Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/AY3spVXT1veuJ0jpZ09uTEo-pTM.roa
File: AY3spVXT1veuJ0jpZ09uTEo-pTM.roa (raw, json)
Hash identifier: /4AfO6VcTBiWvea6XdzXzaJgMhsKIeOwQD0aZeSeZSE=
Subject key identifier: 01:8D:EC:A5:55:D3:D6:F7:AE:27:48:E9:67:4F:6E:4C:4A:3E:A5:33
Certificate issuer: /CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Certificate serial: 018673CAD16DE76D9F1EE22DC15441EC4005
Authority key identifier: 70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/AY3spVXT1veuJ0jpZ09uTEo-pTM.roa
Signing time: Tue 21 Feb 2023 11:45:17 +0000
ROA not before: Tue 21 Feb 2023 11:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 185.230.246.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:73:ca:d1:6d:e7:6d:9f:1e:e2:2d:c1:54:41:ec:40:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=706d3abbb478b74ef2adef9bb7c4336e34111d51
Validity
Not Before: Feb 21 11:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=018deca555d3d6f7ae2748e9674f6e4c4a3ea533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:01:ec:e3:8b:52:3a:97:c2:7e:95:95:a5:ce:
7d:c2:48:ec:4d:cc:3b:6d:c1:3c:f9:df:01:d0:bd:
6d:9e:be:26:3a:a0:19:ad:65:a7:b7:4a:a5:86:dc:
49:4b:5f:f1:bd:c8:de:3f:79:ae:7d:f1:3b:a7:c3:
aa:ba:9f:00:61:1a:ab:20:4d:2e:29:95:81:e9:5a:
30:d5:ab:7b:53:5e:76:3c:4f:11:69:cb:31:87:38:
c2:8b:2d:fe:ad:d9:1a:2c:6c:e2:e5:47:a4:eb:53:
8c:50:9b:ab:f1:f4:a2:27:f0:c4:4d:43:5e:ee:53:
af:95:f3:4e:07:1e:3e:ee:0b:ad:29:f3:7a:39:c4:
14:ff:c8:df:36:c3:32:3d:4e:fa:14:03:83:56:3a:
fa:9e:54:0b:08:79:c4:d9:a5:1f:73:36:ba:3f:bb:
da:48:95:5a:09:8a:78:f9:8a:62:8a:89:31:60:11:
18:e9:c7:1a:6e:c8:c9:ba:59:e3:9d:af:d5:d5:7f:
0e:94:14:9c:39:d6:7b:38:fa:b8:1d:37:03:c9:36:
c1:f9:e0:aa:89:76:da:8f:d5:c0:d1:5a:40:51:bd:
c4:ca:ea:db:33:58:5f:d0:bd:99:31:56:a4:d8:16:
4e:70:f4:7a:34:d1:63:f5:39:7e:a0:e5:1d:cc:15:
ee:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8D:EC:A5:55:D3:D6:F7:AE:27:48:E9:67:4F:6E:4C:4A:3E:A5:33
X509v3 Authority Key Identifier:
keyid:70:6D:3A:BB:B4:78:B7:4E:F2:AD:EF:9B:B7:C4:33:6E:34:11:1D:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cG06u7R4t07yre-bt8QzbjQRHVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/AY3spVXT1veuJ0jpZ09uTEo-pTM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0c6f47-4713-4471-b08f-a4213c93f1f7/1/cG06u7R4t07yre-bt8QzbjQRHVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.230.246.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:4d:23:c3:a2:df:6a:0e:4b:36:93:f3:5f:ae:76:ce:7a:c6:
ae:89:a8:74:0f:00:8e:06:02:e5:e5:97:df:dd:48:56:e8:6b:
5b:35:46:2b:0d:40:15:e8:2a:c0:dc:0a:4a:fb:e0:ce:25:42:
a3:d0:1a:c0:46:a7:bc:83:bc:64:fb:14:4c:40:93:b6:fe:85:
53:c4:8c:71:ca:1d:b9:8c:bd:8c:c9:bc:6a:d2:04:6e:61:9b:
06:fb:38:cc:d9:42:af:41:d6:30:97:af:95:8f:98:99:95:85:
7f:ab:04:64:e4:aa:42:9b:94:45:05:27:01:ef:7c:a4:81:f0:
72:27:d3:7b:78:1a:37:51:2b:aa:12:22:32:bf:4b:53:37:b8:
93:a6:ca:f6:f2:06:c3:6e:92:e4:ba:15:e7:14:e4:64:d2:97:
c9:b3:73:95:79:9c:af:0f:e0:a8:40:cf:a2:fc:42:4d:a7:1a:
fb:20:8d:82:a7:d3:42:ba:a0:91:64:ff:d6:a8:cb:33:2d:4b:
96:8f:e2:a5:20:b8:6a:3d:72:87:9a:59:f3:5b:98:7c:fb:98:
4b:ef:db:91:cb:ee:5f:a3:8d:ab:de:63:cb:7d:6e:22:02:ad:
f0:04:53:4c:24:73:84:f7:d8:85:e8:68:e7:3c:62:33:f3:db:
22:b2:b5:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:05 2023 by rpki-client on console-fra.rpki-client.org