Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/21fbca-80e0-4b8c-8622-4e86ad64f774/1/A965DF4rmDuCp1y6mFtT3Xalxfo.roa
File: A965DF4rmDuCp1y6mFtT3Xalxfo.roa (raw, json)
Hash identifier: OnmUoDe3ngcqffX9ie3gbk7a5hOidVFskUdG1UjC4n4=
Subject key identifier: 03:DE:B9:0C:5E:2B:98:3B:82:A7:5C:BA:98:5B:53:DD:76:A5:C5:FA
Certificate issuer: /CN=7f56f28948c832f2d434bb44d5de0ea122601b05
Certificate serial: 0188DF69DBDCBB9D21BA64F9B137F7380D4A
Authority key identifier: 7F:56:F2:89:48:C8:32:F2:D4:34:BB:44:D5:DE:0E:A1:22:60:1B:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1byiUjIMvLUNLtE1d4OoSJgGwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/21fbca-80e0-4b8c-8622-4e86ad64f774/1/A965DF4rmDuCp1y6mFtT3Xalxfo.roa
Signing time: Wed 21 Jun 2023 19:23:56 +0000
ROA not before: Wed 21 Jun 2023 19:23:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.40.110.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:df:69:db:dc:bb:9d:21:ba:64:f9:b1:37:f7:38:0d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f56f28948c832f2d434bb44d5de0ea122601b05
Validity
Not Before: Jun 21 19:23:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03deb90c5e2b983b82a75cba985b53dd76a5c5fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:67:6d:05:45:98:6d:29:d5:e4:1f:07:df:82:
ff:65:e8:93:8a:de:30:15:35:7b:1a:e2:63:6b:b5:
71:92:b3:36:38:ab:e5:5b:6c:8d:61:b7:cd:44:f1:
c2:b8:61:4f:4d:28:dd:e0:94:38:d9:56:22:71:93:
7c:91:c5:12:ca:22:6c:56:64:69:82:6e:b2:89:15:
82:3f:f1:a9:fe:5d:09:ca:68:27:ac:88:37:00:af:
5c:2b:24:cc:60:e3:ff:1c:04:a4:30:de:01:ed:cc:
f3:86:a5:57:d2:8d:43:05:d1:15:db:4b:34:d1:e8:
26:0c:1a:69:b5:fe:67:c8:b0:20:c5:89:6f:ff:b7:
7a:ed:ad:be:ab:eb:ee:81:d9:72:39:d2:6d:ec:8c:
c6:6b:35:62:b2:8c:ed:3f:6e:d3:14:08:1e:a9:7f:
b6:fc:79:2d:c6:76:ab:c5:4c:a3:78:b6:65:e6:99:
f2:1b:1b:7a:63:29:8e:f3:a9:db:aa:23:3e:fa:f2:
62:34:04:35:08:10:e3:a7:bf:4b:55:2e:38:e2:a6:
a9:5c:78:c7:68:4a:a8:41:c5:f3:2e:2a:28:02:2c:
d6:28:c4:02:7b:e4:c9:7d:11:80:ae:27:d5:9d:e0:
f6:ac:74:23:6d:fd:d7:21:65:d5:20:7c:80:ca:0f:
34:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DE:B9:0C:5E:2B:98:3B:82:A7:5C:BA:98:5B:53:DD:76:A5:C5:FA
X509v3 Authority Key Identifier:
keyid:7F:56:F2:89:48:C8:32:F2:D4:34:BB:44:D5:DE:0E:A1:22:60:1B:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1byiUjIMvLUNLtE1d4OoSJgGwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/21fbca-80e0-4b8c-8622-4e86ad64f774/1/A965DF4rmDuCp1y6mFtT3Xalxfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/21fbca-80e0-4b8c-8622-4e86ad64f774/1/f1byiUjIMvLUNLtE1d4OoSJgGwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.40.110.0/24
Signature Algorithm: sha256WithRSAEncryption
91:bd:a3:23:a0:f0:52:2e:80:b3:8f:ab:a8:fa:8d:0a:8c:86:
19:76:44:3f:09:18:57:22:f6:67:5b:f5:d1:a5:5e:99:fe:a5:
12:fc:a4:c4:55:c1:2c:1d:8d:e7:3f:b9:0a:85:2c:84:f7:59:
c8:6e:22:7f:7e:09:c0:52:28:7a:ef:d3:70:34:d3:40:15:78:
16:21:72:08:9d:ac:7e:1a:67:bf:76:99:05:15:95:82:e3:19:
52:a4:bc:c3:45:ee:04:f3:ad:74:1b:fb:7d:e3:a4:36:ec:28:
fd:7c:f9:54:64:24:03:52:0f:f7:c9:6c:e2:e1:d9:02:c4:18:
95:88:c3:69:88:00:e7:f5:61:ee:a4:5f:44:fb:d2:6d:ff:1c:
64:9c:f5:f7:fc:35:07:5d:42:9a:9c:4a:d8:cb:83:e5:eb:c9:
1a:69:13:ec:dd:c1:4e:f2:92:31:be:ef:30:ce:2f:15:25:1d:
ba:df:d5:82:53:c8:78:bb:80:37:aa:78:32:70:18:37:23:eb:
68:e0:03:e9:5a:a4:ce:03:d5:17:30:94:89:52:8b:d4:f9:0d:
c2:55:dd:44:fe:77:d1:15:a8:dc:a8:1f:90:e6:40:cc:e4:98:
24:ef:06:f6:e8:17:76:3c:88:9f:9c:46:44:51:7e:94:e5:09:
b4:a6:ab:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:59 2024 by rpki-client on console-fra.rpki-client.org