Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/cbRPxBN28vjfOqruB1YUDO38wuo.roa
File: cbRPxBN28vjfOqruB1YUDO38wuo.roa (raw, json)
Hash identifier: 11ey2quslRB2ZeaZ1vQjaMDx+mOFq6yrpgOmrcUh4Go=
Subject key identifier: 71:B4:4F:C4:13:76:F2:F8:DF:3A:AA:EE:07:56:14:0C:ED:FC:C2:EA
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01856C8A55D5E23C59DB2357AF62E4532031
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/cbRPxBN28vjfOqruB1YUDO38wuo.roa
Signing time: Sun 01 Jan 2023 08:54:43 +0000
ROA not before: Sun 01 Jan 2023 08:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34078
IP address blocks: 185.180.128.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:55:d5:e2:3c:59:db:23:57:af:62:e4:53:20:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 08:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=71b44fc41376f2f8df3aaaee0756140cedfcc2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9e:50:ca:0a:81:40:f7:e6:1a:ee:19:83:84:
af:5e:10:d5:50:30:fc:5b:d8:e2:69:6c:35:20:ff:
85:8b:d5:ce:7e:00:84:5e:8e:63:cd:37:19:30:24:
93:a4:b2:d6:4a:fb:2f:31:a0:9c:b0:b6:14:8f:28:
95:22:38:79:7c:08:62:f6:31:0c:e5:3a:51:3d:8f:
0b:8e:ab:c6:66:34:a0:96:1b:b2:e9:c7:c9:37:47:
5e:2d:6e:c8:c2:42:51:98:e8:34:34:1c:99:1a:fe:
c2:26:09:64:29:4d:14:a7:a7:bc:a8:c4:99:d4:55:
40:01:6b:c8:17:4a:37:52:b5:eb:29:e3:54:08:fe:
f9:1e:53:29:97:63:f1:3e:32:ca:c1:9e:c6:0b:cc:
92:94:e3:ec:86:37:95:d2:cb:3c:0b:74:63:de:a7:
a4:41:5e:a1:8e:fa:0c:b3:5c:62:b2:9c:e1:d6:f9:
7d:62:1e:cd:e2:7b:16:73:ea:ae:3b:67:ab:1f:5c:
e1:94:63:ed:e9:c0:b8:e9:4d:e1:40:de:cb:8b:cb:
89:9d:68:26:2d:d2:4f:9b:52:fe:da:5f:e0:f6:50:
c6:33:2f:ff:f7:49:bb:d2:c7:c6:3f:e0:38:7c:a5:
d8:80:ce:db:11:1f:3f:63:6b:d3:a9:d0:8d:d5:ba:
47:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B4:4F:C4:13:76:F2:F8:DF:3A:AA:EE:07:56:14:0C:ED:FC:C2:EA
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/cbRPxBN28vjfOqruB1YUDO38wuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.128.0/22
Signature Algorithm: sha256WithRSAEncryption
32:de:aa:64:9b:07:28:4a:47:13:40:95:50:4c:b5:55:f0:98:
e7:ec:7e:7a:24:75:dd:f0:ea:dc:a5:15:5c:4e:68:a3:91:86:
98:0e:d4:95:fa:7f:a1:db:2f:cc:ec:eb:ec:b5:37:ba:d0:15:
d6:ca:1d:ad:86:db:0b:d0:f1:65:bc:e2:a6:82:4e:74:a8:b4:
15:20:9d:16:52:54:04:5d:77:05:81:bb:66:d7:b6:a1:95:44:
4f:38:e9:60:3e:55:bf:d4:0b:06:16:71:2d:b6:0f:87:52:6e:
92:a9:de:e5:b6:da:3f:db:4d:b9:61:dc:7a:d4:6d:64:07:44:
28:08:6e:f3:44:a9:e4:bb:c1:09:f7:50:12:14:42:88:ff:4b:
b3:ab:b5:dd:22:dd:d2:81:64:05:2f:b0:80:92:e9:81:9a:81:
b6:71:2e:8d:9c:ef:d0:21:9a:49:c6:e4:31:82:d0:be:6a:fd:
18:db:2e:59:b5:15:8d:c3:97:62:e3:19:45:10:ff:28:15:08:
a1:f2:33:52:dc:5e:39:5e:73:7f:f5:d3:8e:47:d4:0c:63:fa:
17:72:6a:88:9b:2c:85:cb:f2:a7:ee:ff:54:f6:b4:4b:a3:58:
ef:88:91:b7:ce:70:fd:5d:6f:1a:fa:49:dd:d3:b8:6f:f6:1b:
b5:ad:37:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:04 2024 by rpki-client on console-ams.rpki-client.org