Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/fHWYBe0GHc803tXpz_v6nSLvwy0.roa
File: fHWYBe0GHc803tXpz_v6nSLvwy0.roa (raw, json)
Hash identifier: 4Y5yXSL3cRb6eYRiXEollRzDh3uaVD2KgOnz/IWxngE=
Subject key identifier: 7C:75:98:05:ED:06:1D:CF:34:DE:D5:E9:CF:FB:FA:9D:22:EF:C3:2D
Certificate issuer: /CN=66f983138969f8da674f7b5c0133e0c2d029b4c8
Certificate serial: 01856E2F800AE68BB3600907BBC3ADE887A4
Authority key identifier: 66:F9:83:13:89:69:F8:DA:67:4F:7B:5C:01:33:E0:C2:D0:29:B4:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZvmDE4lp-NpnT3tcATPgwtAptMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/fHWYBe0GHc803tXpz_v6nSLvwy0.roa
Signing time: Sun 01 Jan 2023 16:34:44 +0000
ROA not before: Sun 01 Jan 2023 16:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61417
IP address blocks: 185.90.124.0/22 maxlen: 22
2a03:87a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:80:0a:e6:8b:b3:60:09:07:bb:c3:ad:e8:87:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66f983138969f8da674f7b5c0133e0c2d029b4c8
Validity
Not Before: Jan 1 16:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c759805ed061dcf34ded5e9cffbfa9d22efc32d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c7:e5:25:2f:1d:16:37:cd:0c:fe:0a:7e:41:
0d:19:87:d7:b3:f9:24:54:3a:f7:f5:a4:8c:cb:5c:
ff:ce:ba:f7:02:8e:d5:b0:e4:d9:e0:22:5a:a3:89:
c0:2b:53:e9:7d:86:ce:ff:09:11:6b:64:50:1e:48:
93:31:42:df:20:c1:b4:75:bb:3b:01:bf:0b:c2:04:
ac:59:79:20:bf:b0:78:7b:4c:78:77:a0:fe:19:48:
4d:f3:3c:d0:e7:0f:42:18:91:3f:96:87:1a:02:89:
01:3a:a6:43:2d:10:e3:0c:25:cc:f8:1b:44:9b:61:
2a:77:fb:7a:31:74:2c:ec:2e:11:92:87:eb:4d:f1:
40:02:df:70:b4:02:4a:82:28:10:f7:43:f6:71:4e:
6c:8e:d0:82:7b:10:12:e0:69:af:9e:a0:21:d6:9d:
e8:d1:5c:63:ae:fa:72:a6:7f:c7:a4:eb:f5:ff:11:
6b:2b:20:0f:82:e4:3d:ea:08:0b:50:b8:a3:26:2c:
fe:48:7c:e3:0b:22:db:39:ad:f5:3c:ec:52:fe:ac:
f7:f1:d7:f2:86:b1:b1:71:a9:ef:bf:b2:3b:2b:c3:
ca:46:a8:83:dc:81:cf:19:c7:a4:d0:78:78:fb:63:
36:c3:4a:23:43:25:41:03:0e:76:4e:c3:93:3f:d0:
86:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:75:98:05:ED:06:1D:CF:34:DE:D5:E9:CF:FB:FA:9D:22:EF:C3:2D
X509v3 Authority Key Identifier:
keyid:66:F9:83:13:89:69:F8:DA:67:4F:7B:5C:01:33:E0:C2:D0:29:B4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZvmDE4lp-NpnT3tcATPgwtAptMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/fHWYBe0GHc803tXpz_v6nSLvwy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b8169b-8bfd-40ff-b9ba-403043048118/1/ZvmDE4lp-NpnT3tcATPgwtAptMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.124.0/22
IPv6:
2a03:87a0::/32
Signature Algorithm: sha256WithRSAEncryption
10:23:50:2c:29:69:8b:c4:35:c9:4f:a4:31:85:a4:71:3a:4b:
ed:4d:d6:13:c2:7b:b8:a1:b8:e8:ac:ee:e1:03:03:df:59:c8:
9d:c9:de:2f:99:5f:55:d3:b4:78:0e:ec:04:16:38:98:00:61:
40:84:31:60:43:25:71:15:fa:2e:db:08:a9:1a:0d:b7:a1:19:
d3:d7:1b:e8:68:05:1e:2c:8c:e4:cc:0b:e3:5b:be:ec:90:e7:
0d:21:fb:1c:34:61:ac:b8:c0:7d:d7:4e:0b:7c:61:2d:77:13:
33:af:43:5e:1d:6f:5a:45:ad:5f:b4:3b:4f:51:2e:86:b0:28:
a0:64:55:a7:9f:6d:bc:59:f1:a4:b8:98:21:e3:5f:22:51:08:
41:50:24:51:76:7c:ae:b7:1e:41:0c:29:04:58:c4:d9:6a:8f:
d8:10:11:27:ff:82:c8:99:2f:2f:24:2f:a6:7e:f7:dc:5a:af:
bb:ad:0f:f5:70:91:7d:36:18:92:41:38:b9:b4:be:23:4c:eb:
82:7a:52:94:b8:30:2c:d9:a8:a0:75:53:b4:45:4f:80:9d:6d:
0a:24:53:82:af:41:0c:3b:cd:e2:ac:88:3a:69:6f:dd:47:3b:
7b:71:3f:1b:7e:56:5d:cc:b4:35:46:ac:d8:b8:a9:6a:e8:db:
2c:9a:99:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:02 2024 by rpki-client on console-ams.rpki-client.org