Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/3Ltv5mlDv-Z332JC57YU2s85oZk.roa
File: 3Ltv5mlDv-Z332JC57YU2s85oZk.roa (raw, json)
Hash identifier: 4I21m1WTNN8RA6YBRWkzHbgEbNeFcZ/D8QzMqGeRK9o=
Subject key identifier: DC:BB:6F:E6:69:43:BF:E6:77:DF:62:42:E7:B6:14:DA:CF:39:A1:99
Certificate issuer: /CN=4c81273dcb03c3457b79250be109e19a5e74f0fd
Certificate serial: 018A1B79D939EB54814403C149F5A7812231
Authority key identifier: 4C:81:27:3D:CB:03:C3:45:7B:79:25:0B:E1:09:E1:9A:5E:74:F0:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TIEnPcsDw0V7eSUL4Qnhml508P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/3Ltv5mlDv-Z332JC57YU2s85oZk.roa
Signing time: Tue 22 Aug 2023 04:21:24 +0000
ROA not before: Tue 22 Aug 2023 04:21:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 185.87.218.0/24 maxlen: 28
2a13:85c0::/40 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1b:79:d9:39:eb:54:81:44:03:c1:49:f5:a7:81:22:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c81273dcb03c3457b79250be109e19a5e74f0fd
Validity
Not Before: Aug 22 04:21:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dcbb6fe66943bfe677df6242e7b614dacf39a199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a9:02:48:0f:03:3f:f5:3a:ef:09:09:6a:be:
d0:0f:09:7f:b8:ec:c9:7a:fb:21:ea:ec:a1:0d:af:
c0:34:66:90:37:22:0e:1e:a2:44:07:93:2a:7f:c5:
79:ed:f9:e1:4c:09:9f:37:f9:a4:9b:7c:19:99:d0:
c1:75:9a:38:ef:c0:65:b2:06:e2:fd:f8:77:db:f2:
63:2c:db:43:5f:93:1f:16:70:b0:34:2d:f3:27:7f:
c7:58:3d:d5:10:84:85:36:d6:4d:4a:d3:78:b2:02:
7c:cd:25:bb:96:20:1e:79:50:ec:4b:60:ca:ba:9e:
c9:61:74:7d:e8:d1:46:dd:3d:8b:7f:2b:6e:23:4c:
fe:81:f9:0e:68:03:a4:45:3c:36:54:97:c1:60:ce:
c0:84:c5:a0:7f:69:d1:1a:b6:41:78:c0:83:fa:5a:
5d:42:40:f0:48:26:d7:94:79:1c:34:08:be:a2:4a:
b3:03:5d:bf:c9:f2:71:17:ef:93:f8:de:32:c0:61:
c2:1c:5d:4e:88:ef:81:15:ac:ef:95:4a:81:1b:59:
4a:de:f3:a3:6f:33:28:fd:23:cc:e9:c4:4f:58:29:
a8:fc:44:de:3f:8e:ee:bb:76:f7:ff:ab:a1:23:79:
e3:43:6b:62:00:e8:73:7d:cd:9b:a9:c2:e0:8b:de:
d6:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BB:6F:E6:69:43:BF:E6:77:DF:62:42:E7:B6:14:DA:CF:39:A1:99
X509v3 Authority Key Identifier:
keyid:4C:81:27:3D:CB:03:C3:45:7B:79:25:0B:E1:09:E1:9A:5E:74:F0:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TIEnPcsDw0V7eSUL4Qnhml508P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/3Ltv5mlDv-Z332JC57YU2s85oZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/18c7dd-241b-4b92-8ebf-77794fbfd2e4/1/TIEnPcsDw0V7eSUL4Qnhml508P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.87.218.0/24
IPv6:
2a13:85c0::/40
Signature Algorithm: sha256WithRSAEncryption
4d:b7:41:c8:63:f4:d2:59:63:1b:25:11:4d:1e:db:2f:19:7b:
37:5c:2a:af:fd:78:3c:c5:78:c7:4f:b2:13:42:0c:e5:77:ba:
62:11:f0:74:43:23:c1:b0:1d:18:4c:b1:49:a4:ac:a1:6f:71:
96:3b:54:77:8e:de:22:f5:f7:b2:4c:c7:4f:1f:4f:06:23:35:
7b:f9:05:ff:7d:e4:e5:56:bc:c1:51:1e:57:8a:98:76:d5:a0:
7a:b0:c0:96:46:95:9a:8d:65:eb:7a:91:0d:5d:95:d3:14:3b:
7a:63:6e:36:c0:36:fb:b0:17:9c:35:78:e5:fc:ab:5a:b1:12:
a4:fa:d6:d0:c9:35:c6:68:10:e3:55:fc:82:b8:0b:ad:c3:e4:
41:25:b2:0a:3c:45:ba:82:85:c5:11:3a:ef:ef:1a:77:e3:49:
99:b8:50:b3:63:d1:32:c3:c0:5e:9a:d3:14:ca:69:37:1b:07:
b4:c9:fc:a9:8f:8e:72:a8:e9:0f:c3:9f:ad:e7:ea:04:58:2d:
df:c2:ac:37:c9:9e:7b:02:3f:6f:c2:d8:fe:94:0f:83:3e:d2:
19:65:ed:09:49:0e:53:9a:17:5e:62:eb:b1:1e:63:3e:f0:9b:
a8:73:0f:78:36:2d:44:c4:e4:ab:3b:cd:1e:29:92:b7:91:89:
47:f7:69:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 30 12:51:52 2023 by rpki-client on console-fra.rpki-client.org