Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/9a5d4d-162a-4c09-a47a-92b5e25d247b/1/6AEI43qnNFy_cbi7njRdQPpYEzc.roa
File: 6AEI43qnNFy_cbi7njRdQPpYEzc.roa (raw, json)
Hash identifier: xF0Hn58wkdg1JwchkA0fRCngeTBFDtiIOe6vCuSB9G0=
Subject key identifier: E8:01:08:E3:7A:A7:34:5C:BF:71:B8:BB:9E:34:5D:40:FA:58:13:37
Certificate issuer: /CN=1dcac99e7ca15d0c990420ee316d9aab84cc847f
Certificate serial: 01856D2F4ABE3C810388940570A54CAB74DB
Authority key identifier: 1D:CA:C9:9E:7C:A1:5D:0C:99:04:20:EE:31:6D:9A:AB:84:CC:84:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HcrJnnyhXQyZBCDuMW2aq4TMhH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/9a5d4d-162a-4c09-a47a-92b5e25d247b/1/6AEI43qnNFy_cbi7njRdQPpYEzc.roa
Signing time: Sun 01 Jan 2023 11:54:53 +0000
ROA not before: Sun 01 Jan 2023 11:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 85.236.136.0/21 maxlen: 21
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:4a:be:3c:81:03:88:94:05:70:a5:4c:ab:74:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1dcac99e7ca15d0c990420ee316d9aab84cc847f
Validity
Not Before: Jan 1 11:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e80108e37aa7345cbf71b8bb9e345d40fa581337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:a1:7d:87:d0:d5:a3:88:74:bd:29:af:41:36:
6a:b0:0a:92:3d:c0:ca:2f:9c:3c:ad:03:ba:0a:33:
ad:9f:4d:fe:21:87:79:81:16:66:92:46:5d:b2:2e:
c7:65:ef:8a:e1:a9:26:af:90:d1:a8:88:cc:b3:34:
35:31:dc:e5:52:cc:e1:ce:63:97:64:01:06:2f:b0:
0f:75:3f:d0:6a:b1:52:4e:f5:0b:25:b2:ae:64:e4:
41:e4:b7:ee:8f:d4:c6:c4:57:26:4e:c1:0b:a6:6f:
f7:cb:36:65:5b:de:79:ac:14:01:49:30:5f:bb:97:
cc:05:c9:2f:58:e1:b2:bf:1f:02:94:e2:82:f2:f4:
f5:79:74:8a:c8:9b:56:59:de:d7:dd:e9:e9:81:69:
c5:f8:26:ca:cc:c8:ba:ce:46:3f:3c:c9:02:6f:16:
f7:62:b9:df:b4:7d:fe:f4:f5:c5:35:61:dd:f1:59:
c8:e5:b3:e1:a5:61:c4:18:8d:d0:2f:36:f5:2a:26:
bb:76:34:3d:e4:d4:a6:cf:bb:3e:b0:dc:29:b9:d1:
28:0b:61:99:cf:51:11:99:a5:a0:ad:12:32:f2:55:
25:0a:ed:45:af:74:32:10:e5:51:49:7d:b9:46:e9:
12:48:b7:75:3d:cf:11:14:56:1d:ca:fc:02:bc:40:
69:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:01:08:E3:7A:A7:34:5C:BF:71:B8:BB:9E:34:5D:40:FA:58:13:37
X509v3 Authority Key Identifier:
keyid:1D:CA:C9:9E:7C:A1:5D:0C:99:04:20:EE:31:6D:9A:AB:84:CC:84:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HcrJnnyhXQyZBCDuMW2aq4TMhH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/9a5d4d-162a-4c09-a47a-92b5e25d247b/1/6AEI43qnNFy_cbi7njRdQPpYEzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/9a5d4d-162a-4c09-a47a-92b5e25d247b/1/HcrJnnyhXQyZBCDuMW2aq4TMhH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.236.136.0/21
Signature Algorithm: sha256WithRSAEncryption
b9:a0:02:29:be:b1:ec:8d:51:4e:29:70:05:63:1c:14:51:e1:
e7:8f:0e:61:78:1e:21:3a:f1:ee:68:99:15:d9:e0:ab:1e:7c:
bd:9f:ae:9a:5b:2c:c6:2c:a4:49:0d:2d:eb:14:50:83:bb:01:
bb:47:63:e2:12:27:04:a4:d8:83:49:7a:7a:67:75:b2:a4:97:
5c:20:ce:36:36:19:84:e7:19:6b:a9:b9:51:b7:bf:2c:97:5c:
2b:21:56:24:02:e9:09:93:b5:04:6d:8d:c7:ce:a6:cb:69:98:
a2:4c:5d:65:26:f5:54:89:9c:df:d0:4c:0b:42:b9:28:21:d1:
c0:8c:c4:9e:5b:5c:4d:09:78:08:e6:17:d7:a9:37:d4:87:82:
e6:52:12:59:c9:ec:2c:33:4e:18:0a:92:1a:5f:50:6b:45:f6:
ec:0c:62:7f:99:4d:4c:e0:b8:dc:35:da:2d:4a:ac:67:1b:84:
1f:22:ee:b4:ef:0c:75:be:62:b9:b0:7f:8d:e9:2e:00:b6:f7:
14:f2:97:8b:27:f8:cc:07:5b:98:4a:5f:1c:3d:b3:bb:33:54:
8e:c7:fa:17:71:ee:0b:88:1b:a2:7e:a6:cc:23:38:ae:da:94:
36:9c:9a:2a:39:4c:fb:14:21:b5:24:97:ea:c9:25:c2:7f:f6:
46:a4:28:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:05 2024 by rpki-client on console-fra.rpki-client.org