Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/gZt5mTpWxSYKTHSANArOqDQ0o8M.roa
File: gZt5mTpWxSYKTHSANArOqDQ0o8M.roa (raw, json)
Hash identifier: y4P1qJOqUDZDoFx8dwI5SLSHGNyhY/+9sl+IFHajMpg=
Subject key identifier: 81:9B:79:99:3A:56:C5:26:0A:4C:74:80:34:0A:CE:A8:34:34:A3:C3
Certificate issuer: /CN=722a8c1d311895016108ffbd14575c77cc28773a
Certificate serial: 01856B532BBFC45C2947EEE62C59C3E9AD50
Authority key identifier: 72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/gZt5mTpWxSYKTHSANArOqDQ0o8M.roa
Signing time: Sun 01 Jan 2023 03:14:50 +0000
ROA not before: Sun 01 Jan 2023 03:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207691
IP address blocks: 185.43.56.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:53:2b:bf:c4:5c:29:47:ee:e6:2c:59:c3:e9:ad:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=722a8c1d311895016108ffbd14575c77cc28773a
Validity
Not Before: Jan 1 03:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=819b79993a56c5260a4c7480340acea83434a3c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1e:e2:a5:1a:96:35:d5:62:35:1f:be:3c:00:
46:d7:ee:8a:ba:ce:d5:ee:8b:a2:66:1e:4b:43:de:
22:b0:b7:0d:26:37:66:89:6e:7c:51:c0:38:4e:57:
f1:74:0a:da:61:ba:1f:38:5b:25:48:12:7f:21:99:
03:a8:77:f5:5c:0b:33:60:38:50:43:f6:38:23:3d:
07:f4:7e:70:70:08:38:9d:45:d9:83:e8:80:0b:71:
22:5a:bc:76:94:54:73:8c:62:6f:9a:b1:03:c9:df:
4b:5b:31:a2:ac:95:32:c2:68:15:e8:f4:1d:cc:f2:
6c:48:24:5a:5a:2d:67:fb:d4:a8:03:57:61:d9:81:
a4:b9:87:ad:a0:4d:e0:fd:79:da:7d:63:fb:94:4d:
74:1c:8b:d3:13:77:90:63:1d:c9:ae:eb:0c:7d:19:
ea:d3:8c:b6:fb:c3:d5:97:65:5d:32:05:57:cb:1d:
18:14:e2:72:59:ef:79:d6:cd:72:71:90:a4:91:2b:
e7:02:c2:4f:d2:70:00:c1:c3:6e:75:66:7f:14:f1:
49:47:54:c9:ba:07:f6:53:7c:a8:f8:d1:f2:30:22:
89:7d:9d:7d:3a:3e:b6:0b:0c:a1:76:f9:d0:45:fb:
92:51:eb:d5:d6:e4:d0:22:07:89:55:c1:7a:f0:8e:
4a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:9B:79:99:3A:56:C5:26:0A:4C:74:80:34:0A:CE:A8:34:34:A3:C3
X509v3 Authority Key Identifier:
keyid:72:2A:8C:1D:31:18:95:01:61:08:FF:BD:14:57:5C:77:CC:28:77:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ciqMHTEYlQFhCP-9FFdcd8wodzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/gZt5mTpWxSYKTHSANArOqDQ0o8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/b1f6ee-c4ef-4355-af36-a558ee65431f/1/ciqMHTEYlQFhCP-9FFdcd8wodzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.56.0/23
Signature Algorithm: sha256WithRSAEncryption
46:99:7a:19:35:59:3a:bd:fb:f9:10:79:29:ef:9d:19:c4:16:
0a:a2:e7:45:fa:a6:29:37:93:98:df:af:3e:c5:58:5a:5c:4c:
6c:26:58:76:34:19:fe:7b:f9:fa:45:45:d9:88:30:6c:b5:2f:
85:0d:2c:69:83:d2:62:1e:72:78:c3:3a:2f:27:73:7a:87:1d:
dc:f8:c8:c8:ea:92:98:43:e9:0f:42:5c:9c:79:b3:b8:da:6f:
c4:00:c2:53:78:e3:1a:03:6e:85:e7:38:ed:70:57:08:42:2b:
c3:12:46:9f:f8:73:30:17:5d:b2:e6:79:24:57:f4:a9:94:9e:
4c:42:47:93:9e:4c:b2:4a:8f:85:be:08:6c:97:a5:b6:55:31:
c3:9a:4c:50:a7:28:d9:a1:3f:c9:fa:c0:e3:1a:ea:68:41:b8:
89:3b:8b:0c:a5:45:87:67:d8:e6:bd:35:d1:6f:6c:fe:ea:ad:
15:59:fc:c6:ca:ad:35:ec:d8:61:b2:1c:fb:8b:ee:26:62:e8:
53:4c:dc:a4:59:76:15:b2:69:5e:6a:43:8b:4a:94:ad:17:cc:
9f:f7:a2:12:5c:1b:30:c9:fb:76:80:55:05:4c:2e:97:79:90:
19:5e:e4:81:da:b2:76:76:57:5b:07:74:a1:5a:a6:02:92:e9:
4f:ba:94:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:42 2024 by rpki-client on console-fra.rpki-client.org