Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/b-sf3EXGEeZGE78TKUAjf_kWaSM.roa
File: b-sf3EXGEeZGE78TKUAjf_kWaSM.roa (raw, json)
Hash identifier: 4nhyjiUIasOUoLwA9u1KwYreypo5rBdDJKiO1CtmpDc=
Subject key identifier: 6F:EB:1F:DC:45:C6:11:E6:46:13:BF:13:29:40:23:7F:F9:16:69:23
Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial: 018C90C6367E38021923F97A2B7440D5E2AE
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/b-sf3EXGEeZGE78TKUAjf_kWaSM.roa
Signing time: Fri 22 Dec 2023 09:05:58 +0000
ROA not before: Fri 22 Dec 2023 09:05:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57202
IP address blocks: 194.183.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:c6:36:7e:38:02:19:23:f9:7a:2b:74:40:d5:e2:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
Validity
Not Before: Dec 22 09:05:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6feb1fdc45c611e64613bf132940237ff9166923
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:c9:ed:98:46:49:84:6d:7e:86:0e:5a:3e:7c:
ac:39:c4:3d:07:21:d2:54:ea:64:28:1a:86:70:09:
3e:9e:bc:65:1f:64:23:f6:2d:48:d6:42:ac:bb:a5:
33:ac:12:55:69:29:15:0b:15:1c:80:20:f4:66:b9:
d2:b3:b2:75:67:31:72:6a:98:9d:dd:39:ef:6b:b3:
08:6d:83:10:d9:27:e5:3a:fc:b6:a7:11:7d:fd:eb:
e5:ae:bc:bc:24:40:86:15:11:af:6b:bb:03:b3:33:
7d:c6:b1:2a:90:30:5f:28:45:1b:38:1d:56:07:60:
b5:a7:9b:79:55:65:a1:e7:e1:5f:ae:27:f6:82:f0:
4b:16:0c:8d:d3:b0:9b:65:eb:36:98:97:98:f6:7a:
3e:8e:0d:07:e1:c0:50:c8:9a:e1:5c:ce:f0:9c:75:
af:83:2d:42:a2:d6:2b:7d:8f:5b:2c:aa:79:09:b4:
f1:cd:b5:64:97:87:7e:f5:1e:f5:55:c1:b7:88:29:
ca:16:3b:e3:08:c4:be:5b:4d:b4:42:b8:56:b9:36:
62:48:56:dc:85:d4:41:ff:f4:5a:fe:4d:7b:ae:74:
f2:be:11:88:30:ff:78:23:2f:c9:02:bf:1e:82:69:
36:64:5d:e4:75:9e:0e:27:22:a1:ff:4f:bb:ee:22:
ee:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:EB:1F:DC:45:C6:11:E6:46:13:BF:13:29:40:23:7F:F9:16:69:23
X509v3 Authority Key Identifier:
keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/b-sf3EXGEeZGE78TKUAjf_kWaSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.180.0/24
Signature Algorithm: sha256WithRSAEncryption
48:88:ef:8d:83:32:ac:49:e8:c4:9c:36:2a:23:a6:c2:2b:fa:
c6:c0:37:0c:41:cc:38:fb:9c:f7:9b:0b:28:9f:82:ca:dd:25:
10:58:69:a2:83:3a:5c:7e:9a:f7:35:69:c3:3e:8f:c7:cc:32:
8d:77:49:18:84:50:0f:de:0f:dd:b2:58:7a:d5:cd:57:06:e8:
40:4e:04:28:cd:38:d2:79:60:74:d2:9e:f2:bf:79:a9:93:41:
1b:5d:26:89:51:50:8a:b4:ef:85:2c:58:46:9a:55:10:d0:62:
30:45:8f:0a:18:32:48:ce:7d:95:4f:10:2f:bd:07:fc:b6:dc:
01:52:3a:21:fd:a9:e4:b2:cd:4d:af:e9:29:20:af:27:b3:49:
e0:06:d4:29:5e:cf:f8:e5:02:11:cd:22:c4:99:6a:27:d1:e2:
e9:28:65:d8:03:33:14:69:fc:02:d3:34:82:74:83:cd:5c:12:
ab:b3:c9:1b:d7:7e:df:59:f5:38:aa:3e:9c:1c:46:55:a1:dd:
e1:dd:27:8b:ad:c4:dc:9f:3c:d5:52:a3:f2:f8:52:25:0b:d7:
20:fa:d3:2b:0b:96:b0:f4:ec:10:60:ec:b4:93:cc:30:61:d3:
38:cb:c1:43:29:af:db:3f:45:ed:2e:a0:cc:39:8a:41:06:0b:
d4:4a:87:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:49:39 2024 by rpki-client on console-fra.rpki-client.org