Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/0eeb2f-1aa0-4762-b4e8-b59c2ac951cb/1/6CAjEkixJIpNFLKp2SCUOPhbxGM.roa
File: 6CAjEkixJIpNFLKp2SCUOPhbxGM.roa (raw, json)
Hash identifier: Ay7TqUaHC0XDX2TSgL9WpnD4dlhfe/dSW2aVwMSyNCw=
Subject key identifier: E8:20:23:12:48:B1:24:8A:4D:14:B2:A9:D9:20:94:38:F8:5B:C4:63
Certificate issuer: /CN=d1d78826e1717ec993eb64dd1187876b065e8f58
Certificate serial: 01856E2FAA4035E130476EB0CDF859578D38
Authority key identifier: D1:D7:88:26:E1:71:7E:C9:93:EB:64:DD:11:87:87:6B:06:5E:8F:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0deIJuFxfsmT62TdEYeHawZej1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/0eeb2f-1aa0-4762-b4e8-b59c2ac951cb/1/6CAjEkixJIpNFLKp2SCUOPhbxGM.roa
Signing time: Sun 01 Jan 2023 16:34:55 +0000
ROA not before: Sun 01 Jan 2023 16:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51415
IP address blocks: 185.195.204.0/23 maxlen: 23
185.195.206.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:aa:40:35:e1:30:47:6e:b0:cd:f8:59:57:8d:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1d78826e1717ec993eb64dd1187876b065e8f58
Validity
Not Before: Jan 1 16:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e820231248b1248a4d14b2a9d9209438f85bc463
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4b:f8:ea:a6:8e:e0:25:0e:45:48:e3:86:8a:
12:2f:ac:aa:bc:89:c7:80:66:70:26:88:e4:e1:fe:
5e:cb:17:26:39:88:ea:39:cb:07:98:87:44:c8:23:
35:6b:bf:40:94:b5:c0:b3:2c:1c:ee:51:eb:76:e0:
fe:03:d9:30:af:3f:4c:03:e1:4a:ee:ea:78:b4:30:
e3:8d:41:59:1e:75:ff:cf:70:9d:91:c6:f6:c9:42:
66:09:65:63:62:92:ac:c2:22:2a:ea:68:7e:87:82:
df:04:0d:21:87:62:37:07:05:bc:75:eb:dd:79:82:
76:a7:e3:ff:7b:e4:40:34:c0:c1:41:f8:cf:40:5e:
db:11:0b:4c:d9:c6:62:8c:69:7d:52:0f:5b:9c:78:
ce:b2:6b:4c:2f:a9:3f:15:25:56:90:6b:86:aa:20:
8c:52:79:bc:d0:a0:f1:ad:43:a4:5b:ac:12:41:e7:
1d:14:e7:e5:83:4f:9e:cb:94:bd:39:08:8e:92:51:
56:d2:07:a4:d8:e6:70:83:6c:22:03:d7:63:09:d4:
53:73:2c:e4:a5:8d:21:1f:6c:63:a2:7d:d6:c3:f4:
c7:b8:55:e3:e7:23:f4:94:87:1f:65:54:93:b9:87:
fa:e5:e6:2e:9a:60:83:29:f9:0f:b7:78:99:c6:e8:
85:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:20:23:12:48:B1:24:8A:4D:14:B2:A9:D9:20:94:38:F8:5B:C4:63
X509v3 Authority Key Identifier:
keyid:D1:D7:88:26:E1:71:7E:C9:93:EB:64:DD:11:87:87:6B:06:5E:8F:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0deIJuFxfsmT62TdEYeHawZej1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0eeb2f-1aa0-4762-b4e8-b59c2ac951cb/1/6CAjEkixJIpNFLKp2SCUOPhbxGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/0eeb2f-1aa0-4762-b4e8-b59c2ac951cb/1/0deIJuFxfsmT62TdEYeHawZej1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.195.204.0/22
Signature Algorithm: sha256WithRSAEncryption
74:1c:0d:09:01:86:ce:09:6a:18:b2:5b:49:22:3b:9c:b8:8d:
52:6d:3b:8b:d6:d0:68:66:9e:72:80:10:c8:fc:13:df:11:c8:
f7:15:8a:02:8c:d1:77:d9:a9:da:5f:40:23:77:a9:73:86:f0:
6e:d3:98:6e:e0:6f:ea:9f:ca:35:db:1a:f1:44:54:63:27:df:
d4:aa:52:bd:84:fb:06:8f:5f:6d:fd:16:61:6f:9b:81:fa:31:
e2:72:08:2f:79:80:ed:0b:ac:50:a1:66:cb:3b:76:af:42:2a:
3f:e3:1b:fb:5b:fb:5e:07:33:de:3d:3e:54:36:34:2b:43:4a:
e2:9e:19:3d:b2:90:1b:ae:0b:ec:35:0d:56:70:61:44:13:8e:
e9:c9:c6:da:4b:81:9b:2d:72:d2:3e:1b:6c:6c:0b:94:e1:19:
69:f6:c5:b7:fa:9c:9f:25:b4:59:8a:c1:ac:ac:1b:41:ba:fd:
47:e1:76:b5:f8:db:6a:9a:5b:a0:f1:db:dd:cb:74:62:a4:08:
0e:3c:06:06:88:e6:47:90:14:2e:21:50:7f:ef:96:50:37:79:
02:99:8a:50:28:97:06:e4:a5:92:bf:0f:11:a3:50:83:37:ff:
9d:0c:b1:f1:9c:4c:c1:f5:f8:0a:0f:c0:0d:0e:61:e9:5d:9f:
d6:75:3d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:28 2024 by rpki-client on console-fra.rpki-client.org