Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/4SOcgt44A7CP9ZbwNBivAqzxi1o.roa
File: 4SOcgt44A7CP9ZbwNBivAqzxi1o.roa (raw, json)
Hash identifier: SXiJy1Cra1r8tmfQjaehFDcj1kyRwUbzetYBzeBE0vg=
Subject key identifier: E1:23:9C:82:DE:38:03:B0:8F:F5:96:F0:34:18:AF:02:AC:F1:8B:5A
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 018B802B7EAD52C3E04C842A9BD2650DBF95
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/4SOcgt44A7CP9ZbwNBivAqzxi1o.roa
Signing time: Mon 30 Oct 2023 10:40:15 +0000
ROA not before: Mon 30 Oct 2023 10:40:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43641
IP address blocks: 185.81.181.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:80:2b:7e:ad:52:c3:e0:4c:84:2a:9b:d2:65:0d:bf:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Oct 30 10:40:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1239c82de3803b08ff596f03418af02acf18b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:cb:2e:86:05:67:6b:f1:b0:99:35:87:b1:99:
76:2a:41:45:e5:6c:c0:aa:80:4b:25:26:7d:45:38:
f0:bf:8e:03:2c:a1:95:a2:c4:c8:27:80:bb:2e:ec:
a7:76:94:a6:d3:30:d7:af:40:8f:b2:a9:d3:fb:7e:
d9:cf:9b:19:fc:15:8d:7d:8f:42:0c:a3:20:cf:98:
22:17:06:97:16:d7:54:f6:02:4a:72:0e:47:c6:74:
0d:cb:e3:cb:13:3a:66:46:62:0b:a5:7b:6f:9e:70:
79:c1:17:b2:81:67:ca:2e:8b:07:b7:36:6a:6e:b5:
7f:de:a0:40:e7:8e:08:3c:61:8a:a0:0c:d6:3b:27:
9a:76:3b:c8:08:36:01:96:e5:06:b4:bf:64:7d:7a:
07:55:1e:13:f2:79:f1:a5:03:7d:81:7f:ba:c9:b0:
f9:2f:8c:5d:33:5b:8a:87:7f:e2:fd:02:ec:fa:44:
0f:8e:85:38:c0:3e:b1:32:3e:de:de:5e:cb:bd:7a:
a4:65:f6:9b:50:16:b0:34:ea:ac:ed:90:38:95:fa:
0b:cd:91:37:41:6a:52:1d:91:c3:93:d9:f3:17:ef:
82:db:55:0a:c8:0b:df:e0:59:8f:bd:c3:0d:41:f0:
99:8c:5c:e0:3d:20:6e:61:3f:72:eb:1d:b9:06:0e:
b9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:23:9C:82:DE:38:03:B0:8F:F5:96:F0:34:18:AF:02:AC:F1:8B:5A
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/4SOcgt44A7CP9ZbwNBivAqzxi1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.181.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:a2:b4:fc:95:ac:f7:5d:cd:52:b5:cb:01:06:cc:fd:e3:ed:
3c:b4:ad:b6:c3:3a:b4:cc:1b:d3:36:6d:b2:f6:55:02:8e:cf:
e6:e9:30:83:6c:3e:64:c9:08:c2:93:71:90:1b:1b:f6:b0:6d:
22:83:b4:25:8c:40:7b:2f:4b:9e:0a:c9:73:fa:8a:d2:33:a6:
2a:f1:35:0a:d0:87:9a:2b:08:b3:e9:a2:82:0e:39:63:8a:5f:
68:db:9c:d2:0c:50:53:7f:50:31:03:35:d5:12:d0:fa:b7:c5:
70:44:46:23:39:d6:04:31:c0:14:e7:1a:d8:e7:74:91:56:4a:
86:dc:63:01:06:13:6e:cd:1f:0a:0a:2e:f7:0a:22:f1:9d:0d:
c5:d6:b4:bd:f8:5c:35:75:60:23:0c:1c:ac:ac:b9:e5:e0:34:
8c:46:05:79:c6:88:8c:61:b1:96:f6:fc:b8:f4:d7:b5:cf:ea:
e4:0c:da:68:9b:be:78:5e:0d:bd:6b:0e:be:ad:4a:0b:bb:89:
27:ec:cf:37:a3:73:c5:f4:f8:3f:14:54:55:bb:1c:77:ed:32:
e1:f1:e6:33:e4:6f:5a:64:56:12:f9:ed:3a:2c:83:9b:c8:83:
46:e1:57:23:fb:d4:81:b5:f4:6d:db:40:71:72:91:e6:ed:2e:
b6:fb:d6:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 29 17:29:28 2023 by rpki-client on console-ams.rpki-client.org