Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/1-XJ1TDfbyEL7P51bWOXnDNftuEc.roa
File: 1-XJ1TDfbyEL7P51bWOXnDNftuEc.roa (raw, json)
Hash identifier: /GF3AAgqEHcAka/odkwY6EPIZRVozTXMiO3glUgeLdQ=
Subject key identifier: F9:72:75:4C:37:DB:C8:42:FB:3F:9D:5B:58:E5:E7:0C:D7:ED:B8:47
Certificate issuer: /CN=d895fa70e3f7df361151d55379d4d9b85dadfd3d
Certificate serial: 01857042ACFBE05E3C611B2340497E7B75A2
Authority key identifier: D8:95:FA:70:E3:F7:DF:36:11:51:D5:53:79:D4:D9:B8:5D:AD:FD:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JX6cOP33zYRUdVTedTZuF2t_T0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/1-XJ1TDfbyEL7P51bWOXnDNftuEc.roa
Signing time: Mon 02 Jan 2023 02:14:55 +0000
ROA not before: Mon 02 Jan 2023 02:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 185.1.163.0/24 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:ac:fb:e0:5e:3c:61:1b:23:40:49:7e:7b:75:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d895fa70e3f7df361151d55379d4d9b85dadfd3d
Validity
Not Before: Jan 2 02:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f972754c37dbc842fb3f9d5b58e5e70cd7edb847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:35:d6:ba:84:73:49:d6:e7:98:65:46:44:d8:
38:71:b7:5f:0a:aa:a5:73:05:14:12:8d:84:2a:53:
16:9a:1c:80:16:8c:d8:46:f1:3d:22:53:c2:db:21:
99:86:5b:57:93:5e:4e:48:19:0c:c7:9a:6b:e4:7c:
d3:65:8c:a9:4f:17:c5:94:19:3e:a9:cc:db:1d:e0:
a2:13:1d:84:a9:10:b5:9d:e0:fc:0d:24:4c:12:db:
21:73:56:45:ce:e2:18:63:3a:4e:c3:14:27:f4:3a:
34:ae:da:07:16:84:43:43:77:1b:e6:75:ee:0a:d2:
dd:6b:8b:2e:6c:26:dc:26:a5:0b:a8:f9:e8:7d:ca:
ae:d9:51:39:22:d6:9a:70:5f:b3:c2:4e:04:78:c2:
01:6d:7c:2f:83:96:56:ab:04:d3:2e:8b:da:4e:c4:
df:fa:a1:76:f7:ae:94:a2:23:40:55:1b:2d:c3:8a:
49:96:6c:74:cd:87:92:4e:03:4c:a9:4f:3e:f6:34:
c6:84:9f:8f:97:94:fd:ba:65:d7:47:4a:9d:ea:38:
cc:e0:57:84:b1:7f:3f:40:a4:1c:d0:05:df:1d:76:
40:94:c2:27:f6:31:7e:be:1b:ac:5d:85:8b:5b:d7:
1d:7c:f4:7c:22:35:f0:3a:68:9b:95:41:1b:da:cf:
d4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:72:75:4C:37:DB:C8:42:FB:3F:9D:5B:58:E5:E7:0C:D7:ED:B8:47
X509v3 Authority Key Identifier:
keyid:D8:95:FA:70:E3:F7:DF:36:11:51:D5:53:79:D4:D9:B8:5D:AD:FD:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JX6cOP33zYRUdVTedTZuF2t_T0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/1-XJ1TDfbyEL7P51bWOXnDNftuEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/70b504-c2d4-4387-9b75-f45b8dbe2f97/1/2JX6cOP33zYRUdVTedTZuF2t_T0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.163.0/24
Signature Algorithm: sha256WithRSAEncryption
21:53:98:72:30:81:cf:32:1a:54:7f:5f:cb:d2:49:dc:c1:d1:
9a:eb:de:fe:f4:30:d7:ba:84:94:a8:c2:70:98:a0:0f:40:f0:
d7:04:cf:fa:df:79:86:ec:b2:de:07:5b:2a:d9:d7:83:f6:f1:
69:6f:1a:af:9a:49:7f:85:be:ad:b6:01:39:dc:d5:1d:85:7e:
76:f3:4a:02:65:26:52:31:00:30:3a:52:ca:a4:2f:e4:94:e8:
20:6b:d7:91:c5:9a:1a:63:da:9a:df:50:c2:6a:b9:39:16:78:
50:4c:ec:e5:1e:9c:e5:52:c3:36:a3:8f:d6:83:b4:bd:48:85:
e9:7e:63:4b:05:6c:a8:a8:23:3f:49:ca:ff:7d:32:e3:e5:d8:
2f:f9:60:04:4c:c7:a0:9a:b4:79:84:ed:0d:c3:48:42:a6:44:
5a:17:86:7e:89:ce:83:eb:1d:b6:e8:cb:a7:c7:31:59:6a:e1:
02:a7:30:75:47:78:27:6c:63:3e:6a:3c:f2:b2:92:8e:b5:9c:
c4:2b:4b:34:5c:14:b8:62:91:6d:1c:38:ea:25:ac:4b:19:31:
1f:25:7f:42:35:0f:62:b5:69:e8:c6:62:76:c9:ba:4a:ac:5a:
d0:f9:e3:99:65:92:d0:1f:5e:ff:c1:3f:08:b6:9c:66:43:b2:
fe:dd:38:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:20:47 2024 by rpki-client on console-fra.rpki-client.org