Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/lr3OK0jKSKySMGAVrfiUghmRKG4.roa
File: lr3OK0jKSKySMGAVrfiUghmRKG4.roa (raw, json)
Hash identifier: g+pOOjVaj7B6Uyrlj59xn1EHmllvQoa0fdHAxqcrERk=
Subject key identifier: 96:BD:CE:2B:48:CA:48:AC:92:30:60:15:AD:F8:94:82:19:91:28:6E
Certificate issuer: /CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Certificate serial: 01856CA5DEA37F834616BFD46130E1A04EB0
Authority key identifier: 64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/lr3OK0jKSKySMGAVrfiUghmRKG4.roa
Signing time: Sun 01 Jan 2023 09:24:47 +0000
ROA not before: Sun 01 Jan 2023 09:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209920
IP address blocks: 185.244.17.0/24 maxlen: 24
185.244.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:a5:de:a3:7f:83:46:16:bf:d4:61:30:e1:a0:4e:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=644cdbae84b26a8484b10c00ebfdfbcb4990c157
Validity
Not Before: Jan 1 09:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96bdce2b48ca48ac92306015adf894821991286e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fb:b2:74:b5:dc:15:f7:c0:92:4f:72:f9:7e:
76:02:a2:75:68:8d:ec:fe:a0:6b:18:dd:89:c0:53:
f6:af:80:4c:90:b1:dd:f3:e7:23:75:61:59:ac:82:
ba:47:12:7a:22:86:5d:88:98:ed:7e:d1:29:49:06:
28:47:ad:9a:3c:c1:09:94:5b:23:a2:db:6d:a5:6b:
00:74:74:f4:00:17:e0:e6:41:e4:8b:ee:71:2d:3a:
cd:5f:04:18:a3:ea:03:fc:af:61:6e:2b:e6:0e:17:
d8:fe:24:bb:92:9f:54:49:f7:27:72:d8:9a:e2:1b:
40:de:0e:18:2e:28:4f:13:0c:89:a9:76:e2:46:ca:
ff:e4:0a:3d:b5:f6:e9:a7:89:11:f2:31:18:42:c2:
7f:eb:fd:f7:2f:61:cd:c3:84:d5:6c:c4:5e:46:d1:
09:72:07:82:a4:d7:d7:56:b8:17:fa:c2:f4:49:0e:
63:ca:ea:ec:1f:f7:5c:3d:77:52:d6:f5:30:fc:2f:
56:23:5d:7a:ce:98:08:9b:72:25:84:37:44:e5:65:
81:79:17:b9:cf:f9:e0:5a:ad:c0:7d:ff:0d:5a:35:
88:e7:eb:bc:01:ad:fe:a0:ef:09:f1:7e:47:13:b9:
39:3f:35:f4:13:e7:bf:0f:25:eb:2b:ce:ad:de:2c:
4d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:BD:CE:2B:48:CA:48:AC:92:30:60:15:AD:F8:94:82:19:91:28:6E
X509v3 Authority Key Identifier:
keyid:64:4C:DB:AE:84:B2:6A:84:84:B1:0C:00:EB:FD:FB:CB:49:90:C1:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZEzbroSyaoSEsQwA6_37y0mQwVc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/lr3OK0jKSKySMGAVrfiUghmRKG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/d73ac9-3d65-4e2d-8bbf-e034f65e7f60/1/ZEzbroSyaoSEsQwA6_37y0mQwVc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.16.0/23
Signature Algorithm: sha256WithRSAEncryption
a8:64:10:ce:de:29:c4:7d:59:24:e3:3a:5d:42:e5:df:5e:95:
5e:97:7c:05:71:7b:65:af:31:e2:20:4e:ea:de:57:c1:e6:e2:
dc:5b:a9:79:ed:90:20:0f:24:57:62:ae:85:12:1c:e3:90:06:
e0:40:e9:7d:93:2b:93:fa:ba:11:3c:e5:50:04:0b:b7:da:03:
e3:52:27:90:7a:7e:7c:ae:d9:8b:36:fa:70:30:7b:fe:3f:18:
e0:56:63:46:62:31:d7:f3:6d:cb:3e:4b:6a:bf:e2:97:c5:58:
ce:30:19:e8:66:c5:2d:0c:9f:97:83:88:c6:cb:37:a5:e3:e4:
44:79:bc:95:e6:25:77:8f:10:99:60:39:09:98:88:bd:46:e9:
a1:06:1b:cf:77:ec:22:e3:d0:02:0f:ce:b4:fd:4f:65:8a:ce:
65:c2:be:1f:c3:5b:f6:f2:8d:06:a8:51:ac:41:54:8e:8e:d8:
e1:33:0c:a6:5e:77:38:c6:22:59:87:36:f4:fb:68:49:5d:16:
b9:c7:a4:f4:de:82:b8:b9:0c:c3:e0:b4:64:59:1c:6b:cc:13:
c0:13:9d:84:36:7c:ba:e5:39:ec:46:de:7f:88:be:66:db:5d:
ad:90:67:5d:a8:86:b6:32:42:b0:3b:e8:b2:fa:5f:07:40:7e:
fe:82:27:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:20:14 2024 by rpki-client on console-ams.rpki-client.org