Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/z-fL0MRsGe7nj3sDLUJQxQEKuOU.roa
File: z-fL0MRsGe7nj3sDLUJQxQEKuOU.roa (raw, json)
Hash identifier: HA8WLReyyGHwXTnRc1U/Ij6Q9+u5Cah20gn0Mws88L8=
Subject key identifier: CF:E7:CB:D0:C4:6C:19:EE:E7:8F:7B:03:2D:42:50:C5:01:0A:B8:E5
Certificate issuer: /CN=215a409d27b9a69346324004694da11beae02dbb
Certificate serial: 018A312B323B506D14063EC058EBCF77632B
Authority key identifier: 21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/z-fL0MRsGe7nj3sDLUJQxQEKuOU.roa
Signing time: Sat 26 Aug 2023 09:27:09 +0000
ROA not before: Sat 26 Aug 2023 09:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206494
IP address blocks: 185.134.177.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:31:2b:32:3b:50:6d:14:06:3e:c0:58:eb:cf:77:63:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215a409d27b9a69346324004694da11beae02dbb
Validity
Not Before: Aug 26 09:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfe7cbd0c46c19eee78f7b032d4250c5010ab8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a5:3d:76:91:e9:fe:2a:35:d9:05:0c:c6:ec:
27:27:04:58:f5:69:8c:33:69:a0:46:3b:13:2e:19:
81:b5:4c:bd:cc:13:c8:7f:8a:21:20:be:58:0a:47:
71:05:02:db:b8:f7:43:ca:ff:cf:1e:01:e6:41:49:
1d:fe:49:02:0a:6a:ec:15:14:d5:8f:bb:79:b4:e8:
13:78:a4:bb:8f:b4:2c:aa:03:26:47:36:13:ba:f0:
5e:6e:81:9d:aa:b3:ee:1a:d4:12:b5:b7:2f:0a:6b:
d8:25:aa:66:fc:f8:45:14:5b:44:0d:f4:bb:69:09:
c8:80:ab:0f:54:74:a8:9a:f1:47:78:39:29:f3:0f:
3a:fb:7d:55:37:8e:8e:92:ff:30:3a:63:30:28:92:
01:35:86:1e:58:73:d7:0a:78:7b:ad:26:6b:83:73:
02:bc:ac:12:a1:a6:43:c1:bd:81:99:1a:66:3d:cf:
4e:3f:f6:c7:d4:28:8c:54:53:ef:86:41:ac:69:a4:
28:28:32:92:4a:92:ef:f0:13:14:ea:4e:86:62:0c:
12:35:ef:2b:f2:26:24:9c:c7:4f:38:19:05:63:0e:
3e:4b:33:5f:11:58:5d:ed:12:17:a7:c9:ab:53:b1:
3b:b9:11:e3:90:c9:49:e8:04:69:34:0c:98:93:cd:
b1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E7:CB:D0:C4:6C:19:EE:E7:8F:7B:03:2D:42:50:C5:01:0A:B8:E5
X509v3 Authority Key Identifier:
keyid:21:5A:40:9D:27:B9:A6:93:46:32:40:04:69:4D:A1:1B:EA:E0:2D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVpAnSe5ppNGMkAEaU2hG-rgLbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/z-fL0MRsGe7nj3sDLUJQxQEKuOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/f0c9e3-1c40-4f33-95ce-98d2fee0f87a/1/IVpAnSe5ppNGMkAEaU2hG-rgLbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.134.177.0/24
Signature Algorithm: sha256WithRSAEncryption
23:08:46:d4:93:af:81:88:b6:47:16:52:68:5e:1f:13:99:b4:
60:45:5f:39:b4:2a:30:8a:b3:ba:0b:e5:a2:04:35:f8:b9:f5:
16:e1:8f:82:48:83:69:a9:e5:9f:2f:1b:6b:c0:0d:7e:17:87:
27:29:84:eb:ca:00:80:9b:59:63:d0:82:6d:49:53:b6:dc:25:
5b:5d:c5:d5:a6:e0:fb:78:41:47:89:49:c2:e4:4a:e2:1f:70:
be:10:10:42:75:e4:36:b6:43:f0:a5:19:18:c4:b8:71:98:82:
84:73:76:f7:3e:ba:f5:98:b2:49:41:f1:fa:3f:b3:f6:c7:70:
ea:2d:97:2e:14:2e:d3:ef:aa:97:70:9d:b1:ee:15:a3:38:74:
01:23:da:ca:9f:bf:25:7b:2b:d8:e9:9f:b4:5e:cd:93:a8:9a:
3f:87:2c:bb:b5:30:bd:3d:e7:f1:ed:9f:64:82:07:49:a5:09:
f1:6c:6a:51:35:4d:f8:83:8f:30:2f:8a:d3:b1:ff:df:25:11:
6d:c3:d3:79:81:aa:9f:01:29:af:a2:4e:fe:69:dd:e7:82:cd:
b9:e9:49:df:25:87:b2:4f:06:96:aa:41:e0:b3:38:11:c1:06:
88:45:49:4d:9b:60:e9:65:aa:0c:83:c1:e6:5d:f3:26:65:7a:
90:11:c6:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:09 2024 by rpki-client on console-fra.rpki-client.org