Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/EBKRuj1UmIy1-E7OEHgdhbmi5_8.roa
File: EBKRuj1UmIy1-E7OEHgdhbmi5_8.roa (raw, json)
Hash identifier: XN7qSr1gEeTU1vPz8lWDRgMQ6cxOGZNqrYgbpmRW87g=
Subject key identifier: 10:12:91:BA:3D:54:98:8C:B5:F8:4E:CE:10:78:1D:85:B9:A2:E7:FF
Certificate issuer: /CN=52f2b1b3a98e83c06162550f791f4bcaa313903a
Certificate serial: 01856BDC80E29123AE55AA7836D5FC4D66D7
Authority key identifier: 52:F2:B1:B3:A9:8E:83:C0:61:62:55:0F:79:1F:4B:CA:A3:13:90:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UvKxs6mOg8BhYlUPeR9LyqMTkDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/EBKRuj1UmIy1-E7OEHgdhbmi5_8.roa
Signing time: Sun 01 Jan 2023 05:44:50 +0000
ROA not before: Sun 01 Jan 2023 05:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43278
IP address blocks: 185.207.214.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:80:e2:91:23:ae:55:aa:78:36:d5:fc:4d:66:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52f2b1b3a98e83c06162550f791f4bcaa313903a
Validity
Not Before: Jan 1 05:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=101291ba3d54988cb5f84ece10781d85b9a2e7ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d0:76:22:a5:fb:19:ca:2b:16:3f:51:9f:0e:
e7:0d:5b:6d:8b:77:28:7b:a4:14:ae:08:3e:a0:8e:
13:68:96:34:8c:ea:88:ef:84:92:fb:bc:7c:e0:97:
97:d7:ce:88:de:11:e5:a4:1d:c9:ae:c7:f4:e9:a0:
4d:6d:9a:ee:e0:0c:e6:aa:f1:0c:39:04:70:fe:ad:
6b:4a:35:a4:e5:0e:90:45:8a:30:6c:bf:56:41:0b:
77:60:b7:94:3b:60:8e:5c:a8:5d:c1:a8:31:e2:e4:
93:0f:ed:da:a8:43:39:34:9b:57:e8:a7:9c:7c:16:
9a:05:f8:57:01:06:dc:65:cc:d1:0d:ab:86:a8:8f:
55:9c:b0:47:39:5f:45:9f:19:fe:ed:7d:29:67:4e:
a2:c1:6f:00:8a:a6:72:d2:83:37:b1:25:3f:dc:25:
8d:0f:5a:5e:de:b0:76:69:3e:3b:e1:3d:2f:01:66:
d4:12:53:44:b9:df:e2:e8:43:3a:33:ae:bf:d7:15:
f7:ee:71:e5:6a:a0:e8:84:02:66:58:e9:25:35:a8:
cc:89:75:b1:20:0d:30:da:a4:9d:44:9e:5f:13:e0:
0d:82:cd:d7:d7:ec:3f:57:89:84:9f:af:14:f4:f3:
3f:2b:79:dd:ec:81:6d:31:a7:ef:c7:3b:f1:bf:9e:
c5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:12:91:BA:3D:54:98:8C:B5:F8:4E:CE:10:78:1D:85:B9:A2:E7:FF
X509v3 Authority Key Identifier:
keyid:52:F2:B1:B3:A9:8E:83:C0:61:62:55:0F:79:1F:4B:CA:A3:13:90:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UvKxs6mOg8BhYlUPeR9LyqMTkDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/EBKRuj1UmIy1-E7OEHgdhbmi5_8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/680922-ec15-4435-8b2f-b22130cccc8a/1/UvKxs6mOg8BhYlUPeR9LyqMTkDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.214.0/24
Signature Algorithm: sha256WithRSAEncryption
c3:57:c1:af:21:fc:c4:56:94:c7:87:2a:59:8d:1a:a5:f3:61:
71:4e:9f:39:ee:3e:d4:95:59:56:25:fa:7d:96:85:cb:40:63:
b4:47:cb:90:7c:d8:9e:1c:b4:30:35:79:c0:d6:4d:d5:4b:0a:
7d:55:0d:3e:a7:20:6e:a5:a1:0c:76:1d:ce:e9:ac:1b:c9:e0:
56:29:8e:52:3d:4e:ae:ef:12:d1:81:06:9c:df:76:53:4d:b8:
b7:aa:3d:c8:b9:0b:4e:85:1d:e7:5c:0e:00:55:89:88:f4:7f:
5b:09:42:e3:63:60:89:d8:67:c4:c2:f1:ce:9d:e4:9f:69:3c:
72:b7:35:a4:c0:de:ac:2c:48:e6:04:c9:60:d8:02:45:c8:de:
d7:bd:9b:44:5b:28:45:be:4a:db:fc:ed:d5:c1:28:95:fd:d4:
56:23:3f:a0:c1:34:1b:e3:a5:3f:8b:eb:27:d5:0a:8a:93:2b:
65:37:ea:31:87:13:a8:9d:15:61:fc:1e:17:be:6b:f7:77:5c:
dd:d4:a9:3a:cd:0a:e8:ad:d2:38:16:6b:df:a1:31:40:fe:dd:
fa:c5:0d:57:a6:ee:b3:cb:1f:76:d6:f0:a2:a3:88:52:37:e4:
7c:aa:b4:24:d9:4d:f0:43:56:de:06:98:2d:12:13:c0:24:0a:
52:2e:ca:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:24 2024 by rpki-client on console-fra.rpki-client.org