Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/Ao4T2L20sHA-6km_DF_961jvOKA.roa
File: Ao4T2L20sHA-6km_DF_961jvOKA.roa (raw, json)
Hash identifier: c12eRNL1I+x4NF1SySEO+m1rBreyStpuX7xFNn1xW6A=
Subject key identifier: 02:8E:13:D8:BD:B4:B0:70:3E:EA:49:BF:0C:5F:FD:EB:58:EF:38:A0
Certificate issuer: /CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c
Certificate serial: 018570676322A68A697F632C7C546974EDB7
Authority key identifier: 0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/Ao4T2L20sHA-6km_DF_961jvOKA.roa
Signing time: Mon 02 Jan 2023 02:55:01 +0000
ROA not before: Mon 02 Jan 2023 02:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 185.127.28.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:63:22:a6:8a:69:7f:63:2c:7c:54:69:74:ed:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e0b0dcb6ad0ca816d2bd204e13f1eaf1104274c
Validity
Not Before: Jan 2 02:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=028e13d8bdb4b0703eea49bf0c5ffdeb58ef38a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5a:54:4b:61:c3:dd:5f:3a:d1:6d:13:25:fe:
8c:c3:b0:bc:22:e7:b1:cc:37:1c:9e:92:23:0a:35:
de:01:b2:4e:89:c9:f3:6a:74:8a:9b:80:ee:3f:6a:
75:71:38:93:0b:bd:b6:6d:2e:91:27:ed:d1:27:65:
3e:12:5d:a2:c1:dc:30:c7:24:cd:f9:0d:ea:34:59:
68:ca:dd:fc:41:75:93:55:7c:f5:49:ae:de:4f:82:
e4:53:ba:bf:b2:31:25:eb:a6:46:c2:67:7f:96:79:
b5:00:e9:99:53:8e:68:3f:3f:fd:2b:fc:f4:1b:6d:
83:c0:38:e5:17:84:7a:3f:2d:39:de:63:42:5a:81:
18:96:8f:1c:1d:bb:53:5a:7e:f3:fa:6e:9e:2e:fd:
5b:09:58:51:46:95:f2:86:97:89:33:db:a5:ef:51:
54:39:52:67:a6:db:a2:be:48:4e:e5:ea:f2:25:33:
27:7d:f9:03:d1:3c:e4:eb:3c:a2:8c:d6:73:6a:58:
c5:f8:dd:13:05:2e:0c:6e:07:44:8b:ea:03:12:fb:
57:fc:05:bc:d0:ff:fc:f2:20:a3:37:e0:f2:3c:eb:
16:6b:25:72:aa:70:46:39:2b:e9:33:ff:82:65:b7:
b2:c3:da:92:95:dc:87:b5:e8:42:99:05:e3:4e:e7:
da:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8E:13:D8:BD:B4:B0:70:3E:EA:49:BF:0C:5F:FD:EB:58:EF:38:A0
X509v3 Authority Key Identifier:
keyid:0E:0B:0D:CB:6A:D0:CA:81:6D:2B:D2:04:E1:3F:1E:AF:11:04:27:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DgsNy2rQyoFtK9IE4T8erxEEJ0w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/Ao4T2L20sHA-6km_DF_961jvOKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f19d06-c7fa-40e5-b813-7fe3951a735b/1/DgsNy2rQyoFtK9IE4T8erxEEJ0w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.28.0/24
Signature Algorithm: sha256WithRSAEncryption
e6:bf:9f:01:6d:c3:9e:85:06:bc:e3:45:cd:7c:58:47:fd:2b:
4e:72:ea:55:9d:4b:ee:76:d3:1d:0b:77:77:cc:89:5e:82:98:
d2:d4:c1:10:af:ab:36:dd:b4:a8:4d:87:f2:9c:7c:c7:98:0c:
54:3c:15:64:f2:8c:27:32:50:65:db:4b:69:fd:cc:ab:2f:95:
64:85:f1:39:65:1d:b4:51:fc:f5:97:79:21:2b:17:e4:5c:6b:
00:4a:bb:b1:a9:7b:7b:82:57:67:1d:61:f6:99:7c:30:0b:b1:
ef:d7:b2:06:f2:e3:f5:87:ba:df:b8:5e:9a:0e:66:e8:cb:79:
6d:15:94:d8:df:4e:ea:6d:e2:0b:cf:77:f9:e3:d1:fb:55:89:
b3:53:7b:07:ce:1d:62:16:6d:d9:d5:46:1b:6f:db:e2:57:9b:
58:f4:68:47:d4:60:2f:4a:99:b5:00:29:53:34:3b:b9:c6:67:
d9:3b:a5:bd:4b:da:96:f9:6b:dd:56:29:5f:e5:4f:55:39:d1:
cb:d0:48:15:43:08:49:c5:9e:22:2d:8d:76:8b:8f:20:7d:d1:
6c:6c:21:f3:6c:b7:f2:90:c4:93:1f:6e:f5:86:a6:66:02:47:
0b:82:24:81:f1:fe:b1:40:df:45:57:c2:e8:0d:1b:0d:23:68:
25:57:0e:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:31 2024 by rpki-client on console-fra.rpki-client.org