Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/s4BHO9SaaaP8r6WHhWvJ6nEabNs.roa
File: s4BHO9SaaaP8r6WHhWvJ6nEabNs.roa (raw, json)
Hash identifier: 2/uVGPvMdMLfMnDUy3WFe3Ir81UCrNKRU4r+94z4UL8=
Subject key identifier: B3:80:47:3B:D4:9A:69:A3:FC:AF:A5:87:85:6B:C9:EA:71:1A:6C:DB
Certificate issuer: /CN=e2f68414fcaca07c813555e53691dba84e3988c8
Certificate serial: 0185714C29D76A09E995C7F684F6C7BDFA27
Authority key identifier: E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/s4BHO9SaaaP8r6WHhWvJ6nEabNs.roa
Signing time: Mon 02 Jan 2023 07:04:54 +0000
ROA not before: Mon 02 Jan 2023 07:04:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30848
IP address blocks: 185.137.224.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:29:d7:6a:09:e9:95:c7:f6:84:f6:c7:bd:fa:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2f68414fcaca07c813555e53691dba84e3988c8
Validity
Not Before: Jan 2 07:04:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b380473bd49a69a3fcafa587856bc9ea711a6cdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f0:19:95:5a:66:47:d8:c8:72:04:2e:25:2f:
8e:cd:e8:c1:11:c6:71:11:5b:75:51:4a:61:4c:3c:
52:df:a6:00:8d:dd:ce:56:c3:b5:84:c2:e7:47:8b:
ac:0f:da:9f:f5:e7:61:55:be:10:dc:1d:b3:cd:9f:
2f:9b:66:b6:17:84:a4:96:01:0b:8b:71:c8:f9:c5:
be:16:2a:3d:f9:b0:03:74:dd:19:0f:b9:17:aa:b3:
29:2f:b0:08:12:87:39:b0:85:db:c1:31:29:fc:9f:
bb:76:78:fe:79:43:8d:a1:97:46:c3:e1:e3:12:7b:
56:28:73:f2:36:86:7a:7c:ac:6f:ea:50:ed:01:31:
1c:78:13:63:ce:5a:8e:74:5d:47:70:d7:d4:04:d7:
81:f6:96:b8:bc:b5:06:2c:72:8d:b0:5c:c3:5f:a3:
0e:c1:48:e8:69:d1:ea:35:da:14:7d:3a:62:d2:2a:
c5:1c:c4:27:26:45:ba:4f:5f:f8:d7:d2:50:f6:b2:
77:1d:82:32:64:6c:12:8c:55:5a:2b:fc:c9:e1:9e:
94:0c:45:1a:cb:d1:12:87:62:2f:ab:f1:3c:5a:aa:
b4:e7:d6:51:62:b8:11:b8:57:6b:fb:83:cb:2b:61:
2f:79:e5:49:2c:18:6e:16:f0:94:16:f7:a2:f1:f6:
40:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:80:47:3B:D4:9A:69:A3:FC:AF:A5:87:85:6B:C9:EA:71:1A:6C:DB
X509v3 Authority Key Identifier:
keyid:E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/s4BHO9SaaaP8r6WHhWvJ6nEabNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.224.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:1b:98:aa:07:71:f8:55:1b:e1:7e:5c:7d:db:3a:b2:63:3c:
95:27:b7:f0:52:e3:f0:68:ee:11:31:62:0f:7b:5f:a5:a9:8c:
26:ea:be:10:e9:54:36:d7:d9:19:85:c0:4d:a5:0e:54:5b:dd:
3b:fd:67:64:25:b0:86:8b:22:d0:67:6b:34:55:e9:31:23:9c:
a8:fc:90:97:2b:1e:be:73:1f:ef:6e:3e:3f:30:00:75:bb:65:
68:a8:aa:1c:c7:24:3d:a8:41:71:a0:6b:0b:a2:1b:16:28:0d:
a5:7b:d6:0f:3d:99:22:3a:ad:3e:68:8a:d6:06:09:a2:be:c5:
25:c2:10:de:37:70:f4:4a:46:3c:33:eb:8a:b7:ca:9b:de:18:
d7:20:a7:18:e5:05:63:f1:a8:ef:02:f8:b9:53:49:27:a2:fa:
8a:89:4c:64:86:90:b2:86:f9:4e:38:7b:78:60:7a:15:ac:69:
0a:0d:fa:d4:7c:c6:0e:63:98:73:53:29:47:f3:a4:cf:3f:24:
a2:d3:e9:b8:d8:28:34:44:7a:ef:33:93:b4:b9:14:9b:72:6d:
e9:69:9b:c6:ed:71:98:a7:96:8d:22:fd:30:c6:22:17:8e:fe:
45:fc:77:07:12:d3:61:e7:b9:c4:aa:f8:88:cc:31:8e:18:7d:
c2:72:91:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:52 2023 by rpki-client on console-fra.rpki-client.org