Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/5ff199-daf0-4a7e-8e5d-66d3d8ba539f/1/fzA3N7cJ0RLlnowdPr1b9hMSHRE.roa
File: fzA3N7cJ0RLlnowdPr1b9hMSHRE.roa (raw, json)
Hash identifier: +o5XY1pCFqr8K5XDLHNOyDewO0JsH1YCuL6c0C08Jio=
Subject key identifier: 7F:30:37:37:B7:09:D1:12:E5:9E:8C:1D:3E:BD:5B:F6:13:12:1D:11
Certificate issuer: /CN=e945946be7370503beafbe40e11115b9dc953bc3
Certificate serial: 018572D5DB892C252D344E10BB72A0545D84
Authority key identifier: E9:45:94:6B:E7:37:05:03:BE:AF:BE:40:E1:11:15:B9:DC:95:3B:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6UWUa-c3BQO-r75A4REVudyVO8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/5ff199-daf0-4a7e-8e5d-66d3d8ba539f/1/fzA3N7cJ0RLlnowdPr1b9hMSHRE.roa
Signing time: Mon 02 Jan 2023 14:14:56 +0000
ROA not before: Mon 02 Jan 2023 14:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 185.140.104.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:d5:db:89:2c:25:2d:34:4e:10:bb:72:a0:54:5d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e945946be7370503beafbe40e11115b9dc953bc3
Validity
Not Before: Jan 2 14:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7f303737b709d112e59e8c1d3ebd5bf613121d11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7e:b8:65:45:8e:14:a3:d3:0b:39:77:9d:c6:
15:47:7b:71:80:e4:e7:20:36:dd:c5:3f:be:a1:73:
7e:3a:45:9c:7d:57:6c:0b:09:71:b7:38:c9:9a:38:
07:a0:40:73:aa:7a:66:47:84:23:05:70:e2:f4:86:
6a:b1:8c:7c:ea:dc:33:37:5c:76:2d:f3:da:fe:b0:
f3:07:e3:e7:8a:70:d9:fe:d8:ab:f3:3b:38:9d:aa:
78:b1:62:50:5f:8a:c0:2d:94:67:02:03:9d:29:79:
2b:95:90:94:79:c5:f8:2b:49:d5:82:5a:02:70:ed:
8c:c2:b5:79:eb:24:3c:5a:57:e2:f1:fa:e5:12:95:
d0:cb:d3:c4:cf:97:57:a5:73:21:c3:13:c2:ae:ef:
c0:f0:2f:af:6a:a9:83:66:17:31:0b:1e:19:5d:4f:
93:b7:80:1c:b8:27:c5:b9:99:91:99:2b:86:0c:e1:
95:b9:ef:b2:eb:86:ee:b9:d2:18:c6:81:c2:83:b5:
0c:92:02:d5:2e:6f:ab:01:72:c3:26:28:3f:34:c0:
be:1e:83:dd:ea:87:a5:59:f7:f2:4f:f6:8b:7f:4c:
20:06:ba:62:af:61:5d:f5:1b:03:e8:01:fc:98:4a:
5f:e8:6c:94:d4:9d:17:6b:e8:ff:3d:14:98:2c:75:
16:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:30:37:37:B7:09:D1:12:E5:9E:8C:1D:3E:BD:5B:F6:13:12:1D:11
X509v3 Authority Key Identifier:
keyid:E9:45:94:6B:E7:37:05:03:BE:AF:BE:40:E1:11:15:B9:DC:95:3B:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6UWUa-c3BQO-r75A4REVudyVO8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5ff199-daf0-4a7e-8e5d-66d3d8ba539f/1/fzA3N7cJ0RLlnowdPr1b9hMSHRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/5ff199-daf0-4a7e-8e5d-66d3d8ba539f/1/6UWUa-c3BQO-r75A4REVudyVO8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.104.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:de:d2:81:21:b6:29:9c:d2:56:08:c3:f9:b3:0e:6f:20:bc:
74:e7:27:76:f2:d7:d1:52:b6:89:49:a4:c7:d3:00:8b:b3:e7:
39:d0:8b:00:4a:cd:59:65:bc:b6:fa:f5:39:c0:b3:88:2b:d8:
b3:a0:bd:dc:0f:62:16:89:42:91:61:96:3e:31:a8:36:db:79:
96:0a:ef:32:77:0c:60:02:e2:ae:82:df:b7:b1:1c:50:3f:d8:
36:d0:88:0c:39:f0:be:39:ef:78:fa:82:4e:18:45:31:49:6f:
3c:2c:74:76:99:42:45:98:88:c3:b8:b4:89:64:f3:b8:a0:4b:
53:22:0a:9c:c3:cc:ea:32:43:c2:00:2e:de:99:37:dc:29:ee:
53:d2:fa:60:fc:2e:36:e9:13:5e:be:70:ab:8e:a3:b6:7b:90:
1d:9d:c3:3a:2e:48:63:e1:64:fe:7c:f3:8b:02:c3:30:64:5a:
3f:bb:d3:17:d4:81:f5:29:73:7d:05:6e:2f:42:af:39:4f:d7:
8a:a6:c8:c1:55:b7:24:ab:32:a4:73:1c:b7:1e:d3:22:98:da:
65:3e:a9:46:5d:8d:fc:89:33:d3:d1:14:ec:7d:1c:eb:06:9d:
2e:6e:d7:7a:c1:59:20:a4:74:32:c0:b2:2d:b5:62:c3:47:8f:
38:ee:94:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:00:13 2024 by rpki-client on console-ams.rpki-client.org