Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/fKqn6hHVF-JZOBDqx92kHNUXxHA.roa
File: fKqn6hHVF-JZOBDqx92kHNUXxHA.roa (raw, json)
Hash identifier: J/JECNcM7RQBfwJTYoN7zgsF2gxkAGVjYqTy992au7g=
Subject key identifier: 7C:AA:A7:EA:11:D5:17:E2:59:38:10:EA:C7:DD:A4:1C:D5:17:C4:70
Certificate issuer: /CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Certificate serial: 01856E8B21D84037A381E00D608F28CAEA37
Authority key identifier: 4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/fKqn6hHVF-JZOBDqx92kHNUXxHA.roa
Signing time: Sun 01 Jan 2023 18:14:49 +0000
ROA not before: Sun 01 Jan 2023 18:14:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27323
IP address blocks: 185.255.115.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:21:d8:40:37:a3:81:e0:0d:60:8f:28:ca:ea:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f8aea2f025f495beacee7ce5a8820519dda1370
Validity
Not Before: Jan 1 18:14:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7caaa7ea11d517e2593810eac7dda41cd517c470
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5c:d7:b1:c3:59:51:d7:5f:f5:19:3f:a6:70:
08:ee:e2:64:ad:fb:98:66:3b:d4:25:6c:a6:35:f7:
86:da:fc:f3:ca:5b:c7:c4:f5:46:4a:17:32:84:05:
3b:61:0c:15:84:64:1f:76:eb:62:5c:69:5e:72:98:
ba:3d:4c:78:a4:09:ff:be:9a:1c:1c:71:79:35:d4:
6b:a1:c1:2a:4f:a6:bd:58:d8:41:7e:89:5c:77:83:
ab:07:de:90:ab:54:93:18:60:34:45:f7:48:36:a1:
11:17:3c:c8:cb:39:c9:0d:79:dd:7b:08:4f:a8:fd:
f1:99:a3:8a:b4:76:68:0b:02:d2:53:45:b8:f7:e5:
e7:4d:ed:bb:f1:48:73:69:43:c0:2d:5c:f5:4a:e5:
23:9a:89:26:24:3e:12:56:80:dc:47:56:ee:be:36:
f4:e8:80:ac:b5:50:64:41:94:5e:18:12:06:99:53:
5b:53:fb:b8:88:55:11:fd:d7:16:5e:ad:73:0a:04:
a2:49:95:7e:62:02:4e:de:36:f6:0f:f2:9a:a2:57:
19:af:2a:ec:67:6b:9a:e1:60:00:91:b4:7b:28:16:
b8:04:10:28:8b:8f:41:df:cb:c0:b8:c0:a6:9b:26:
91:e9:94:36:d6:db:3e:53:e7:1e:b6:c3:53:02:c7:
c7:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:AA:A7:EA:11:D5:17:E2:59:38:10:EA:C7:DD:A4:1C:D5:17:C4:70
X509v3 Authority Key Identifier:
keyid:4F:8A:EA:2F:02:5F:49:5B:EA:CE:E7:CE:5A:88:20:51:9D:DA:13:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T4rqLwJfSVvqzufOWoggUZ3aE3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/fKqn6hHVF-JZOBDqx92kHNUXxHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/eb70a3-17e1-4d86-8b9e-6080952f0e04/1/T4rqLwJfSVvqzufOWoggUZ3aE3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.115.0/24
Signature Algorithm: sha256WithRSAEncryption
12:70:d4:21:93:d6:7b:2f:3e:a0:f2:93:3d:a8:49:d3:23:62:
3d:56:92:af:6b:9b:6b:46:fb:ed:e0:96:a5:0b:ca:3e:9c:6c:
7a:40:c8:71:99:57:b0:69:0f:77:97:61:e7:a2:23:21:50:b5:
c9:f8:f7:5d:c8:7d:71:ae:51:c8:7d:9d:40:7a:95:26:5d:89:
a5:a3:d7:8c:78:64:88:c0:73:31:b4:21:0b:66:7c:07:62:a2:
70:31:d9:46:44:10:c6:49:a7:87:24:86:4f:1c:2e:01:71:80:
24:4a:f7:d3:53:06:68:b4:28:56:a9:d4:04:d5:31:be:a7:76:
b4:63:aa:7d:97:58:1d:82:c8:d0:95:1d:c2:6e:39:04:bb:1f:
54:b5:33:a8:d2:5a:1b:08:7a:f6:f8:e5:bd:6b:94:eb:03:f8:
f0:33:a5:61:b7:32:4b:0a:67:31:1a:34:c3:88:88:8f:3c:7d:
f1:85:a8:d3:ad:e3:e9:c5:0c:de:12:ec:99:c1:20:d0:29:9b:
64:b7:f8:38:a9:e2:88:98:45:f9:43:bb:55:68:e4:76:82:bb:
3a:0d:44:ac:b7:a1:d7:ec:e7:fe:60:6c:fe:6d:5d:c6:6d:b2:
c4:15:77:9f:e2:6f:6a:ec:65:64:df:0f:34:23:92:81:65:92:
d1:c9:0b:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:58 2024 by rpki-client on console-ams.rpki-client.org