Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/dnyX0t4xt1a9tRnNK_hcZrehnJ0.roa
File: dnyX0t4xt1a9tRnNK_hcZrehnJ0.roa (raw, json)
Hash identifier: Pb0mC0xPHJPzhUF6cTHDs1b+fQrSbZVBFSJ9+8u825c=
Subject key identifier: 76:7C:97:D2:DE:31:B7:56:BD:B5:19:CD:2B:F8:5C:66:B7:A1:9C:9D
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 018571FA206EF0465538818A1DF9D7EF9F52
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/dnyX0t4xt1a9tRnNK_hcZrehnJ0.roa
Signing time: Mon 02 Jan 2023 10:14:55 +0000
ROA not before: Mon 02 Jan 2023 10:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212634
IP address blocks: 185.149.24.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:20:6e:f0:46:55:38:81:8a:1d:f9:d7:ef:9f:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Jan 2 10:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=767c97d2de31b756bdb519cd2bf85c66b7a19c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:8a:66:27:89:da:fc:a2:be:2e:8a:0e:79:be:
27:6d:a1:20:dc:5e:f3:b9:bd:22:a0:b1:ab:60:c1:
47:c7:e6:b7:71:d0:11:ca:2a:07:31:35:32:fa:aa:
fc:0d:bc:be:5a:70:a8:58:c8:ec:88:ed:f6:14:8b:
72:0c:0e:8a:f0:b8:43:aa:ec:26:21:81:e5:b5:1d:
b6:44:c0:c9:d9:36:7d:95:da:2c:05:3f:15:14:db:
69:47:fa:4c:0d:9d:96:59:18:6c:60:b0:97:0e:2c:
86:0a:44:de:df:a6:bf:b0:82:c2:2c:c5:75:e5:ba:
c1:aa:b8:b6:69:a4:dc:5a:ba:b2:4a:97:52:e0:5b:
ae:11:22:6e:5d:b3:8d:bd:51:f8:fb:69:48:2b:bf:
3f:50:c8:36:59:8c:6e:4f:e8:b5:d6:10:10:50:af:
96:68:33:61:00:c5:09:26:ed:8f:4f:b3:07:cd:7e:
a2:15:61:7f:94:ed:6e:82:71:df:b5:b1:ba:59:f2:
02:af:e3:b0:cf:7f:f0:86:77:f0:c2:88:16:ec:c8:
07:44:0c:8a:d3:4f:04:f1:e6:dd:55:6c:7e:53:74:
92:ad:bf:66:38:a7:8f:fe:f1:c4:5b:bd:67:bf:00:
6b:67:8c:5c:61:5b:7f:1b:4f:f2:28:07:6c:59:e5:
d6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:7C:97:D2:DE:31:B7:56:BD:B5:19:CD:2B:F8:5C:66:B7:A1:9C:9D
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/dnyX0t4xt1a9tRnNK_hcZrehnJ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.24.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:fa:9b:b7:ce:3b:c4:a1:b1:be:82:da:88:a5:44:77:c7:c7:
42:13:91:af:77:93:e1:65:f5:1c:1e:83:01:cf:b1:eb:a0:3f:
c5:4b:3a:75:1f:b4:a4:a5:4e:fc:f8:a6:50:6a:1f:2c:2d:af:
9b:e5:8c:7b:a8:7a:4e:ef:ff:fb:44:31:4d:fc:e5:6e:97:58:
7b:5a:a3:47:fc:5d:43:07:ce:1e:fa:2a:bb:40:cf:cd:2f:df:
cd:91:17:dd:81:48:12:30:92:40:84:76:bc:c7:48:44:09:9d:
1a:30:a0:ce:3b:90:19:aa:da:37:25:70:8b:39:d4:2b:9d:8a:
99:f5:d5:71:13:a3:25:2d:ad:ee:9b:14:74:67:c4:1c:fc:20:
4f:f7:2d:ee:8c:b8:70:9e:55:2a:2e:32:d9:41:8e:48:e8:98:
3e:22:d2:cc:22:a4:d2:91:fe:07:52:f0:19:a6:14:0a:c7:31:
16:c5:f7:c3:46:5d:b9:15:88:da:86:a0:81:49:e0:d6:2f:c9:
0f:4f:f0:b0:a8:75:5a:47:b9:fd:a9:7f:a3:e1:53:94:4b:38:
94:be:43:65:ec:d8:cd:b1:fa:d8:8d:3f:49:da:82:11:bd:a7:
74:a4:b9:9e:fa:8d:de:95:a9:77:d9:d1:e2:d7:cd:aa:c6:40:
39:29:ee:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:50 2024 by rpki-client on console-ams.rpki-client.org