Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/bIaLHXSeO-JpzSZ81rS1hNe7h88.roa
File: bIaLHXSeO-JpzSZ81rS1hNe7h88.roa (raw, json)
Hash identifier: MZsUhEWTSeZpecw7I3W0FHFYjXAZrZ6jO484B0n/05k=
Subject key identifier: 6C:86:8B:1D:74:9E:3B:E2:69:CD:26:7C:D6:B4:B5:84:D7:BB:87:CF
Certificate issuer: /CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Certificate serial: 0185728CA8EF053CD0A9FBF32673EBFC428E
Authority key identifier: CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/bIaLHXSeO-JpzSZ81rS1hNe7h88.roa
Signing time: Mon 02 Jan 2023 12:54:58 +0000
ROA not before: Mon 02 Jan 2023 12:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48727
IP address blocks: 185.124.128.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:a8:ef:05:3c:d0:a9:fb:f3:26:73:eb:fc:42:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd7ee4b0327996304cf18a128e2655780c9d6b9b
Validity
Not Before: Jan 2 12:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c868b1d749e3be269cd267cd6b4b584d7bb87cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5c:fc:de:73:80:b0:ec:81:2f:18:43:7c:fb:
45:8c:5b:ce:91:40:51:8d:90:6b:ac:f2:eb:42:58:
43:bb:bb:ef:ec:6d:3b:ec:36:00:bc:88:2a:b9:30:
10:ab:ad:4b:e6:be:f4:8b:af:a1:3a:ee:7f:b5:e3:
c4:bd:fe:a2:11:74:1e:2a:19:6f:d5:9d:5e:04:00:
eb:a1:05:33:fa:46:15:df:50:0d:33:33:77:f5:06:
11:da:39:43:0c:52:dc:74:fb:88:4d:47:d4:a4:cc:
e0:15:fa:bf:18:77:1f:90:1b:96:cb:c3:f7:1a:a9:
a7:4b:1e:77:ee:cb:e2:6e:0d:79:23:89:36:68:3f:
3c:65:ba:86:ad:b6:30:e7:b7:d8:17:f1:45:c3:14:
f7:60:5f:4a:70:bd:ea:6f:da:28:fc:2a:bc:3b:54:
ac:98:f6:00:92:f3:45:8d:21:b1:18:c3:b4:fe:e7:
e1:99:33:30:20:da:98:bd:77:78:4e:3a:c3:80:2b:
51:89:c5:fb:a2:48:34:6e:ec:c8:81:a1:9c:05:8c:
15:df:52:a6:a6:bc:9d:41:51:ed:6f:83:91:bf:85:
22:9a:31:d1:47:ae:f5:c6:51:bd:2e:77:7f:84:f0:
f6:11:42:64:06:2f:0c:5d:f9:5d:dc:17:d8:df:88:
9e:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:86:8B:1D:74:9E:3B:E2:69:CD:26:7C:D6:B4:B5:84:D7:BB:87:CF
X509v3 Authority Key Identifier:
keyid:CD:7E:E4:B0:32:79:96:30:4C:F1:8A:12:8E:26:55:78:0C:9D:6B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zX7ksDJ5ljBM8YoSjiZVeAyda5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/bIaLHXSeO-JpzSZ81rS1hNe7h88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/ecaeb3-f42f-4bac-a49e-242ffdaa2670/1/zX7ksDJ5ljBM8YoSjiZVeAyda5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.128.0/22
Signature Algorithm: sha256WithRSAEncryption
40:16:b9:23:5d:21:48:78:25:35:be:cf:49:bf:cd:f0:9e:45:
2f:b9:db:a2:6e:8f:83:35:2b:ab:5f:27:e2:dc:ec:70:bd:f5:
2a:60:eb:6a:42:d0:06:94:18:0a:b0:22:30:85:6b:02:82:f7:
62:73:5a:81:7f:38:03:4d:eb:3c:2a:1c:f6:91:1a:94:f0:4f:
17:a3:87:fd:d3:05:60:36:7c:2a:be:7d:a5:fd:5f:ce:94:55:
ca:84:88:b1:7a:cb:70:8a:2f:cf:9c:97:13:5d:b5:fe:25:62:
c3:59:14:6f:58:01:f2:9d:74:50:5b:7d:d3:f0:36:50:de:97:
21:43:dc:ed:45:2f:3e:e0:20:65:8c:57:e1:92:ac:1c:ef:15:
a1:92:d5:50:68:79:a3:39:9a:9f:92:20:77:fe:18:1f:fc:72:
4e:b3:fd:88:1b:0d:1a:2c:33:f9:5b:85:58:b6:39:bb:5b:7e:
8f:3d:5b:e7:15:ac:a1:96:fa:d0:e4:fc:ad:68:22:33:0c:f7:
fd:a2:f1:8d:b3:88:e0:48:44:e4:4f:8e:72:4c:82:1f:93:a1:
61:e8:88:de:45:b7:87:77:f7:a7:7b:68:90:20:be:7b:f5:9f:
95:cf:ad:81:6c:50:c4:ec:c6:2e:ca:0a:57:59:8d:05:04:50:
69:8d:e4:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:26 2024 by rpki-client on console-ams.rpki-client.org