Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/zhx7KRjO7PJoG4WuJO1COt_-B_Q.roa
File: zhx7KRjO7PJoG4WuJO1COt_-B_Q.roa (raw, json)
Hash identifier: h6ayBf6q14c8FPE83uu4cF31HL1EPvF0BhXtWqBQNhc=
Subject key identifier: CE:1C:7B:29:18:CE:EC:F2:68:1B:85:AE:24:ED:42:3A:DF:FE:07:F4
Certificate issuer: /CN=9042e83976e35fe29a01d3c43a9bc5964b37b443
Certificate serial: 018572F137C880F59EA5DFE21D6B6C29DEFB
Authority key identifier: 90:42:E8:39:76:E3:5F:E2:9A:01:D3:C4:3A:9B:C5:96:4B:37:B4:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kELoOXbjX-KaAdPEOpvFlks3tEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/zhx7KRjO7PJoG4WuJO1COt_-B_Q.roa
Signing time: Mon 02 Jan 2023 14:44:49 +0000
ROA not before: Mon 02 Jan 2023 14:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49374
IP address blocks: 185.1.136.0/24 maxlen: 24
2001:7f8:da::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:f1:37:c8:80:f5:9e:a5:df:e2:1d:6b:6c:29:de:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9042e83976e35fe29a01d3c43a9bc5964b37b443
Validity
Not Before: Jan 2 14:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ce1c7b2918ceecf2681b85ae24ed423adffe07f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:db:61:31:e3:88:2d:13:87:76:e0:20:15:6b:
cb:bc:b5:b9:8d:c5:ac:f6:8d:a4:3c:66:35:57:d2:
fb:13:6c:af:fa:77:93:1e:07:da:13:2c:13:8d:7d:
42:8d:2f:e1:0f:10:5f:7f:bd:07:20:65:ae:13:02:
13:f8:d1:90:cf:f9:50:29:01:0e:ef:20:ad:f4:a5:
ca:ac:d0:81:f7:c2:67:a8:7b:97:92:7c:ca:ef:a9:
a7:90:cd:1f:f3:c4:62:d7:ef:fd:6b:31:52:6b:3d:
70:99:d9:50:65:6a:bf:f5:37:fc:11:79:2e:ba:af:
d0:a2:4e:a0:8d:b8:d1:36:e6:77:1d:7a:c3:3c:47:
28:4f:d1:cb:0d:27:af:bf:ce:2e:68:8d:e1:f8:d2:
9c:c1:2a:30:a6:73:0a:d2:82:12:d8:07:fa:13:ee:
47:8c:9f:58:80:44:13:c1:4a:92:94:e6:8d:f1:b4:
b5:66:4e:c8:e2:4f:e3:08:5e:40:60:c3:e5:05:22:
55:f5:67:d6:df:14:7e:52:13:77:fe:a3:d3:51:5c:
15:d9:11:0e:06:7a:78:28:7e:9a:0f:61:c4:7a:9d:
70:9d:bf:67:55:64:8b:3d:b0:d3:64:ae:4d:4d:d9:
3d:ec:87:cc:a9:75:59:a3:e1:88:65:ff:37:1f:5d:
fc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:1C:7B:29:18:CE:EC:F2:68:1B:85:AE:24:ED:42:3A:DF:FE:07:F4
X509v3 Authority Key Identifier:
keyid:90:42:E8:39:76:E3:5F:E2:9A:01:D3:C4:3A:9B:C5:96:4B:37:B4:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kELoOXbjX-KaAdPEOpvFlks3tEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/zhx7KRjO7PJoG4WuJO1COt_-B_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/a87b6e-d842-4c0c-881b-210940da177b/1/kELoOXbjX-KaAdPEOpvFlks3tEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.1.136.0/24
IPv6:
2001:7f8:da::/48
Signature Algorithm: sha256WithRSAEncryption
21:91:d1:e3:b2:e6:ea:c1:ed:08:2b:09:d3:79:43:c4:da:a0:
da:00:66:70:fb:93:c7:e3:86:18:ca:79:cb:bf:52:83:91:6f:
8e:f9:a5:5d:ae:b8:d5:b1:49:84:63:0c:29:18:07:a2:99:b5:
eb:a0:ff:35:f6:9d:2d:ef:0e:ee:15:ab:36:5c:71:4e:1f:c0:
c9:54:16:35:4b:cb:63:7f:0e:78:9c:aa:fb:8f:22:7f:01:d9:
86:a0:a9:e4:0f:84:a2:0a:f0:cd:29:07:b7:69:81:8c:4d:65:
e3:6d:2c:94:e6:2c:5d:ed:96:a8:90:ba:c1:43:da:67:75:53:
aa:20:85:1f:28:e4:dc:85:72:08:4a:a9:00:11:bd:87:2e:2f:
6a:e6:c9:70:c7:5f:ce:98:df:84:1c:41:12:eb:82:82:c7:af:
9b:60:c6:1e:2d:1f:11:0c:30:94:89:4d:5e:e9:b7:9c:c7:66:
99:08:23:31:9c:7f:b0:f5:01:7c:fc:25:a9:7e:65:70:03:6e:
f1:4a:cf:11:37:54:35:9a:39:dc:bb:b2:2b:e2:e4:89:f7:a1:
76:1e:ba:6f:b1:b7:17:2c:d1:68:c0:df:ca:cf:4d:1f:0f:09:
a5:14:1f:66:1c:c2:95:3e:30:12:ff:72:90:71:94:47:97:fa:
19:f0:9c:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:39 2024 by rpki-client on console-fra.rpki-client.org