Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fRmRM_R7f4wndxCoNgZ-o_fhAjQ.roa
File: fRmRM_R7f4wndxCoNgZ-o_fhAjQ.roa (raw, json)
Hash identifier: KhDf3KK4V52tlWn2XjU32eeUtmgSmcuyj8odYKPXNm8=
Subject key identifier: 7D:19:91:33:F4:7B:7F:8C:27:77:10:A8:36:06:7E:A3:F7:E1:02:34
Certificate issuer: /CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Certificate serial: 01856E2FB447C1AF49305B4FC35AA629A1B1
Authority key identifier: 46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fRmRM_R7f4wndxCoNgZ-o_fhAjQ.roa
Signing time: Sun 01 Jan 2023 16:34:58 +0000
ROA not before: Sun 01 Jan 2023 16:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207213
IP address blocks: 185.160.196.0/24 maxlen: 24
185.160.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Sep 2023 13:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:2f:b4:47:c1:af:49:30:5b:4f:c3:5a:a6:29:a1:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46815ca15d72a5a696f8bcdf486f5801966772bb
Validity
Not Before: Jan 1 16:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7d199133f47b7f8c277710a836067ea3f7e10234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:d0:f9:f6:b7:ea:e4:31:25:64:f8:91:ad:bb:
9b:52:3d:7d:de:38:ce:0b:ad:aa:05:43:2c:42:37:
34:a1:12:a8:88:21:be:1e:66:a4:40:91:27:ad:29:
34:79:cd:63:ba:90:2e:b7:c7:9e:90:79:58:1c:23:
df:fd:cf:e3:42:f5:32:19:9f:0e:06:ab:22:1c:cc:
4d:7c:3c:e0:af:5f:a2:ef:da:c7:da:dd:14:b6:6b:
c2:be:72:9d:38:ff:02:d0:c6:8e:84:73:03:79:89:
b2:fe:16:4b:1a:81:3d:40:69:9a:b2:cd:a8:e9:66:
db:b3:4d:3e:ea:cf:15:7a:22:63:0d:c0:be:10:37:
00:6f:6d:a2:03:8f:e6:26:10:21:82:71:3d:92:5a:
7b:f3:2d:48:2b:7c:64:75:f1:73:d9:96:02:e0:bc:
f7:b9:ed:8f:97:89:f2:77:56:e0:a7:69:55:96:ed:
2f:a9:a0:0b:04:7d:66:94:88:f8:fd:ea:d5:13:d7:
45:1d:b7:c0:d8:19:bc:72:7d:e6:b0:97:72:37:8e:
ed:4c:7d:18:a5:75:7e:8b:cc:50:70:c0:96:53:05:
80:07:d8:ef:f2:85:01:5a:a2:09:99:d4:0d:7e:91:
dc:09:3b:b4:c0:13:48:8c:58:8a:66:50:19:fc:cd:
8f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:19:91:33:F4:7B:7F:8C:27:77:10:A8:36:06:7E:A3:F7:E1:02:34
X509v3 Authority Key Identifier:
keyid:46:81:5C:A1:5D:72:A5:A6:96:F8:BC:DF:48:6F:58:01:96:67:72:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RoFcoV1ypaaW-LzfSG9YAZZncrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/fRmRM_R7f4wndxCoNgZ-o_fhAjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/66bd4b-1e56-4b46-8bab-d38a7660b51e/1/RoFcoV1ypaaW-LzfSG9YAZZncrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.196.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:15:e3:03:92:be:ca:55:0e:ce:24:e2:c1:e8:4b:f3:4b:ad:
9c:8c:15:18:41:0d:f8:8c:1f:be:fc:e1:8b:09:6d:c2:70:7a:
57:6a:ec:d7:60:56:93:2a:a3:fb:3b:ee:a8:f0:11:c8:3c:be:
4a:75:8e:3b:59:14:e6:b2:42:63:f6:f6:c2:ae:5f:a5:49:80:
6f:50:4a:a4:05:fb:ad:09:ee:cf:e0:dd:44:ce:38:a4:fa:5c:
7d:6b:df:e2:37:20:9d:60:c4:3a:5a:6c:d5:5f:a8:68:2c:2f:
a0:bd:3c:b0:75:84:12:d0:0b:94:41:97:f9:1e:f4:dd:ef:8f:
d1:81:6e:68:85:2c:aa:1c:75:54:62:86:ec:51:6a:85:48:76:
5d:9a:c0:c4:0d:cf:00:cf:a7:ca:69:c6:0b:9a:c0:3b:a5:2f:
6e:7d:75:34:78:53:04:dc:23:9e:b0:d0:7a:5d:56:2f:7b:9b:
1e:65:6b:04:10:a5:de:d4:08:cf:d5:e2:0d:cd:54:80:14:4b:
2a:69:fb:51:34:0f:10:87:b8:84:ab:36:af:54:74:24:bb:0d:
50:3f:54:02:f9:f5:84:e9:37:d5:2b:c8:91:6f:cb:f0:59:18:
25:31:5e:42:c0:3a:a2:d7:fa:f9:9c:a6:db:af:56:e5:8d:d0:
25:6a:d4:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:42 2024 by rpki-client on console-ams.rpki-client.org