Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/l1L107JSgAUA6Z9dq7KzU3Roi0g.roa
File: l1L107JSgAUA6Z9dq7KzU3Roi0g.roa (raw, json)
Hash identifier: QOGquujucDL2Q4AAR5WBs2JBMDSzbR4JCkJOP3n8cQs=
Subject key identifier: 97:52:F5:D3:B2:52:80:05:00:E9:9F:5D:AB:B2:B3:53:74:68:8B:48
Certificate issuer: /CN=28855852a4bcd1bf1ec813f3c13b0f1f372f3971
Certificate serial: 01856CE6053A893C11B0DBB2B016984DDDFD
Authority key identifier: 28:85:58:52:A4:BC:D1:BF:1E:C8:13:F3:C1:3B:0F:1F:37:2F:39:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIVYUqS80b8eyBPzwTsPHzcvOXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/l1L107JSgAUA6Z9dq7KzU3Roi0g.roa
Signing time: Sun 01 Jan 2023 10:34:52 +0000
ROA not before: Sun 01 Jan 2023 10:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209504
IP address blocks: 185.125.90.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:05:3a:89:3c:11:b0:db:b2:b0:16:98:4d:dd:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28855852a4bcd1bf1ec813f3c13b0f1f372f3971
Validity
Not Before: Jan 1 10:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9752f5d3b252800500e99f5dabb2b35374688b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bb:a6:7d:ba:98:92:05:0f:3e:82:eb:df:6a:
29:e6:36:f9:b3:12:92:14:e7:cf:31:06:9e:00:99:
a8:5c:41:60:9e:68:bb:48:8c:e3:19:ab:63:31:33:
29:b5:06:cc:cb:4e:f8:1a:4b:2b:1a:d3:40:af:8b:
67:3f:e0:16:62:6b:d6:14:64:a1:d0:89:a3:f4:11:
ad:25:a1:2d:9d:66:a8:b4:6b:bf:cd:2b:0e:c2:7a:
09:71:8c:5f:34:60:9f:a3:a8:dc:aa:52:d6:c5:74:
17:72:18:90:4b:94:5e:5d:4d:11:8f:c5:db:e0:8c:
86:c5:e1:0b:e9:86:2d:57:b3:f9:83:c0:59:a4:54:
e2:5a:6a:16:55:cc:80:8f:f5:b5:5e:59:e0:d9:e3:
6c:b7:76:1d:8c:89:d8:e3:36:a0:9d:79:65:27:2d:
96:41:4d:29:d9:16:b9:01:68:5b:19:94:6d:61:24:
cb:49:a8:a8:9f:e2:a6:b8:06:ee:8b:82:95:a7:a8:
ca:e7:38:45:0e:11:73:35:c0:f1:30:77:fc:9b:d4:
6e:56:78:0a:85:cd:27:e4:77:2e:53:d8:1d:7d:88:
a7:46:fc:bf:83:39:0d:c6:28:07:9b:a2:4a:12:ba:
db:5e:7c:fa:1f:74:e0:6d:22:d9:54:b4:2d:17:c9:
9a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:52:F5:D3:B2:52:80:05:00:E9:9F:5D:AB:B2:B3:53:74:68:8B:48
X509v3 Authority Key Identifier:
keyid:28:85:58:52:A4:BC:D1:BF:1E:C8:13:F3:C1:3B:0F:1F:37:2F:39:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIVYUqS80b8eyBPzwTsPHzcvOXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/l1L107JSgAUA6Z9dq7KzU3Roi0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0e36fc-ba0b-4ce6-af6a-704463ebad36/1/KIVYUqS80b8eyBPzwTsPHzcvOXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.125.90.0/24
Signature Algorithm: sha256WithRSAEncryption
38:8e:45:b0:a5:61:61:15:ba:22:e4:74:a0:9f:ca:94:cd:03:
e0:d8:86:bc:50:c4:45:c1:65:2d:77:de:97:6a:86:48:8b:b7:
84:76:a9:e5:0b:b0:3e:62:a6:51:49:b5:36:82:3f:eb:09:09:
a4:ea:24:09:7e:47:d9:cf:1e:f8:99:b9:bb:00:08:ea:49:d3:
a4:b6:4d:03:3a:2e:b5:15:2f:52:18:2e:40:0d:b5:e6:0b:f5:
cd:97:f7:15:5b:cf:84:ac:10:6a:51:51:13:1c:66:fa:e1:e3:
a8:02:f0:e8:af:20:25:78:f1:ba:99:03:20:8b:b9:c7:86:6d:
2c:04:f7:23:9a:09:9a:11:5a:67:96:5f:91:0c:6b:f4:84:a0:
e1:c5:42:e7:b9:9d:9f:3a:91:f0:b7:70:68:9e:3b:0e:c2:7b:
43:0b:10:9d:81:84:f4:ce:47:c8:03:0c:59:22:85:4a:8a:d7:
20:07:82:83:08:ac:c1:83:f4:78:37:3d:0e:75:9b:11:89:cf:
d9:1d:a9:05:da:fd:e8:eb:cb:c1:2f:5c:32:6c:65:b4:27:3b:
7a:19:85:c4:c3:d6:c7:0e:f5:2d:ed:d0:68:a7:b5:40:e4:ec:
d4:5f:36:f2:25:09:53:12:e0:fc:f7:a2:70:e1:4c:71:2c:35:
0e:79:c4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:32 2024 by rpki-client on console-fra.rpki-client.org