Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/wq6GY5F8lHoinwM12iQjt0EqTQI.roa
File: wq6GY5F8lHoinwM12iQjt0EqTQI.roa (raw, json)
Hash identifier: cPAY50B6MgbDnCRLJybpDZgEMNS3tpGLgckgH/KtFl8=
Subject key identifier: C2:AE:86:63:91:7C:94:7A:22:9F:03:35:DA:24:23:B7:41:2A:4D:02
Certificate issuer: /CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Certificate serial: 018570C2E0F15DBDC8BDD1301954D2F57628
Authority key identifier: CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/wq6GY5F8lHoinwM12iQjt0EqTQI.roa
Signing time: Mon 02 Jan 2023 04:34:57 +0000
ROA not before: Mon 02 Jan 2023 04:34:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 398772
IP address blocks: 185.174.88.0/23 maxlen: 23
185.168.156.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:e0:f1:5d:bd:c8:bd:d1:30:19:54:d2:f5:76:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce958f181fb507a0a2a821856b8be0d54b118b85
Validity
Not Before: Jan 2 04:34:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2ae8663917c947a229f0335da2423b7412a4d02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:41:2b:10:81:fd:f0:6f:b6:49:b7:47:a9:06:
a7:f7:51:e9:3b:48:99:5d:0d:86:85:45:72:d8:72:
d7:25:46:0c:2c:ac:f0:e8:31:84:ac:65:01:e6:23:
93:7c:e2:a1:1c:7d:f7:4c:d0:51:ba:46:59:4b:f4:
02:da:41:b6:07:0a:b9:09:0d:aa:21:c7:da:87:ef:
26:3d:3b:69:71:cd:ec:3a:2b:4d:63:1e:77:22:a3:
51:7b:4b:85:f3:8b:97:62:b9:92:f4:b3:1f:9e:c6:
9f:ef:f9:72:6a:3d:1b:56:eb:f6:e0:a0:2e:9b:01:
18:09:59:f8:46:fe:80:d1:bf:32:90:70:9b:83:f8:
f9:9d:09:3e:fe:57:76:1b:c7:19:e6:00:93:01:28:
a6:89:07:91:1b:b2:ae:0d:71:35:89:ea:7c:f0:2f:
b2:6a:fc:1d:a6:49:af:7b:67:3c:54:58:6c:7e:e6:
01:d8:f6:b6:4c:38:a2:23:8c:84:46:34:6c:19:c8:
62:bf:3b:92:32:e3:fb:ba:b3:10:23:e1:3b:e6:c7:
2b:db:a6:af:3f:91:d9:b8:d1:14:fa:62:31:f7:f0:
ff:70:5a:d0:4d:dc:7f:05:aa:a1:79:da:f0:0c:8e:
92:f8:46:2a:07:7e:e1:8a:80:e7:73:60:f2:84:c5:
3e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:AE:86:63:91:7C:94:7A:22:9F:03:35:DA:24:23:B7:41:2A:4D:02
X509v3 Authority Key Identifier:
keyid:CE:95:8F:18:1F:B5:07:A0:A2:A8:21:85:6B:8B:E0:D5:4B:11:8B:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zpWPGB-1B6CiqCGFa4vg1UsRi4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/wq6GY5F8lHoinwM12iQjt0EqTQI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/3d9bfa-cfd0-44a8-842e-0dbb3b8db15f/1/zpWPGB-1B6CiqCGFa4vg1UsRi4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.168.156.0/24
185.174.88.0/23
Signature Algorithm: sha256WithRSAEncryption
27:71:62:93:c5:5f:08:55:42:75:80:e7:28:c8:a2:0b:92:3d:
a0:e3:e9:7c:b9:10:7e:0a:a5:37:57:94:d3:06:a2:e5:69:49:
e0:4b:2c:ee:83:b6:8e:3a:52:ef:91:81:4f:e5:9b:dc:1b:fe:
bf:42:2c:72:6e:fb:7e:13:66:24:14:dd:4a:b8:cd:67:0f:b5:
72:b7:fa:c8:bd:4d:e0:d4:14:e0:dc:85:d9:84:62:a5:a6:67:
8d:26:11:73:a3:52:5a:03:5a:42:2d:42:63:23:ac:65:83:a0:
d2:93:12:49:d3:a2:1a:63:b9:02:5e:c1:59:74:ef:50:2d:7c:
54:d4:2d:45:22:be:33:e3:d1:d8:2c:9f:04:1a:31:3b:44:43:
f7:37:61:f0:70:50:d6:8a:27:38:ce:2a:d1:50:76:6a:e3:eb:
d5:a1:23:b8:65:31:6c:cd:35:11:2d:05:e8:71:99:4d:c3:aa:
f2:9b:c0:4c:46:d9:45:4d:9e:a0:3c:a7:06:46:77:35:84:02:
aa:f2:58:81:b3:4b:85:5d:7c:17:3a:78:5f:13:03:06:bf:f6:
68:1a:9a:57:52:58:03:92:55:07:38:7a:de:fd:2c:a4:60:6d:
6e:8b:53:83:c0:7c:aa:ba:af:8e:6b:e0:82:84:03:63:26:a6:
4c:ed:91:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:15:03 2024 by rpki-client on console-ams.rpki-client.org