Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/keKDr74kvWgN9o93EFTY2FJ5cOo.roa
File: keKDr74kvWgN9o93EFTY2FJ5cOo.roa (raw, json)
Hash identifier: 4+Vt4Y2l1GLho0mQ8mG8g0e2c01J+4ppnMy51Gic4kE=
Subject key identifier: 91:E2:83:AF:BE:24:BD:68:0D:F6:8F:77:10:54:D8:D8:52:79:70:EA
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01856ECB8DB1251A49C2CECFDB2E93466E88
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/keKDr74kvWgN9o93EFTY2FJ5cOo.roa
Signing time: Sun 01 Jan 2023 19:25:11 +0000
ROA not before: Sun 01 Jan 2023 19:25:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54975
IP address blocks: 185.254.18.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:cb:8d:b1:25:1a:49:c2:ce:cf:db:2e:93:46:6e:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Jan 1 19:25:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91e283afbe24bd680df68f771054d8d8527970ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1a:66:1e:7c:61:f0:4c:54:e3:f9:ed:fd:0d:
54:9c:63:cc:4c:8c:d0:39:b6:cd:fa:d0:76:e0:a7:
1e:7f:b1:bd:6f:19:96:da:66:70:e8:58:4c:61:77:
46:53:e4:a3:6a:ad:f1:59:fc:31:a0:dd:01:23:49:
2a:a0:af:35:87:e8:09:7e:76:9e:df:a6:f1:8c:18:
2c:cc:8d:bb:85:ad:8b:8f:e8:be:1e:cd:4a:6c:1f:
15:05:9f:4c:17:90:b4:a2:c5:06:e4:e0:db:53:af:
a2:ff:6e:48:d9:25:d0:a6:b2:84:74:94:03:24:ba:
cb:fe:57:8e:27:e4:a1:3d:3f:dc:15:bd:49:d2:64:
10:72:33:b4:0a:9f:62:27:1d:cf:45:59:93:fb:43:
c9:b9:1b:dd:81:b8:b1:ad:88:29:f0:47:ff:7c:cd:
33:e6:5c:93:17:e4:75:4f:23:17:3e:40:f7:45:1c:
1e:6b:86:87:a3:ae:fa:2a:4f:5b:56:b6:45:59:42:
7f:d1:f8:c1:78:c7:96:1f:25:b9:3a:20:03:74:62:
c7:3d:d3:c8:16:a3:7d:2a:7e:e0:84:f5:d3:17:17:
de:49:44:b6:13:4d:38:bd:98:ef:99:a6:20:39:a6:
a3:6f:79:a5:c9:0d:c2:74:79:b3:5f:75:5c:25:36:
14:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:E2:83:AF:BE:24:BD:68:0D:F6:8F:77:10:54:D8:D8:52:79:70:EA
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/keKDr74kvWgN9o93EFTY2FJ5cOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.18.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:dd:2a:0d:c4:3b:4c:a8:99:97:14:41:61:46:8f:28:f2:14:
04:9d:4c:43:d0:3c:c9:36:ea:52:12:e1:ea:f5:bc:bc:49:a1:
95:97:67:c8:27:56:9e:fc:ed:05:61:3c:e3:8f:44:31:65:9f:
ed:48:1f:3a:2e:f6:07:8b:38:a1:54:d2:08:8a:ae:27:f1:b0:
da:38:b0:01:9b:0f:83:d7:f9:9d:b6:34:65:65:82:1d:1e:f4:
b0:43:f4:d9:1d:09:5d:be:f7:2a:d6:10:1d:b0:7b:af:4a:4b:
7b:16:17:3a:a7:47:b5:f0:14:93:5a:fc:15:2c:89:63:af:4a:
27:c2:0d:33:09:23:43:71:99:72:c0:a6:58:55:03:60:61:15:
0e:44:29:ed:72:04:8d:82:6c:22:b9:f0:b0:60:93:13:df:ef:
99:9b:44:05:af:0f:6d:61:60:4c:d1:b1:70:6a:36:b8:1f:15:
a5:a6:ad:07:c1:bf:d1:d2:37:b2:94:52:7b:d3:d3:a5:27:58:
1a:e6:e6:7d:2a:fb:ff:c2:78:44:85:8d:49:ae:71:5a:d4:06:
79:42:a3:8e:17:b0:74:7b:af:4b:a7:eb:53:ef:1a:eb:19:a9:
c2:3d:80:39:6d:1e:2f:3e:e5:d9:62:2f:13:9a:b8:bb:ce:19:
dd:87:9e:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org