Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/5cb245-42a2-498f-b7b2-4abdc2bb9fa3/1/m0l-n4yTG1nKty-oWAoL8HzZ88w.roa
File: m0l-n4yTG1nKty-oWAoL8HzZ88w.roa (raw, json)
Hash identifier: 2scb3YjSKDKp/+SQrlEyKCX/ahnhz3R0ku6/naX1yTU=
Subject key identifier: 9B:49:7E:9F:8C:93:1B:59:CA:B7:2F:A8:58:0A:0B:F0:7C:D9:F3:CC
Certificate issuer: /CN=3594cacdd935e45cf71c616780a1b1d4aa68c7b5
Certificate serial: 01856CF8720A34EDFC50B8C808EF32692718
Authority key identifier: 35:94:CA:CD:D9:35:E4:5C:F7:1C:61:67:80:A1:B1:D4:AA:68:C7:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NZTKzdk15Fz3HGFngKGx1Kpox7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb245-42a2-498f-b7b2-4abdc2bb9fa3/1/m0l-n4yTG1nKty-oWAoL8HzZ88w.roa
Signing time: Sun 01 Jan 2023 10:54:59 +0000
ROA not before: Sun 01 Jan 2023 10:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25091
IP address blocks: 185.247.76.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:f8:72:0a:34:ed:fc:50:b8:c8:08:ef:32:69:27:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3594cacdd935e45cf71c616780a1b1d4aa68c7b5
Validity
Not Before: Jan 1 10:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b497e9f8c931b59cab72fa8580a0bf07cd9f3cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:bf:2c:92:eb:a5:da:e6:cb:87:c1:07:4f:01:
d5:bb:b4:f2:01:23:db:2d:39:1d:1b:9d:64:dd:6d:
d1:eb:fb:94:0b:33:da:bd:75:57:31:dc:e7:56:25:
b5:25:d6:21:e5:40:36:18:28:d0:2f:00:12:0e:d5:
00:7d:5e:f7:5f:7d:a0:b9:2d:d6:f5:5a:9e:c1:c4:
e6:55:f3:aa:8d:f8:b6:d8:d7:7a:a7:5b:94:a4:96:
24:85:06:4d:d1:95:08:5e:4a:61:18:f5:6e:2d:4c:
01:c8:3d:c2:15:b6:3c:87:65:08:de:04:ce:a2:ea:
91:90:e8:e5:29:dd:85:62:b0:38:73:76:96:12:f0:
aa:71:66:c7:34:bb:a3:6c:09:8e:1f:a9:9e:45:2e:
0e:1a:51:45:75:19:39:87:95:c0:a6:28:d5:23:ac:
a1:d0:a3:6d:57:df:4a:ea:4c:03:c2:d2:07:ac:89:
fe:fe:aa:eb:95:59:85:52:f9:55:18:12:e1:78:e7:
db:02:f0:46:e3:ad:e1:9a:1e:ed:07:72:1e:da:42:
46:82:74:e6:26:ab:d6:2f:14:1c:3f:4f:cd:d5:f2:
20:96:6a:b4:b0:cf:27:aa:2f:b9:70:99:6e:2d:16:
f4:39:96:90:6d:fd:25:c2:84:a5:c5:93:a5:7a:81:
02:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:49:7E:9F:8C:93:1B:59:CA:B7:2F:A8:58:0A:0B:F0:7C:D9:F3:CC
X509v3 Authority Key Identifier:
keyid:35:94:CA:CD:D9:35:E4:5C:F7:1C:61:67:80:A1:B1:D4:AA:68:C7:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NZTKzdk15Fz3HGFngKGx1Kpox7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb245-42a2-498f-b7b2-4abdc2bb9fa3/1/m0l-n4yTG1nKty-oWAoL8HzZ88w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/5cb245-42a2-498f-b7b2-4abdc2bb9fa3/1/NZTKzdk15Fz3HGFngKGx1Kpox7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.247.76.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:b8:56:fe:58:a0:49:ab:60:6f:dd:f7:03:77:92:84:49:10:
3b:15:21:8a:e3:3f:82:22:75:aa:c7:77:c0:a3:3f:f6:f0:da:
20:b2:57:9b:c7:13:6d:11:c1:fe:1b:c5:08:e4:ff:3e:75:32:
61:ac:27:9c:d4:af:b8:4d:0b:c5:1a:88:40:65:d2:b7:60:cb:
d6:62:d9:2d:d9:37:de:89:f2:6a:d1:fb:77:76:02:ab:f7:a0:
69:ad:ea:90:6d:1c:13:45:8e:e6:de:5d:10:25:b8:f7:7a:56:
8d:cf:5e:b2:07:90:8c:31:01:8a:60:3b:cf:9d:06:31:8f:15:
82:4b:aa:3d:3a:4c:b2:dd:62:77:92:13:15:a9:21:3a:29:ab:
ff:47:5d:f5:10:7e:d4:13:1e:8f:01:63:bc:d3:98:2c:f9:f6:
b8:fa:79:09:e2:c0:0f:75:b5:92:b8:dc:d1:19:a6:b6:a3:31:
4c:1a:e8:76:a6:4b:1e:6b:6d:2e:95:e8:b5:ef:75:fb:23:d5:
75:af:30:56:fb:94:33:b5:a1:db:c8:9e:5d:a1:03:a0:3b:05:
0e:be:77:1e:4d:df:9b:82:21:0d:8c:f5:f1:de:1a:32:f3:ea:
89:6b:13:38:76:1a:78:d0:1c:ea:94:71:4b:3d:ca:a0:be:04:
a7:13:86:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:47 2024 by rpki-client on console-fra.rpki-client.org