Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1xr6UVvbP6fJ9KHJjvhoH5ccEcw.roa
File: 1xr6UVvbP6fJ9KHJjvhoH5ccEcw.roa (raw, json)
Hash identifier: zgjRIViOl7fiTyCqPlxva0qTKHM4VllbVGSBLmgAZ0A=
Subject key identifier: D7:1A:FA:51:5B:DB:3F:A7:C9:F4:A1:C9:8E:F8:68:1F:97:1C:11:CC
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018850121E368229C90B0FCB0098D7B11AF5
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1xr6UVvbP6fJ9KHJjvhoH5ccEcw.roa
Signing time: Wed 24 May 2023 23:22:24 +0000
ROA not before: Wed 24 May 2023 23:22:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208949
IP address blocks: 185.114.146.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:50:12:1e:36:82:29:c9:0b:0f:cb:00:98:d7:b1:1a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: May 24 23:22:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d71afa515bdb3fa7c9f4a1c98ef8681f971c11cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:ef:35:f7:fb:6d:09:1a:57:73:02:a9:24:83:
c3:e6:dc:7b:ed:eb:84:d4:54:f1:8b:c5:d4:6b:11:
ff:26:36:5b:a3:5b:06:a2:6c:95:e7:5c:1b:76:97:
14:0d:42:bd:70:e1:70:91:2e:9f:9b:9e:e1:77:17:
24:00:c4:fc:df:d9:44:56:e0:54:ae:b2:21:87:7b:
8b:15:37:46:0b:b2:39:4e:e4:30:96:14:2d:9c:e4:
65:47:1a:c8:02:b7:61:ff:0f:6b:2b:b7:a8:3c:0b:
d5:88:80:45:6a:9f:23:d1:32:fc:58:e4:db:6b:3f:
80:1c:86:f5:08:53:4c:f0:77:53:64:21:39:01:52:
6a:e7:1a:6f:b6:82:e5:3f:d4:01:4b:ec:81:d2:db:
6b:ee:11:39:bd:ab:75:c3:2b:5d:93:e6:89:4a:04:
eb:77:b1:bb:66:ce:e5:4f:3c:f1:3b:33:00:8a:1e:
fc:61:73:ad:7d:02:cc:91:40:87:a5:82:ad:09:a5:
01:5e:a4:d8:65:53:c9:e7:0a:08:3e:83:76:59:25:
7c:09:9b:b3:c4:76:0c:f2:50:f0:a9:d3:aa:40:53:
c5:a5:dd:db:16:69:ac:65:02:01:be:37:d4:ef:70:
0b:b2:34:2a:d0:bd:12:67:06:60:18:f1:6a:82:18:
2b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:1A:FA:51:5B:DB:3F:A7:C9:F4:A1:C9:8E:F8:68:1F:97:1C:11:CC
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/1xr6UVvbP6fJ9KHJjvhoH5ccEcw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.114.146.0/23
Signature Algorithm: sha256WithRSAEncryption
82:87:e3:a1:5f:75:94:72:29:35:4e:91:07:b3:7e:8f:5a:f9:
62:ab:3b:08:19:84:f1:5a:ba:12:f3:1d:06:96:4e:11:b2:de:
1f:bb:c3:4f:11:bf:f2:a6:f4:45:3a:d3:df:f7:e1:da:74:83:
f7:fe:72:8a:f3:fb:c7:dc:cf:34:bf:19:ee:25:b0:5e:e8:dc:
b5:87:44:82:06:3b:72:42:17:e7:92:63:6b:82:88:fe:45:e5:
d8:c1:52:34:45:af:e1:c5:51:1b:28:b7:ef:b3:38:19:d4:d2:
af:a8:3d:d0:21:b2:15:10:d1:10:91:f3:05:4a:88:a8:66:9f:
84:42:0b:48:e3:0f:66:fe:b7:5f:7c:cf:59:73:98:00:9d:a1:
b4:1e:d2:98:7d:59:9a:5e:f8:b0:cf:ed:c0:f1:67:1f:6a:99:
7c:fb:a4:0d:2a:d6:8b:3f:d7:b6:fe:e3:10:e0:25:46:c6:c5:
31:40:3a:d6:01:50:55:bd:0d:1d:7d:9b:1f:d3:37:25:3b:26:
f9:bb:78:ed:0a:ae:ab:e6:e0:a2:ef:5a:d4:bf:6c:53:4e:ff:
a9:b3:de:96:d1:fe:b8:0f:e6:31:80:31:df:cb:38:34:f6:3b:
52:22:14:6d:0a:b2:8f:08:45:77:3f:6b:56:4d:59:4e:e0:e8:
f2:a0:c4:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:23 2024 by rpki-client on console-fra.rpki-client.org