FsJpHt77C7ph676t9kvc54=
Subject key identifier: D7:D1:68:41:B8:E8:72:B2:F5:92:77:91:15:E8:1F:80:90:04:B7:5A
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 018B5974E917623D84FC916446902FF7C759
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/19FoQbjocrL1kneRFegfgJAEt1o.roa
Signing time: Sun 22 Oct 2023 22:15:15 +0000
ROA not before: Sun 22 Oct 2023 22:15:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.155.234.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:59:74:e9:17:62:3d:84:fc:91:64:46:90:2f:f7:c7:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Oct 22 22:15:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7d16841b8e872b2f592779115e81f809004b75a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:31:a5:b7:b8:97:e5:a1:45:c6:42:26:af:35:
44:84:bf:16:16:3d:2d:80:08:05:e3:cb:c7:01:7d:
08:e1:49:a5:d3:f5:8d:2a:7c:b9:ed:7d:4c:31:fc:
cb:ad:11:79:aa:2a:1a:ad:b8:f2:dd:ac:f8:7f:d5:
ff:c7:8f:f8:9e:90:e4:3e:54:1f:a0:96:13:97:6a:
2a:d2:48:19:4e:f5:fb:ed:f1:d9:a8:f1:9e:54:42:
69:b7:fe:2f:6c:50:7b:8d:61:15:bd:0d:bf:ea:d4:
86:cc:45:5c:1a:b1:d8:b5:ef:c9:47:cd:7e:6b:47:
bb:03:38:4c:10:e8:40:fb:db:c6:4b:cd:a1:3f:93:
95:b9:bb:6d:a3:7a:cc:cc:22:58:2b:10:bf:ec:2d:
d3:4e:1e:46:1f:63:34:d1:f5:a8:24:7d:7a:18:96:
51:25:75:b5:a4:b4:89:3d:0b:4a:85:4c:7d:0c:f6:
1c:ac:18:20:f7:67:fb:bb:90:d4:77:e8:62:7b:ea:
dc:3e:d9:bf:d9:14:c2:ad:2f:a5:d9:9c:89:ed:8e:
d9:97:2b:9b:72:f7:34:c8:7f:d3:c5:d9:0c:26:f6:
a3:b6:a4:f7:b5:85:00:b3:17:14:19:0d:93:66:b5:
59:85:3d:1c:fb:50:a3:d4:9c:ef:1a:d8:7a:73:6a:
2a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D1:68:41:B8:E8:72:B2:F5:92:77:91:15:E8:1F:80:90:04:B7:5A
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/19FoQbjocrL1kneRFegfgJAEt1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.234.0/23
Signature Algorithm: sha256WithRSAEncryption
82:15:d7:c7:ca:d5:c2:d4:34:c0:11:8c:2e:9b:4c:db:fb:6c:
3c:ff:64:3b:00:a1:59:3f:c2:83:e6:65:2e:db:23:d1:c4:32:
c8:75:a0:d2:26:e6:5f:5a:83:48:f4:07:3e:f2:66:ba:76:d1:
ef:17:68:d7:65:c1:79:e8:36:76:fc:e3:4a:09:f6:0a:67:34:
27:88:bf:75:27:25:34:b5:c6:74:18:43:14:fa:bd:13:a2:68:
28:fc:2a:aa:48:21:c8:ea:2f:9b:98:92:e8:ce:3c:9b:61:e9:
f2:c4:b5:e0:8f:df:98:71:f6:69:a0:85:cc:fa:dc:65:cd:f2:
42:91:96:64:83:f6:ff:b0:8d:a4:30:b0:ad:b4:bc:2b:d6:dd:
c8:01:49:63:11:71:93:83:a8:5f:55:f3:ac:67:5c:24:b5:f7:
6b:b3:0e:c3:df:b1:0c:fb:62:34:67:0d:fc:d6:4c:c9:6e:43:
52:46:b7:cc:c4:1c:9c:e3:46:fa:ef:1a:87:94:38:fe:a7:cc:
f2:4a:b8:f1:26:16:5b:61:aa:5e:93:bf:c3:dc:33:40:92:a2:
48:0a:e1:cc:4b:3f:0d:f1:66:de:94:df:4b:e3:a7:b3:85:21:
a2:a5:e4:0d:ae:b7:f6:d2:20:08:24:a7:97:b6:f0:c7:92:84:
db:00:1c:7c
-----BEGIN CERTIFICATE-----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Generated at Tue Oct 24 19:20:28 2023 by rpki-client on console-fra.rpki-client.org