Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/T1aYWvpcVqFKFSvHdgRj0j23Pqg.roa
File: T1aYWvpcVqFKFSvHdgRj0j23Pqg.roa (raw, json)
Hash identifier: K59YfXHuptKRJ+Tm+n0b874/kYWbkluTlG+krA7J7Yc=
Subject key identifier: 4F:56:98:5A:FA:5C:56:A1:4A:15:2B:C7:76:04:63:D2:3D:B7:3E:A8
Certificate issuer: /CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Certificate serial: 01856CC16AE83C6560D27E2E3618FB022EE2
Authority key identifier: 14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/T1aYWvpcVqFKFSvHdgRj0j23Pqg.roa
Signing time: Sun 01 Jan 2023 09:54:53 +0000
ROA not before: Sun 01 Jan 2023 09:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48847
IP address blocks: 185.127.181.0/24 maxlen: 24
185.127.180.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:6a:e8:3c:65:60:d2:7e:2e:36:18:fb:02:2e:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1474b6fc67b6b90db311c61fc0e3a9c752833c56
Validity
Not Before: Jan 1 09:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f56985afa5c56a14a152bc7760463d23db73ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:57:34:08:21:0a:94:fa:fb:bb:c9:86:b1:01:
d0:b6:c2:ae:50:dd:53:72:8d:68:51:30:2f:4a:87:
00:c5:33:71:f0:62:ce:a0:69:3a:5d:81:0c:c3:17:
06:37:63:de:40:dc:51:0c:e1:ba:4a:70:b7:cd:8e:
e9:ed:32:35:fe:50:f0:cd:cd:fb:11:8e:d1:9c:b4:
05:9d:df:ce:65:eb:e9:a2:b3:6e:1b:18:bc:6e:5c:
bb:cf:35:dd:59:0f:9b:68:0b:43:7e:31:a0:51:cf:
64:47:cb:d5:ea:4d:11:18:0c:29:fb:d8:6f:fa:ab:
9e:96:45:0c:d2:ae:19:3f:c6:73:33:24:33:a0:89:
04:ff:68:92:f6:af:de:b5:40:55:33:15:1b:e2:de:
13:ee:a3:c8:8d:f7:29:56:0d:7a:ed:2d:c3:cd:f7:
ee:f6:c4:5c:9c:bc:b0:9a:6f:b6:c0:d7:35:a4:39:
74:0e:d3:24:5c:d1:17:31:88:bb:14:23:28:de:4e:
1f:66:d8:4b:68:77:1f:fc:06:e9:0b:9c:d3:aa:ef:
f1:7a:0b:1b:08:5a:8d:b9:46:96:a4:35:b9:a4:e5:
64:48:36:33:e8:a5:58:c0:6b:32:1c:14:49:cf:d6:
7f:3c:25:08:03:da:a2:8f:cf:d6:61:cf:1d:c5:4a:
1a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:56:98:5A:FA:5C:56:A1:4A:15:2B:C7:76:04:63:D2:3D:B7:3E:A8
X509v3 Authority Key Identifier:
keyid:14:74:B6:FC:67:B6:B9:0D:B3:11:C6:1F:C0:E3:A9:C7:52:83:3C:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/T1aYWvpcVqFKFSvHdgRj0j23Pqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b1b41d-d886-442a-9524-8c56d8fe17b5/1/FHS2_Ge2uQ2zEcYfwOOpx1KDPFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.180.0/23
Signature Algorithm: sha256WithRSAEncryption
73:7c:6a:3d:1b:7e:0a:4d:ca:c5:2f:5d:6b:06:6f:e8:da:17:
bc:6c:7d:4b:d9:cb:c1:66:a9:50:d0:62:33:44:aa:ea:3c:22:
02:f4:81:c2:77:ec:00:8e:82:4e:f3:3a:f7:b6:77:a6:8a:f4:
85:4b:21:17:21:14:bb:59:21:52:40:ce:7f:55:39:87:f9:4b:
56:bd:01:7e:a3:e1:f5:6d:fd:f8:fd:e0:ab:e7:e2:68:af:29:
69:1c:2a:27:f7:93:c2:b4:79:e3:d4:99:ca:2e:85:d0:db:ce:
a5:07:ca:35:a8:d4:1e:84:98:f9:1b:cd:c4:01:45:84:89:40:
c3:f5:03:9d:be:71:5d:d7:9e:3c:96:f3:ab:d1:86:3e:8e:55:
c4:db:73:29:4a:87:9f:33:e0:de:da:11:b6:57:e6:38:5a:03:
48:0b:66:9d:c8:3f:6e:fa:7d:c4:f1:4c:95:a0:d0:36:3a:82:
2e:34:08:8f:b6:ff:60:7a:4d:9b:16:02:6c:d4:77:47:e5:60:
a0:65:c3:ee:ad:a9:ac:4a:fb:f5:d3:19:3a:38:e0:44:de:fb:
2d:88:bd:b1:40:02:8c:e1:d8:6a:6d:b2:4f:70:c0:16:7e:1f:
5b:0a:76:56:d4:4a:de:ec:f2:0f:70:38:d8:cd:ff:77:9b:d8:
31:dd:10:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:49 2024 by rpki-client on console-fra.rpki-client.org