Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/674abb-221a-4454-acfc-965a34180136/1/45Kve4NX4xMVKCMpO5hjpxgSjv8.roa
File: 45Kve4NX4xMVKCMpO5hjpxgSjv8.roa (raw, json)
Hash identifier: YUwyu+LcPEaIQkx5fvwCVN5NT1XpNUQEu1X9s6DRQTg=
Subject key identifier: E3:92:AF:7B:83:57:E3:13:15:28:23:29:3B:98:63:A7:18:12:8E:FF
Certificate issuer: /CN=b1168d062a0c2e6166a8262c4d7298d76dedd04f
Certificate serial: 018572B438F043D1BB7C115D9FE0378CDF47
Authority key identifier: B1:16:8D:06:2A:0C:2E:61:66:A8:26:2C:4D:72:98:D7:6D:ED:D0:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRaNBioMLmFmqCYsTXKY123t0E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/674abb-221a-4454-acfc-965a34180136/1/45Kve4NX4xMVKCMpO5hjpxgSjv8.roa
Signing time: Mon 02 Jan 2023 13:38:11 +0000
ROA not before: Mon 02 Jan 2023 13:38:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.67.211.0/24 maxlen: 24
185.67.210.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:38:f0:43:d1:bb:7c:11:5d:9f:e0:37:8c:df:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1168d062a0c2e6166a8262c4d7298d76dedd04f
Validity
Not Before: Jan 2 13:38:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e392af7b8357e313152823293b9863a718128eff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:04:a0:fe:4a:12:39:e2:af:08:1e:92:6d:eb:
7f:58:ff:9b:72:31:5e:4b:e3:b5:4a:c5:c1:a1:d3:
e2:6a:6f:59:cb:90:78:d4:8c:51:88:9c:30:86:fb:
5e:16:55:fe:ab:48:70:fe:25:bf:50:1d:11:ba:a1:
69:38:47:8a:81:d7:f3:ac:3f:59:5a:fb:7e:58:89:
25:8c:f8:0e:c8:92:24:50:98:23:d9:a7:cb:04:58:
15:22:34:a0:25:b9:e0:2c:f1:83:6d:ff:13:a9:a7:
ea:2c:6a:96:af:e5:c9:b1:d6:5e:ce:7d:c2:30:cf:
0b:58:6f:cd:b1:17:e2:58:dd:29:ed:2e:1e:66:a3:
68:27:87:0f:8b:43:49:80:d0:4f:6d:63:0a:40:ed:
93:f6:49:f2:c8:3e:00:05:9e:d2:eb:d5:d2:cd:86:
33:83:94:39:3a:6e:bb:1c:7e:b4:8d:20:b5:27:ad:
2d:e4:01:f8:0c:a1:a9:37:aa:af:c1:1d:69:50:f2:
41:d4:33:f4:6f:9e:91:5b:39:54:92:d0:1d:da:db:
77:12:7d:fd:dd:6b:39:bc:f4:56:af:47:10:ea:4e:
8e:f8:01:63:1c:6e:f1:3c:7d:a9:ac:fa:c9:2c:7f:
bd:5c:c4:d2:ea:6f:41:7a:2c:26:49:9c:b2:6e:97:
c3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:92:AF:7B:83:57:E3:13:15:28:23:29:3B:98:63:A7:18:12:8E:FF
X509v3 Authority Key Identifier:
keyid:B1:16:8D:06:2A:0C:2E:61:66:A8:26:2C:4D:72:98:D7:6D:ED:D0:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRaNBioMLmFmqCYsTXKY123t0E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/674abb-221a-4454-acfc-965a34180136/1/45Kve4NX4xMVKCMpO5hjpxgSjv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/674abb-221a-4454-acfc-965a34180136/1/sRaNBioMLmFmqCYsTXKY123t0E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.67.210.0/23
Signature Algorithm: sha256WithRSAEncryption
37:78:86:0d:96:f1:dd:1b:8e:a4:ff:56:78:d6:db:fd:78:6f:
11:18:7e:fa:3b:2b:66:e2:1c:6d:fb:08:a3:06:4f:fd:57:c6:
50:f9:71:54:04:54:ab:98:28:ef:82:ad:71:db:d5:01:65:c9:
0f:51:a4:ba:e3:a3:6e:98:e0:47:8f:0f:06:74:aa:0d:4c:9c:
32:3d:42:a6:db:9e:0d:39:e7:09:17:9f:da:75:c7:df:14:79:
12:35:97:9b:33:93:46:4d:fd:4a:8c:47:e1:47:eb:b4:c7:6d:
59:47:d5:ce:79:e3:4a:be:00:fa:de:60:fa:32:66:e3:54:8f:
96:e6:c3:21:a0:c6:f3:fc:b4:83:5b:30:9c:4a:51:8d:2c:30:
26:f2:90:b3:92:a8:5e:52:55:d0:8d:f4:c2:01:98:08:d9:a2:
77:ba:ec:31:ba:0d:56:60:18:02:e4:7e:f2:86:56:e5:a5:8f:
de:6f:05:07:87:67:85:81:0e:5a:25:b9:11:0c:12:c8:29:03:
7b:c6:45:c5:3b:37:3d:3a:5a:47:12:b4:e4:ba:9f:1e:57:ee:
a5:be:4d:42:f4:9d:e9:d7:f7:6d:94:8a:5a:8c:6b:1a:41:bc:
23:d9:71:7d:6a:91:32:ff:8d:14:a3:91:90:4f:f9:88:bb:8a:
65:46:cd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:22 2024 by rpki-client on console-fra.rpki-client.org