Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/cc1NOM4Vxe86eRdnNUQNqa8_9cY.roa
File: cc1NOM4Vxe86eRdnNUQNqa8_9cY.roa (raw, json)
Hash identifier: YGI7vjs3qLOjnlfUo0qqk9TjYRwCcSbOWBnCZUn0OtI=
Subject key identifier: 71:CD:4D:38:CE:15:C5:EF:3A:79:17:67:35:44:0D:A9:AF:3F:F5:C6
Certificate issuer: /CN=7c835498f35199a1571964d855c3877751681ab9
Certificate serial: 01856E2FB9A6F72535CEACBD3D3654A83449
Authority key identifier: 7C:83:54:98:F3:51:99:A1:57:19:64:D8:55:C3:87:77:51:68:1A:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fINUmPNRmaFXGWTYVcOHd1FoGrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/cc1NOM4Vxe86eRdnNUQNqa8_9cY.roa
Signing time: Sun 01 Jan 2023 16:34:59 +0000
ROA not before: Sun 01 Jan 2023 16:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61207
IP address blocks: 185.15.120.0/22 maxlen: 22
2a02:fc00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 19 Oct 2023 10:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:b9:a6:f7:25:35:ce:ac:bd:3d:36:54:a8:34:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c835498f35199a1571964d855c3877751681ab9
Validity
Not Before: Jan 1 16:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71cd4d38ce15c5ef3a79176735440da9af3ff5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:31:f3:ba:df:46:fa:b1:ca:5a:fc:cf:ef:ec:
d1:d1:8a:2f:ac:b0:07:81:44:98:8e:89:ec:ab:be:
bc:cb:ac:54:74:ef:a4:00:0b:66:72:14:de:2b:3a:
ff:89:2f:d4:ea:d1:40:f0:7e:f2:3a:58:f1:e5:2a:
3a:b5:ff:91:0e:0e:be:71:5b:1b:ee:26:00:c7:12:
70:9a:e3:ba:99:5c:f2:5d:e6:59:f2:33:a1:be:22:
76:00:62:65:15:b2:3a:d4:41:3d:bf:23:cd:62:f0:
7f:4b:cf:4f:1c:de:9e:fc:6c:02:12:12:19:1d:77:
53:c8:5e:3b:96:d5:31:60:19:c4:12:09:66:f5:04:
f0:2d:bc:1b:ed:f9:b2:c9:d4:b4:a3:2c:f7:b0:4c:
2e:a0:f6:8c:80:05:99:65:e2:9a:51:93:55:bf:4a:
3b:9d:9e:d8:01:4c:c3:8b:e1:c2:56:81:ed:20:49:
e0:2a:50:57:54:bc:92:d6:31:eb:f8:b7:5f:21:b5:
2a:86:30:a2:87:0a:f4:8b:92:84:6b:ef:71:ed:7c:
34:21:ea:32:db:5f:34:29:16:70:d9:4b:37:32:89:
33:a4:eb:96:68:bd:c1:23:5b:ef:7e:30:de:a5:54:
a7:46:b2:3f:aa:e5:2c:71:b1:55:0c:83:a3:fd:04:
c1:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:CD:4D:38:CE:15:C5:EF:3A:79:17:67:35:44:0D:A9:AF:3F:F5:C6
X509v3 Authority Key Identifier:
keyid:7C:83:54:98:F3:51:99:A1:57:19:64:D8:55:C3:87:77:51:68:1A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fINUmPNRmaFXGWTYVcOHd1FoGrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/cc1NOM4Vxe86eRdnNUQNqa8_9cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/9f8ae2-0fb5-4c04-ad93-4ce477dbb407/1/fINUmPNRmaFXGWTYVcOHd1FoGrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.15.120.0/22
IPv6:
2a02:fc00::/29
Signature Algorithm: sha256WithRSAEncryption
1e:d2:da:74:44:f4:9f:d6:0f:9d:14:f3:1a:11:02:31:57:52:
dc:07:22:1e:3d:99:84:6b:44:2b:2f:2f:3e:ea:8c:0b:62:41:
6f:d7:6e:b3:59:5c:a2:cf:8b:f9:17:88:d0:59:19:95:a4:fc:
bc:d1:64:d6:5f:ef:32:b7:61:44:af:c8:a8:a6:1c:e0:ee:62:
7d:d9:9c:86:9d:ff:87:27:bf:b1:b6:e9:8c:12:32:02:d9:e3:
39:8b:ea:2c:1b:14:bf:d7:9f:db:bb:ab:3d:2c:96:00:db:a3:
fe:02:98:fd:58:4a:03:fc:f8:8f:16:4e:ee:d5:09:6d:42:1b:
09:d1:d8:aa:cd:73:d8:18:4e:dc:7e:72:c8:e2:12:d4:19:50:
55:75:64:84:21:bf:86:59:e8:8d:e7:23:5a:d0:a5:1d:a9:2a:
1b:e6:60:a3:35:ed:e2:29:5f:9b:28:be:91:74:4b:96:a6:0a:
a2:60:fc:fd:a5:0d:52:03:d7:d9:6f:e2:83:59:fd:fd:a4:1d:
f7:be:c1:fb:97:bb:f7:7c:d5:46:3e:2e:c3:2c:12:6c:5a:38:
75:d4:00:f1:7a:10:3a:0d:61:7c:d6:df:90:58:c9:c6:bb:ca:
0e:22:27:58:1a:9f:32:a6:7d:21:e7:50:ac:22:4a:52:04:41:
83:52:01:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:38 2024 by rpki-client on console-fra.rpki-client.org