Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/J4ZrLngJFtJKwVC5OqjED-WD2_o.roa
File: J4ZrLngJFtJKwVC5OqjED-WD2_o.roa (raw, json)
Hash identifier: j6zPd4Q84w9QzX96OSLgBJBQDshzwqNV+26nt/QcZbA=
Subject key identifier: 27:86:6B:2E:78:09:16:D2:4A:C1:50:B9:3A:A8:C4:0F:E5:83:DB:FA
Certificate issuer: /CN=6cc69c3d7030cec19f8fb66e543bde65595708a2
Certificate serial: 018C1B02F5F0DB439A8458826D5465C8CE04
Authority key identifier: 6C:C6:9C:3D:70:30:CE:C1:9F:8F:B6:6E:54:3B:DE:65:59:57:08:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMacPXAwzsGfj7ZuVDveZVlXCKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/J4ZrLngJFtJKwVC5OqjED-WD2_o.roa
Signing time: Wed 29 Nov 2023 12:17:08 +0000
ROA not before: Wed 29 Nov 2023 12:17:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210570
IP address blocks: 185.20.7.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1b:02:f5:f0:db:43:9a:84:58:82:6d:54:65:c8:ce:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc69c3d7030cec19f8fb66e543bde65595708a2
Validity
Not Before: Nov 29 12:17:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27866b2e780916d24ac150b93aa8c40fe583dbfa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:88:f8:5b:dd:25:7f:2e:d3:d5:ef:45:f3:4c:
9d:b5:37:20:42:b3:a9:ec:05:42:94:d5:6c:ab:5f:
0d:47:d9:1f:ca:f6:78:8e:87:81:23:21:f4:3a:2c:
0f:e1:4e:ed:1d:ba:45:06:f6:e6:c3:bf:e9:54:62:
5b:5e:da:79:99:22:85:e2:88:d4:b6:6d:f9:b2:86:
be:7a:21:29:af:89:6d:28:16:19:78:a6:5a:a1:1c:
09:80:05:0a:05:af:fc:9e:fd:7e:4b:5b:9a:f4:99:
85:2e:1b:09:f7:64:d2:c3:41:6c:ba:c2:9d:2f:fb:
8c:54:c4:45:19:f1:a4:96:f5:bb:2c:c2:4c:0d:77:
83:b1:de:56:95:93:41:40:f0:e1:fa:de:2a:b9:2c:
94:2e:85:c0:96:19:41:88:71:d0:f3:13:87:82:a0:
1d:64:be:a0:ae:13:95:d2:69:8c:ff:df:43:80:6c:
b8:7f:1f:97:3c:8e:35:33:9c:31:53:4a:66:74:ba:
3a:9c:e8:42:f7:fb:60:24:b0:ec:9e:de:ee:91:33:
d1:f1:6c:d7:1b:2f:86:94:45:c9:09:48:cd:c2:2b:
6c:f3:ac:83:29:e2:5b:ac:96:22:4d:41:07:8f:1e:
71:d8:2b:51:84:2a:24:9c:dc:6d:eb:f5:e8:99:b9:
2a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:86:6B:2E:78:09:16:D2:4A:C1:50:B9:3A:A8:C4:0F:E5:83:DB:FA
X509v3 Authority Key Identifier:
keyid:6C:C6:9C:3D:70:30:CE:C1:9F:8F:B6:6E:54:3B:DE:65:59:57:08:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMacPXAwzsGfj7ZuVDveZVlXCKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/J4ZrLngJFtJKwVC5OqjED-WD2_o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/9ca58e-9e32-428f-8411-1aeb6a4e45ad/1/bMacPXAwzsGfj7ZuVDveZVlXCKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.20.7.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:9e:97:f4:fc:e6:aa:87:ad:83:9a:3b:5b:e5:41:6e:f6:e6:
45:78:94:c1:1d:1d:02:65:23:27:1b:65:13:45:da:38:9b:80:
14:f6:77:3e:5f:af:9c:d7:38:69:b4:cb:75:4e:d4:72:4f:9a:
68:09:a8:77:2a:f7:d9:82:40:55:63:db:09:b9:c4:1c:7e:bd:
37:27:d3:c3:23:30:3e:03:24:0d:fd:c8:15:6a:f0:b9:be:21:
a0:02:8c:78:7b:63:e2:6f:88:6f:d9:55:2e:0c:b7:5a:fc:a2:
60:b1:94:e2:68:81:39:2f:8b:c0:76:af:ef:f5:44:be:57:bc:
eb:46:a6:dd:e4:99:27:e0:c1:c8:69:1b:51:b5:0e:ee:b3:8f:
04:da:e3:4d:3b:78:f3:9b:81:7d:a4:6d:21:49:b7:2f:17:65:
46:db:cf:1a:bb:97:ac:1d:a1:98:99:2b:5d:30:8c:a3:e5:95:
29:bc:84:6a:6a:3b:e4:b9:62:f2:5d:aa:a5:92:7c:ec:68:ca:
ff:18:a0:b8:98:95:2c:c5:89:7d:69:32:1d:47:5d:7d:61:b2:
06:15:f5:16:6d:7b:63:7a:35:d3:8d:46:8e:6a:dd:00:db:ba:
00:4c:06:9f:3a:09:dc:c8:62:77:85:07:39:aa:d2:f9:30:51:
f6:88:f2:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:48 2024 by rpki-client on console-fra.rpki-client.org