Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/L7tCUsQZVh78KPxWGF5iWuJv-D4.roa
File: L7tCUsQZVh78KPxWGF5iWuJv-D4.roa (raw, json)
Hash identifier: /gCdCwSgAqFR1MHZt5GhysveUn2/R6eTY2OtQ0XJw24=
Subject key identifier: 2F:BB:42:52:C4:19:56:1E:FC:28:FC:56:18:5E:62:5A:E2:6F:F8:3E
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 0188D2B0869D6461C58140803C274445B72A
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/L7tCUsQZVh78KPxWGF5iWuJv-D4.roa
Signing time: Mon 19 Jun 2023 08:06:04 +0000
ROA not before: Mon 19 Jun 2023 08:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 185.81.180.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d2:b0:86:9d:64:61:c5:81:40:80:3c:27:44:45:b7:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jun 19 08:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fbb4252c419561efc28fc56185e625ae26ff83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:02:67:57:75:09:1f:0e:e1:a3:58:5b:01:de:
59:8c:36:0e:b9:04:f3:03:48:f0:96:bd:9c:b5:13:
9b:db:4f:93:90:35:e4:6b:4a:a9:0d:92:39:29:6c:
26:3f:6e:e1:38:03:c7:fe:88:02:77:cf:10:fb:ad:
a1:fe:a0:d2:10:48:3a:92:f1:9c:5b:18:33:c3:1d:
b4:95:b6:ce:8a:a4:71:43:de:b1:26:28:b7:9f:55:
53:0f:94:a5:7a:e2:cf:36:93:93:f1:28:c2:51:81:
80:d3:99:41:72:e7:03:9e:dc:29:a8:38:db:b5:db:
fb:81:44:53:16:6e:eb:e8:13:95:82:58:2f:f3:b5:
b2:74:ac:30:81:4e:71:67:4d:a0:2e:1e:23:21:a6:
30:2d:70:b4:23:6d:55:14:0e:b6:33:6c:6c:51:6f:
d4:95:06:c9:38:03:d2:c3:f8:0e:72:2a:a0:23:4d:
6b:3e:a2:3b:ab:89:2b:bb:7e:cb:28:60:36:4b:db:
9a:24:e1:91:20:1e:f0:a5:f8:7d:e8:3a:28:2c:7e:
c9:2b:8d:5c:4a:12:0e:6e:7a:6d:67:ab:a3:92:ca:
d3:52:fe:ec:93:3b:6f:50:fe:82:58:7b:d8:18:e9:
87:0d:72:72:49:3e:88:72:74:94:01:52:2b:2a:70:
93:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:BB:42:52:C4:19:56:1E:FC:28:FC:56:18:5E:62:5A:E2:6F:F8:3E
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/L7tCUsQZVh78KPxWGF5iWuJv-D4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.180.0/23
Signature Algorithm: sha256WithRSAEncryption
13:a8:73:4c:95:a7:4a:4f:48:97:37:77:21:56:1b:f9:94:a8:
30:71:d8:36:3a:9f:f0:bb:19:e3:70:c7:23:80:76:5c:08:0a:
9d:64:c7:ef:01:10:30:69:94:9a:6e:1f:67:77:d2:10:cf:f4:
ee:97:b6:cc:b0:79:81:fb:ce:7a:88:38:e9:17:29:e1:15:85:
f5:38:ba:61:aa:1b:b9:99:91:d9:04:cf:65:d6:de:36:76:a7:
8c:ab:63:b8:59:d9:c2:90:a1:fb:0d:a4:2c:9c:d9:32:ed:97:
f9:49:eb:ae:45:db:96:6e:90:4c:52:eb:43:86:f4:c5:9f:71:
11:79:74:49:cd:cd:a0:c7:1a:cc:40:ec:e1:c8:84:9f:08:b6:
8b:cd:3f:80:6b:31:65:f8:b2:86:c7:5b:49:50:36:1e:45:ad:
32:cd:da:c2:eb:07:f8:cc:89:d0:20:28:02:d4:4c:24:a0:4d:
14:8f:16:0e:04:8a:3f:d7:ab:9f:f3:9c:30:c3:c2:9a:8c:29:
8e:11:9c:ec:3e:4d:24:c5:2c:ad:2f:a5:b8:8f:4b:05:0e:15:
db:90:43:08:8e:a1:80:a7:e7:d4:59:19:08:f5:6d:af:2d:db:
8b:08:2b:ef:97:b8:a5:59:80:4f:e7:70:1a:78:0e:c6:77:09:
ea:a8:6c:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:19 2023 by rpki-client on console-fra.rpki-client.org