Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/dgCXS7AH5lFQ4hZP5lJprBcgs2M.roa
File: dgCXS7AH5lFQ4hZP5lJprBcgs2M.roa (raw, json)
Hash identifier: uGrBNd3KLnYu9NBxwoj5ceLvKEw7y3uwwlr+ahQNB5o=
Subject key identifier: 76:00:97:4B:B0:07:E6:51:50:E2:16:4F:E6:52:69:AC:17:20:B3:63
Certificate issuer: /CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Certificate serial: 01869C747F67A2C593A433170CF8A154819B
Authority key identifier: 35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/dgCXS7AH5lFQ4hZP5lJprBcgs2M.roa
Signing time: Wed 01 Mar 2023 09:15:25 +0000
ROA not before: Wed 01 Mar 2023 09:15:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 393427
IP address blocks: 185.155.234.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9c:74:7f:67:a2:c5:93:a4:33:17:0c:f8:a1:54:81:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3517c9de927fa75beaef7885f0d88f6f4d2a0ed6
Validity
Not Before: Mar 1 09:15:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7600974bb007e65150e2164fe65269ac1720b363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:9a:1f:9f:9b:e3:65:65:d8:79:6c:1b:c7:23:
05:bc:fc:9e:9d:7c:71:5f:9d:27:9f:d0:78:ed:0b:
b6:c0:a7:a7:5b:3f:a0:1e:bf:23:2e:4b:3c:f5:ab:
cc:e3:71:5e:cf:0f:42:9f:fa:dd:de:6d:3b:23:a4:
21:41:6e:f4:4a:8c:b0:40:82:34:a8:4f:38:6d:c8:
40:47:7d:24:27:20:a9:cc:82:fb:5b:2c:02:08:15:
9d:20:19:40:e6:50:b7:93:12:3b:48:ac:8c:bb:6e:
ae:8f:ad:7d:58:99:9a:84:60:25:bd:df:20:86:67:
09:a0:32:66:70:46:1c:b2:2a:5b:b7:72:db:e9:25:
06:7c:af:5f:d0:05:d9:46:d6:5b:9f:ed:4d:7b:e6:
21:38:91:b9:65:c3:68:71:e0:8f:ee:1f:66:9b:cf:
87:76:dd:4d:48:91:e5:a7:63:56:ba:fa:b0:c1:33:
24:f9:22:0f:90:b0:14:65:5a:06:98:10:bd:5a:0d:
ee:ef:c0:7a:7b:dc:3a:b7:68:8a:83:71:a5:be:52:
a3:04:d4:5b:c3:51:d3:c3:a2:71:1e:4a:8c:88:7c:
53:67:26:61:67:27:0c:d3:04:19:75:5c:ab:16:16:
68:11:b3:0e:8f:37:0e:f6:c3:49:a3:aa:10:8a:87:
2b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:00:97:4B:B0:07:E6:51:50:E2:16:4F:E6:52:69:AC:17:20:B3:63
X509v3 Authority Key Identifier:
keyid:35:17:C9:DE:92:7F:A7:5B:EA:EF:78:85:F0:D8:8F:6F:4D:2A:0E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRfJ3pJ_p1vq73iF8NiPb00qDtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/dgCXS7AH5lFQ4hZP5lJprBcgs2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/954ade-84b7-446d-a6e2-fd3b3002c0bb/1/NRfJ3pJ_p1vq73iF8NiPb00qDtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.234.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:23:f6:1a:a2:40:67:59:13:e6:67:db:97:a9:e3:56:74:51:
17:cc:38:cc:cf:cc:74:84:a1:db:24:a9:56:bd:b3:9f:2c:d5:
1f:dd:d2:56:74:2d:f1:f6:54:80:38:96:19:a9:fc:6d:12:2f:
be:48:c1:af:42:e0:11:58:21:29:49:5b:11:03:12:df:c4:e2:
d8:ec:d0:38:0f:aa:6f:7b:e9:4e:9e:81:a5:66:2c:ba:be:ec:
e1:6f:43:fa:ae:02:48:58:46:82:ef:71:78:7a:0f:dc:78:df:
67:13:37:b2:e6:31:e8:d8:fc:f9:ed:6e:9b:50:cc:d4:c5:c9:
68:32:e3:47:b3:e9:ca:37:c5:ec:a0:a0:3a:f8:0f:d8:17:22:
33:60:16:ad:79:70:a5:26:11:0d:31:4c:66:84:fb:10:d3:28:
2c:94:87:1e:dc:96:c0:4d:44:7a:d6:6c:60:55:af:bf:cc:4a:
df:0a:51:61:dc:28:61:62:e0:00:6d:91:e7:6e:18:da:c0:81:
c0:98:5c:f6:26:ef:c7:33:63:78:41:72:71:cc:0c:9b:29:51:
38:29:ea:e8:ff:31:44:3a:73:b8:a9:4e:eb:4e:ae:b7:e9:6f:
29:59:95:53:74:71:70:43:70:a0:40:93:b0:27:03:53:ca:9d:
bf:ab:3d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:43 2023 by rpki-client on console-fra.rpki-client.org