Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/dQv6Vc2O0cv1rLH0hP7zPUD8Fuc.roa
File: dQv6Vc2O0cv1rLH0hP7zPUD8Fuc.roa (raw, json)
Hash identifier: NMrZfswVq4G+EHtXX1uPIAuyNXqGgeHQS+n21fcp8pA=
Subject key identifier: 75:0B:FA:55:CD:8E:D1:CB:F5:AC:B1:F4:84:FE:F3:3D:40:FC:16:E7
Certificate issuer: /CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Certificate serial: 018573CCD6515C2045318BCB8BE33267B684
Authority key identifier: CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/dQv6Vc2O0cv1rLH0hP7zPUD8Fuc.roa
Signing time: Mon 02 Jan 2023 18:44:42 +0000
ROA not before: Mon 02 Jan 2023 18:44:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42689
IP address blocks: 185.210.157.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:cc:d6:51:5c:20:45:31:8b:cb:8b:e3:32:67:b6:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb645bc0fdb8626bce2c0425c4087b54e150d386
Validity
Not Before: Jan 2 18:44:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=750bfa55cd8ed1cbf5acb1f484fef33d40fc16e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:03:af:72:4d:57:18:85:89:d7:a0:6d:3c:1b:
f1:94:43:e7:fc:5a:4a:9f:af:8a:bc:11:5e:3b:8c:
f1:8e:2c:22:03:f6:42:52:98:8f:ba:5a:ff:c4:48:
b8:03:a0:f7:ac:f1:d9:7d:f8:cc:c5:fc:4e:49:ea:
02:b7:b4:fe:93:11:74:c1:d5:27:c8:71:5f:a3:fe:
b5:3b:dd:b4:8b:74:29:54:63:c6:07:dd:bb:40:59:
6e:8c:c5:c1:8c:be:b4:ea:ad:e9:f3:05:57:63:73:
65:5f:a7:c1:39:a5:5c:e0:6c:2d:f3:20:57:df:40:
0d:8a:49:79:20:34:4f:23:9e:cb:b7:e1:a0:05:e4:
60:0e:81:81:96:3b:9c:be:3d:bb:fe:d0:90:56:9d:
e2:07:7c:9a:31:f6:63:fc:bf:22:77:0b:05:1b:b5:
29:35:0f:81:25:e2:55:a3:3c:a7:29:b4:e6:ca:43:
fa:d1:87:eb:8c:bc:7c:a3:11:97:8a:b1:a3:28:97:
e8:93:14:be:7c:cb:2b:f7:09:1f:f8:98:5e:fa:2e:
fe:36:22:3b:e5:30:df:cf:79:c0:44:b4:60:87:5e:
ed:1e:eb:24:09:99:09:ca:1f:31:39:1e:26:12:f2:
35:b1:80:7a:77:00:cd:7e:83:8a:c0:bd:da:6b:42:
bc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0B:FA:55:CD:8E:D1:CB:F5:AC:B1:F4:84:FE:F3:3D:40:FC:16:E7
X509v3 Authority Key Identifier:
keyid:CB:64:5B:C0:FD:B8:62:6B:CE:2C:04:25:C4:08:7B:54:E1:50:D3:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2RbwP24YmvOLAQlxAh7VOFQ04Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/dQv6Vc2O0cv1rLH0hP7zPUD8Fuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/57bf89-fe3b-4c21-8ffb-e8754d005ebe/1/y2RbwP24YmvOLAQlxAh7VOFQ04Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.157.0/24
Signature Algorithm: sha256WithRSAEncryption
87:46:24:e0:57:bd:a3:34:bd:aa:d4:c3:90:31:c8:59:46:b1:
cc:8e:e2:df:7f:d0:a1:b3:5f:20:df:e9:ae:5e:52:a8:e5:51:
3b:15:6d:c2:3d:d6:53:d9:db:36:b7:19:e5:bc:b2:58:77:32:
52:7d:20:9b:5d:bf:c5:93:cf:bd:a6:71:1a:fc:9f:84:26:06:
b8:21:a5:fd:7c:f1:c3:b9:b0:40:0a:a4:6b:e0:5a:34:73:0b:
e5:21:94:88:1f:12:9a:6c:b8:0d:ac:68:33:19:b8:e4:3d:d1:
a7:19:f3:0e:42:31:26:52:72:d1:7d:48:71:ab:05:17:24:25:
ff:8d:00:d2:3e:2b:71:11:af:d8:21:93:01:c3:bd:18:8d:2b:
ae:6f:a0:3d:ae:08:22:5e:bf:07:57:99:89:b4:16:b1:d9:a0:
ae:58:d1:ca:c0:27:87:a6:7e:0f:49:71:b5:20:a2:ab:45:29:
55:5b:4d:62:0a:20:ee:28:52:5d:60:64:1e:30:fb:ce:8b:c3:
8e:8d:31:36:f9:87:64:03:ac:b0:db:42:69:dc:87:c0:75:9a:
12:ff:71:f6:09:2d:4d:94:19:80:f0:77:b0:d0:0e:8c:f3:80:
a2:12:96:b1:dd:f7:2a:74:21:a0:94:77:b0:8a:c1:6e:2b:5d:
ae:e9:a4:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:42 2024 by rpki-client on console-fra.rpki-client.org