Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/hDr5maevX-9qgEFpHd8buHAdft0.roa
File: hDr5maevX-9qgEFpHd8buHAdft0.roa (raw, json)
Hash identifier: Zt41+qkwKeoLPI1ctykc0J+AQuoURhHYI9JQq8RHh1Y=
Subject key identifier: 84:3A:F9:99:A7:AF:5F:EF:6A:80:41:69:1D:DF:1B:B8:70:1D:7E:DD
Certificate issuer: /CN=9c1cd1b3c8772956fa85535a8464b4ca19663ade
Certificate serial: 018734CABD06D03A11520EB305D6AC51D0A3
Authority key identifier: 9C:1C:D1:B3:C8:77:29:56:FA:85:53:5A:84:64:B4:CA:19:66:3A:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nBzRs8h3KVb6hVNahGS0yhlmOt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/hDr5maevX-9qgEFpHd8buHAdft0.roa
Signing time: Thu 30 Mar 2023 23:11:54 +0000
ROA not before: Thu 30 Mar 2023 23:11:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210837
IP address blocks: 185.136.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:34:ca:bd:06:d0:3a:11:52:0e:b3:05:d6:ac:51:d0:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1cd1b3c8772956fa85535a8464b4ca19663ade
Validity
Not Before: Mar 30 23:11:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=843af999a7af5fef6a8041691ddf1bb8701d7edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b2:e4:37:79:c3:40:dc:fc:a6:76:17:c7:9b:
96:03:af:ad:fa:59:52:76:81:dc:06:06:19:83:fd:
d2:49:04:e1:63:21:6d:d4:3f:0f:28:b0:0e:fc:9d:
e5:e3:04:e7:86:f2:a3:50:5b:b0:55:33:16:10:6a:
7c:52:6b:a6:37:24:c6:78:02:16:f0:53:d2:74:68:
ff:d9:f4:40:2f:6d:79:6a:00:04:af:ca:fc:e5:4d:
28:07:14:02:99:4e:98:87:cf:36:65:9c:fd:3b:5f:
57:79:f0:8b:28:09:ae:16:79:1c:36:bb:3d:a2:82:
fb:42:d1:0f:b2:54:c3:f9:f3:36:49:d3:02:f2:bd:
ab:f7:ac:b5:e9:87:f7:9a:f0:35:35:d2:14:c8:c9:
96:2a:c7:86:d7:25:46:4a:f0:f3:e7:c3:90:84:ba:
05:e9:96:7e:e1:ff:c5:39:38:24:d7:9d:13:71:69:
fb:80:9e:95:a5:b7:42:82:9d:08:f9:05:34:01:a6:
1b:32:e2:11:93:5f:83:6d:ee:53:43:89:99:25:90:
fb:6d:08:3c:7e:25:1d:8f:44:f9:21:df:9e:96:d7:
7e:bd:89:12:39:ae:fb:10:d1:76:56:d9:fa:17:c9:
cd:33:89:54:36:60:25:04:d7:5c:45:d7:53:cc:93:
b4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:3A:F9:99:A7:AF:5F:EF:6A:80:41:69:1D:DF:1B:B8:70:1D:7E:DD
X509v3 Authority Key Identifier:
keyid:9C:1C:D1:B3:C8:77:29:56:FA:85:53:5A:84:64:B4:CA:19:66:3A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nBzRs8h3KVb6hVNahGS0yhlmOt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/hDr5maevX-9qgEFpHd8buHAdft0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/06eab0-6c6e-4c95-bbdc-916047062a22/1/nBzRs8h3KVb6hVNahGS0yhlmOt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.240.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:b5:4f:d4:e6:5d:82:55:6b:b9:df:c0:c8:45:36:3e:67:a5:
d0:01:3c:06:9f:4b:f8:12:b6:9a:9b:d3:ba:99:c4:50:48:7e:
a1:58:c1:fb:59:c3:c5:63:ed:a0:a4:13:b2:82:3c:6c:7f:9a:
db:58:b6:c4:b8:ba:10:38:71:fe:55:81:a9:6e:3a:2c:f2:1e:
a7:ed:31:df:96:87:68:e6:bc:8e:2c:d6:bf:ed:7b:68:a6:4a:
1f:ff:ed:4d:28:f1:1a:1d:01:77:aa:ca:20:10:99:7e:2b:71:
c5:78:6e:95:6c:ad:f6:ee:f8:e3:66:5e:d6:a5:77:21:58:9a:
86:d7:3b:f3:5d:17:f6:06:68:5f:f3:71:3a:0b:4d:d3:25:ce:
b9:36:a1:93:41:06:16:7e:23:7a:dd:21:bd:9d:1c:f0:12:81:
f7:1c:19:56:62:f5:7c:f5:19:3b:05:10:ce:13:60:de:35:87:
75:38:ba:8e:9d:e0:d5:b0:5a:15:0a:d8:6e:3c:87:34:9f:50:
4c:56:28:85:bf:ad:c7:5d:1f:a4:f2:9a:64:44:f5:bf:03:4a:
38:be:af:90:d4:5a:84:13:51:15:a9:ff:93:63:d6:d1:bc:ae:
5a:be:57:48:6a:e6:bf:ab:30:69:5f:28:fd:3a:e1:a3:15:05:
fd:57:92:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:24 2024 by rpki-client on console-ams.rpki-client.org