Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/M1mJuEhZ5BdbpdYGwXD__mo2Hiw.roa
File: M1mJuEhZ5BdbpdYGwXD__mo2Hiw.roa (raw, json)
Hash identifier: jiIjQJGdGjGeTIaSWkbPm4memeD7q9rV4lEHYcMX7oA=
Subject key identifier: 33:59:89:B8:48:59:E4:17:5B:A5:D6:06:C1:70:FF:FE:6A:36:1E:2C
Certificate issuer: /CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Certificate serial: 01857246EB9D26A75D4BDBB217433B475501
Authority key identifier: 69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/M1mJuEhZ5BdbpdYGwXD__mo2Hiw.roa
Signing time: Mon 02 Jan 2023 11:38:48 +0000
ROA not before: Mon 02 Jan 2023 11:38:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206880
IP address blocks: 185.20.232.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:eb:9d:26:a7:5d:4b:db:b2:17:43:3b:47:55:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69eb002f000bd426e4a640c71d6c0201b5050e34
Validity
Not Before: Jan 2 11:38:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=335989b84859e4175ba5d606c170fffe6a361e2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ec:90:50:60:b3:90:cc:75:eb:35:a9:da:88:
8a:a8:52:7a:6e:21:e9:11:6b:90:6f:40:c2:68:27:
95:db:7b:47:3c:b1:4d:e6:3f:9e:d8:f4:c6:d6:fc:
30:de:77:90:4f:32:e1:da:40:d0:1f:59:65:74:42:
46:07:d2:9a:65:78:13:43:65:cc:d8:2a:0a:d6:df:
72:ba:30:33:22:83:67:0a:8f:cc:97:f9:12:83:95:
cb:2c:c3:38:0c:7a:9c:89:0c:d1:63:55:6a:43:05:
28:26:b2:1f:b1:72:8e:dd:cc:4d:e3:5c:6d:7b:8d:
b2:44:69:b3:b6:23:6a:52:7e:42:24:54:72:f0:03:
55:e1:0c:f6:e2:f2:2f:d0:e8:41:c7:28:f6:b2:5e:
4e:27:52:00:22:f9:34:82:a2:5a:c7:95:da:a2:29:
af:b5:50:80:fe:ae:b4:e5:bd:bb:24:b9:21:4f:d5:
f5:51:56:05:da:34:74:5d:a7:1c:1e:73:9d:5d:98:
a6:f0:98:6f:58:48:f7:a8:39:04:4a:ef:cf:fd:21:
5b:4a:bc:36:8a:6e:bd:5a:72:49:5d:c9:35:1a:c9:
22:ee:c9:a1:aa:5b:41:b1:01:e4:91:37:2f:f9:b6:
81:e3:8b:76:2d:9a:1c:67:35:c2:bf:7a:91:b9:95:
0a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:59:89:B8:48:59:E4:17:5B:A5:D6:06:C1:70:FF:FE:6A:36:1E:2C
X509v3 Authority Key Identifier:
keyid:69:EB:00:2F:00:0B:D4:26:E4:A6:40:C7:1D:6C:02:01:B5:05:0E:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aesALwAL1CbkpkDHHWwCAbUFDjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/M1mJuEhZ5BdbpdYGwXD__mo2Hiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d3e682-3370-4271-9437-785475c22c9b/1/aesALwAL1CbkpkDHHWwCAbUFDjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.232.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:22:e2:1a:22:bf:ae:5f:89:6f:67:01:de:f8:bc:83:1a:49:
6f:10:54:55:3a:c5:aa:1c:7b:b4:89:20:aa:fe:08:a5:11:2c:
85:76:49:3b:9b:8d:18:6a:50:8d:a9:90:ff:51:02:c7:4d:5a:
89:2e:b3:d5:91:5a:09:6d:21:ca:38:26:f3:1f:81:26:23:09:
36:62:4a:21:3c:37:75:16:e7:aa:02:0b:21:22:16:1d:d8:9b:
54:19:a4:95:67:be:fa:b4:3a:46:a7:3a:f4:5b:b3:63:c8:53:
8a:08:96:05:f3:03:7d:41:cc:14:ba:25:40:d0:b8:8c:7d:35:
7a:99:53:a7:4d:ad:c4:59:ee:32:8d:d2:bf:29:c0:99:fe:10:
d5:61:0e:9b:52:d9:f4:73:f3:62:1a:d3:19:5a:bc:5b:35:e0:
8d:12:ef:c2:a2:7e:e8:4a:61:dc:2b:91:1e:40:95:75:75:ec:
f3:48:f1:e0:03:e0:b2:cc:1e:56:86:2c:73:0f:05:9c:f5:b3:
f6:34:65:b8:72:36:38:5c:0f:e5:5a:65:75:de:c6:60:e8:33:
fb:e7:bd:6d:6c:8c:9f:7a:44:35:ec:29:0f:90:fb:f3:ee:b9:
cb:87:d1:2b:53:2d:96:4a:57:d4:75:f0:96:96:52:b8:96:77:
99:2d:b7:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org