Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/7MkMm9XX-bjsn-BbRqFHB2pUKjg.roa
File: 7MkMm9XX-bjsn-BbRqFHB2pUKjg.roa (raw, json)
Hash identifier: u1WOjDohonSac3hES4MOMEoAEwt1Qzwe47m02/ewas8=
Subject key identifier: EC:C9:0C:9B:D5:D7:F9:B8:EC:9F:E0:5B:46:A1:47:07:6A:54:2A:38
Certificate issuer: /CN=25a879d628fe5ec8a761c4748679993f9c69f8b4
Certificate serial: 01857169CA9F2DEFAE5207643C1A52F738D7
Authority key identifier: 25:A8:79:D6:28:FE:5E:C8:A7:61:C4:74:86:79:99:3F:9C:69:F8:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jah51ij-XsinYcR0hnmZP5xp-LQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/7MkMm9XX-bjsn-BbRqFHB2pUKjg.roa
Signing time: Mon 02 Jan 2023 07:37:16 +0000
ROA not before: Mon 02 Jan 2023 07:37:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42473
IP address blocks: 185.245.66.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:ca:9f:2d:ef:ae:52:07:64:3c:1a:52:f7:38:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25a879d628fe5ec8a761c4748679993f9c69f8b4
Validity
Not Before: Jan 2 07:37:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ecc90c9bd5d7f9b8ec9fe05b46a147076a542a38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:d4:75:42:b9:36:aa:0b:95:15:b8:df:1b:f0:
06:83:11:e0:09:ae:50:83:a6:54:a6:48:fc:84:4b:
f4:6c:af:46:fd:da:fa:4e:8d:49:77:ce:8e:72:42:
48:2c:77:eb:11:91:76:40:88:8a:a4:30:ad:95:cb:
23:84:ef:e1:15:93:f3:3f:67:4f:e0:01:d2:7a:8d:
9f:c3:33:26:8d:45:bc:55:37:05:9a:c0:da:55:80:
2a:15:49:fd:06:f8:80:5d:3a:3c:8e:95:81:93:24:
78:3f:19:40:d6:d1:ff:f9:d7:4f:cb:21:26:42:33:
7c:3d:f9:e1:e3:90:0d:e4:ee:9d:65:88:9e:7b:81:
7c:11:2f:9a:18:11:db:d4:c4:d1:a8:e8:62:a6:d0:
b7:72:66:89:4f:6e:4d:6c:18:32:ba:54:1c:5e:44:
e8:7a:26:a3:83:d2:ad:bd:30:a6:df:64:0c:91:51:
bd:b8:66:d8:b5:91:8b:fd:de:47:c1:2c:8d:fe:9b:
d9:b3:63:49:00:7b:41:51:33:9b:82:68:45:3a:94:
1f:cc:76:3f:c8:54:82:87:62:9d:47:d1:f8:4a:70:
cf:87:f2:63:f6:23:98:21:c1:7a:63:23:f0:64:a7:
8b:0d:1e:8c:53:d1:14:a5:73:12:53:77:c2:a9:6d:
69:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:C9:0C:9B:D5:D7:F9:B8:EC:9F:E0:5B:46:A1:47:07:6A:54:2A:38
X509v3 Authority Key Identifier:
keyid:25:A8:79:D6:28:FE:5E:C8:A7:61:C4:74:86:79:99:3F:9C:69:F8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jah51ij-XsinYcR0hnmZP5xp-LQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/7MkMm9XX-bjsn-BbRqFHB2pUKjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/28d5a7-48f1-4414-a853-d86b4caed11d/1/Jah51ij-XsinYcR0hnmZP5xp-LQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.66.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:f1:99:4e:29:f9:18:f3:50:8c:8a:b7:1f:86:8c:b7:94:ed:
e0:14:8c:38:31:01:f9:2c:42:41:5e:4b:f3:3e:34:ba:a9:2b:
5c:56:7a:f6:f5:19:a7:49:83:e3:fd:0d:f3:df:67:28:70:67:
1f:d8:9b:ec:6e:f0:31:35:dc:cc:b9:30:f4:06:7d:95:c0:ce:
aa:07:df:35:76:48:e4:e2:5f:d6:7b:06:b0:c0:ca:51:ce:89:
4c:85:c9:41:9f:68:da:d4:e8:fa:71:ef:0e:87:c8:8c:a7:df:
f4:d8:19:dc:3e:e2:e6:10:ff:ec:e9:5b:38:2f:c3:f8:32:08:
1b:dc:6d:fc:9c:08:90:81:4d:16:eb:c7:aa:d4:75:3f:06:f0:
46:03:1f:da:af:61:1b:42:c3:fc:7d:81:65:91:5b:cc:db:5d:
ae:f9:1b:8a:5b:c6:3f:d4:17:10:62:38:9a:24:d5:06:ba:e3:
72:2f:bd:9a:86:53:56:b4:b3:0d:f9:a4:6d:f7:a4:87:1b:2d:
b4:9c:01:e3:10:53:57:8b:1a:34:7a:1d:0d:75:5f:26:f9:be:
74:38:1a:94:81:23:6c:f4:14:fe:0e:8a:ae:f8:d0:74:0d:24:
51:b2:7c:82:ba:db:c9:bd:84:6e:92:97:2e:77:9f:6c:70:5b:
d9:83:c7:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:37 2024 by rpki-client on console-fra.rpki-client.org