Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/Y4DLOA87kBtlOdNsX9m2Wa0GERw.roa
File: Y4DLOA87kBtlOdNsX9m2Wa0GERw.roa (raw, json)
Hash identifier: hZC44VpKoS2SteS6TMDHsLGCuzL3TsD2HTCfGRtXyz4=
Subject key identifier: 63:80:CB:38:0F:3B:90:1B:65:39:D3:6C:5F:D9:B6:59:AD:06:11:1C
Certificate issuer: /CN=e0cde2c1fce3d6fe2185347dd89dcfd13ebbb151
Certificate serial: 01857139FCBBE41D723AC4ECED8903E110CE
Authority key identifier: E0:CD:E2:C1:FC:E3:D6:FE:21:85:34:7D:D8:9D:CF:D1:3E:BB:B1:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4M3iwfzj1v4hhTR92J3P0T67sVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/Y4DLOA87kBtlOdNsX9m2Wa0GERw.roa
Signing time: Mon 02 Jan 2023 06:45:03 +0000
ROA not before: Mon 02 Jan 2023 06:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49879
IP address blocks: 185.141.109.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:fc:bb:e4:1d:72:3a:c4:ec:ed:89:03:e1:10:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0cde2c1fce3d6fe2185347dd89dcfd13ebbb151
Validity
Not Before: Jan 2 06:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6380cb380f3b901b6539d36c5fd9b659ad06111c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:15:ca:32:ab:2e:08:b7:c0:03:2f:ea:fe:06:
00:cb:99:7b:7f:40:0b:94:d9:86:b9:c5:16:31:54:
bd:ad:f0:32:76:b9:d2:5c:78:56:a3:76:28:53:b1:
d2:38:ac:17:fc:48:8a:c1:e8:da:b8:6b:eb:04:4f:
30:0f:fd:5b:7a:ee:6a:e3:c2:b1:b9:24:a3:4a:e1:
0c:a0:e9:a9:ab:ec:47:5a:f3:a2:37:c6:ab:8a:ac:
19:9d:fe:30:e1:ed:17:78:4d:7d:bb:47:32:a7:67:
79:3a:7c:61:72:67:f1:30:76:b1:7e:19:84:c5:7c:
2f:04:bf:27:8a:3f:f3:b7:cd:9f:fb:80:53:36:da:
3c:cd:81:d0:d6:52:fa:40:f7:81:69:49:2f:64:c4:
8b:af:74:7c:84:c0:91:14:cf:bd:49:41:64:01:45:
6c:cc:14:fc:b2:2b:40:40:0a:96:4e:70:7b:6d:ce:
cf:65:18:5c:f9:3f:36:5d:25:96:e1:a7:0d:12:db:
ef:70:95:e2:41:63:13:23:f6:92:d2:09:62:71:42:
ab:d2:f5:76:4a:fb:70:f9:7b:b2:c8:2f:a9:e8:2f:
f0:49:b9:a4:b9:a2:f7:eb:e4:43:67:06:09:1d:70:
82:e4:13:fb:f9:ab:d7:68:94:98:6f:d6:d9:9c:70:
4a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:80:CB:38:0F:3B:90:1B:65:39:D3:6C:5F:D9:B6:59:AD:06:11:1C
X509v3 Authority Key Identifier:
keyid:E0:CD:E2:C1:FC:E3:D6:FE:21:85:34:7D:D8:9D:CF:D1:3E:BB:B1:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4M3iwfzj1v4hhTR92J3P0T67sVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/Y4DLOA87kBtlOdNsX9m2Wa0GERw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/ecdd93-1aa0-4b9a-b6aa-ecb3126fc8ed/1/4M3iwfzj1v4hhTR92J3P0T67sVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.109.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:40:01:00:41:12:cc:20:a8:8b:32:3b:3d:7d:43:46:2a:1a:
eb:76:d6:92:ec:e3:8d:41:e1:40:68:fd:b5:f6:78:db:21:7e:
ef:60:d4:76:e7:0c:e4:fc:b8:26:aa:8f:8c:67:8f:b8:81:db:
89:e6:f1:cc:29:53:c2:22:05:9c:6d:dd:1f:7c:62:ec:2f:50:
76:91:d4:0c:1f:29:98:0d:9d:ef:e1:21:ba:f0:26:e1:c9:8e:
8a:19:1f:95:e3:f7:25:f4:c9:33:de:47:72:a7:3a:8a:bc:6d:
ed:fb:98:9e:88:49:3b:4e:26:f1:02:f0:87:df:24:08:24:53:
8a:aa:2c:96:85:0e:0e:b1:6f:1c:7f:86:f8:7b:96:b5:8a:91:
c7:71:31:c8:41:27:2e:5f:81:35:30:ed:60:12:f6:cb:6b:94:
e1:94:95:32:fa:6a:2e:26:dc:6a:37:70:6f:fa:79:b2:7a:8e:
e4:e8:7a:56:d2:6a:d2:2b:aa:4d:b5:73:bd:8d:3d:7b:ff:c1:
5f:84:e0:a2:28:d9:37:5d:79:d9:22:71:e9:5e:53:bb:74:9f:
83:0a:16:61:ad:15:53:91:87:9d:5f:2d:44:ce:a0:b3:fd:00:
5b:55:52:75:77:cf:e9:dd:31:16:16:52:49:1e:a1:29:9a:9c:
c1:c1:66:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 15:21:35 2024 by rpki-client on console-ams.rpki-client.org