Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/7bab97-48a3-4ae7-a151-151bf34f468b/1/fHeS6Dpd36YUZYmdW45XC-EEBcw.roa
File: fHeS6Dpd36YUZYmdW45XC-EEBcw.roa (raw, json)
Hash identifier: b+0MJIR9uv8OzHYd1DAoR7k0KKer+XCklNvSv9bKFj4=
Subject key identifier: 7C:77:92:E8:3A:5D:DF:A6:14:65:89:9D:5B:8E:57:0B:E1:04:05:CC
Certificate issuer: /CN=77dfcf0982486869b71dbdb7cc613c4b381367c4
Certificate serial: 01856F301BAF93686245143653EC01116968
Authority key identifier: 77:DF:CF:09:82:48:68:69:B7:1D:BD:B7:CC:61:3C:4B:38:13:67:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9_PCYJIaGm3Hb23zGE8SzgTZ8Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/7bab97-48a3-4ae7-a151-151bf34f468b/1/fHeS6Dpd36YUZYmdW45XC-EEBcw.roa
Signing time: Sun 01 Jan 2023 21:15:01 +0000
ROA not before: Sun 01 Jan 2023 21:15:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211111
IP address blocks: 185.159.87.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:1b:af:93:68:62:45:14:36:53:ec:01:11:69:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77dfcf0982486869b71dbdb7cc613c4b381367c4
Validity
Not Before: Jan 1 21:15:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c7792e83a5ddfa61465899d5b8e570be10405cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:37:66:ac:a3:4b:ef:fb:a2:a3:24:be:78:14:
13:82:bb:57:a8:d6:54:06:da:ec:63:55:6f:16:93:
50:83:2c:bc:19:30:59:62:22:a4:82:e0:d7:b0:6e:
a3:8a:f2:eb:c6:42:ec:ed:2f:61:f1:71:8b:70:8a:
13:dd:74:5e:a9:99:47:6c:cb:a1:32:4e:47:36:98:
d3:6a:2b:30:07:49:72:b6:ac:28:83:43:12:e5:ce:
11:32:d3:f9:41:e0:8d:a7:82:5d:b6:1c:56:f0:d7:
b9:f0:47:7a:e9:82:2b:e7:b6:b8:db:bb:76:69:8a:
6e:c4:3d:59:51:59:a3:99:82:22:00:68:aa:3d:d0:
61:69:46:7c:61:d3:70:77:4d:08:7e:d9:d1:f5:5d:
78:df:c5:84:c8:7b:47:1f:27:01:c2:82:6a:85:92:
0c:64:48:47:b0:14:96:0f:7e:21:f4:1e:3e:22:c4:
b3:fa:4f:1d:22:a0:1c:fc:e5:29:df:69:0a:4d:82:
24:05:02:58:37:d1:16:f8:ad:00:d0:d3:2a:b0:a7:
63:25:75:5d:09:9e:a8:21:29:76:15:f7:7d:da:ec:
2c:fc:a8:02:6e:b0:07:fb:91:21:c7:dc:8b:38:ae:
eb:dd:88:34:d5:33:b7:4f:89:d5:f9:0d:2f:60:71:
8f:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:77:92:E8:3A:5D:DF:A6:14:65:89:9D:5B:8E:57:0B:E1:04:05:CC
X509v3 Authority Key Identifier:
keyid:77:DF:CF:09:82:48:68:69:B7:1D:BD:B7:CC:61:3C:4B:38:13:67:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9_PCYJIaGm3Hb23zGE8SzgTZ8Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7bab97-48a3-4ae7-a151-151bf34f468b/1/fHeS6Dpd36YUZYmdW45XC-EEBcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/7bab97-48a3-4ae7-a151-151bf34f468b/1/d9_PCYJIaGm3Hb23zGE8SzgTZ8Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.159.87.0/24
Signature Algorithm: sha256WithRSAEncryption
98:31:55:17:37:b5:81:b5:8c:ed:1e:d2:f7:06:bc:01:7f:59:
11:7e:a1:a0:37:79:5e:d3:ae:c7:73:24:18:1c:5e:85:3b:63:
af:26:14:d2:7f:53:d3:aa:2e:eb:a3:00:6c:72:54:e7:92:59:
73:4a:7b:d5:2f:e4:ab:cb:50:db:a0:77:03:48:4d:ef:e8:17:
b7:db:b5:e1:cc:fe:89:cd:87:fe:59:88:fb:9e:47:c5:1a:a8:
1c:b5:a1:dd:80:13:0e:7d:99:21:c8:c6:0d:35:70:50:4d:1f:
52:e9:36:de:0a:ea:db:5d:69:77:c8:f5:8f:79:6d:31:14:0a:
76:07:8f:0b:13:0e:77:ea:dc:7e:91:2b:5b:33:19:4d:08:fc:
27:5b:35:1d:19:04:b4:0e:ea:ea:7c:6d:21:9b:2e:01:68:b8:
64:5a:63:a7:65:a9:f5:b3:34:5b:31:e3:02:c8:a0:1f:f8:fc:
59:9a:d2:fc:65:75:2b:c4:43:17:59:c9:f5:70:44:9e:59:42:
4b:26:43:77:aa:39:e7:a0:49:28:fe:65:e2:74:35:b7:0c:67:
7a:e0:db:a6:44:06:b6:14:f1:f2:70:4f:d2:c8:00:f2:35:36:
d7:d4:45:e5:be:cd:81:1c:48:9e:9e:bc:65:ea:50:2e:a4:ee:
93:ec:56:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:11 2024 by rpki-client on console-fra.rpki-client.org