Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/jCdLckiwODxcyJdZ-m59YBLQKSE.roa
File: jCdLckiwODxcyJdZ-m59YBLQKSE.roa (raw, json)
Hash identifier: TqBZqvdcTFoKG8QW5XtLX/rG11HHRIaoXDdiqcmOWB8=
Subject key identifier: 8C:27:4B:72:48:B0:38:3C:5C:C8:97:59:FA:6E:7D:60:12:D0:29:21
Certificate issuer: /CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Certificate serial: 018570797EEC1F52960D43DABE12E3AD62D3
Authority key identifier: 1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/jCdLckiwODxcyJdZ-m59YBLQKSE.roa
Signing time: Mon 02 Jan 2023 03:14:48 +0000
ROA not before: Mon 02 Jan 2023 03:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205394
IP address blocks: 185.201.164.0/22 maxlen: 24
2a0a:c840::/29 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:7e:ec:1f:52:96:0d:43:da:be:12:e3:ad:62:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ee5efbf65897160d55a52dc3a22c017876cd06c
Validity
Not Before: Jan 2 03:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8c274b7248b0383c5cc89759fa6e7d6012d02921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:dd:14:64:b0:ab:b3:3f:74:65:af:19:1b:22:
b1:c1:64:90:7b:50:0d:b3:25:be:82:dc:be:4d:06:
3b:46:be:a6:42:1d:cb:49:8a:84:c6:25:3a:db:64:
d9:19:c4:6b:c5:90:ec:e8:e7:f8:8b:77:35:0e:72:
53:32:0e:d5:6a:5c:c9:7a:84:de:aa:61:6c:9b:84:
f5:01:b9:2e:2b:a9:47:87:97:a4:bd:af:34:1e:6d:
a6:f3:82:ad:8a:40:a9:40:d3:78:e6:eb:eb:e5:d5:
31:77:b7:5b:20:c3:53:eb:ad:f6:58:ec:58:2c:29:
6f:79:bb:d4:c5:c6:c8:7e:78:b8:67:19:7b:3b:d6:
8f:31:0d:a7:6e:51:49:65:a9:38:d3:25:e1:e1:fa:
fa:fb:3a:26:59:28:90:bd:c4:83:95:3a:74:3a:99:
44:84:55:7a:a8:01:e4:86:8a:fb:ea:90:81:27:dd:
31:ec:71:67:4e:3c:9c:48:16:5d:71:09:46:34:70:
1e:e2:a2:90:68:de:09:0c:06:05:97:43:ef:19:55:
4d:90:be:19:67:4b:d3:69:82:e4:37:c4:ca:fb:51:
18:d2:46:3b:df:18:b4:24:b9:a2:6c:52:e2:5e:46:
c1:0f:ef:07:cb:5d:e4:dd:5a:43:b6:d2:ee:7c:68:
d2:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:27:4B:72:48:B0:38:3C:5C:C8:97:59:FA:6E:7D:60:12:D0:29:21
X509v3 Authority Key Identifier:
keyid:1E:E5:EF:BF:65:89:71:60:D5:5A:52:DC:3A:22:C0:17:87:6C:D0:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/jCdLckiwODxcyJdZ-m59YBLQKSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/332477-c83c-4f80-b1be-7c0db7bae135/1/HuXvv2WJcWDVWlLcOiLAF4ds0Gw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.164.0/22
IPv6:
2a0a:c840::/29
Signature Algorithm: sha256WithRSAEncryption
35:9a:54:ea:a3:b2:fc:2a:27:a9:0b:0e:21:fe:d5:27:bb:ee:
fc:bc:f2:3e:48:db:3f:e9:6e:5a:7d:6a:4f:4c:95:32:11:82:
ef:4b:3c:81:43:55:91:13:43:d5:07:cf:90:f4:cf:a0:1d:b6:
a7:b7:cc:5d:8c:6b:3b:20:a5:f4:80:d3:b6:77:1f:de:86:29:
35:67:82:8d:2c:57:99:c1:0a:d0:35:06:a7:f4:f3:52:89:9f:
de:23:2f:b9:41:45:b1:de:c6:df:2f:18:e9:b5:a5:78:63:39:
aa:02:c3:ee:ff:e4:85:7b:f5:09:f4:0a:47:26:a3:9f:ca:4e:
f6:8a:5c:e7:bb:c5:c9:c1:21:7b:cf:f5:13:bd:f1:1c:df:bf:
2b:ef:31:be:9e:ef:65:65:0d:96:1f:42:6d:ca:f9:22:0b:4c:
eb:48:91:33:32:05:79:1b:45:8f:4f:ab:dd:20:58:d4:75:df:
c5:eb:a9:9c:23:87:34:79:dd:ff:28:e7:e5:2c:01:e6:13:13:
b1:d2:d3:5c:16:21:e2:60:aa:2f:f6:21:6b:d3:d3:bb:13:ab:
e3:b4:4f:08:dc:03:02:ec:b8:50:bf:f8:3a:75:e3:24:a7:30:
1a:54:57:c3:5f:d0:14:d1:47:84:65:a0:6e:8e:11:01:9e:70:
a6:51:97:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:41 2023 by rpki-client on console-fra.rpki-client.org