Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/tyN-p8Lg_-rM2FZklQDiqMMmcVY.roa
File: tyN-p8Lg_-rM2FZklQDiqMMmcVY.roa (raw, json)
Hash identifier: Y4vYx5neItYuvgCCiFzqfVHYrVJ+pBMVckCEU2Kp09U=
Subject key identifier: B7:23:7E:A7:C2:E0:FF:EA:CC:D8:56:64:95:00:E2:A8:C3:26:71:56
Certificate issuer: /CN=d0bd4ca7f331aa2ad91240a6583a176c005e8a63
Certificate serial: 01856B379FFB4AB44C52F6D028738DFAA617
Authority key identifier: D0:BD:4C:A7:F3:31:AA:2A:D9:12:40:A6:58:3A:17:6C:00:5E:8A:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0L1Mp_MxqirZEkCmWDoXbABeimM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/tyN-p8Lg_-rM2FZklQDiqMMmcVY.roa
Signing time: Sun 01 Jan 2023 02:44:45 +0000
ROA not before: Sun 01 Jan 2023 02:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44407
IP address blocks: 185.181.156.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:37:9f:fb:4a:b4:4c:52:f6:d0:28:73:8d:fa:a6:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0bd4ca7f331aa2ad91240a6583a176c005e8a63
Validity
Not Before: Jan 1 02:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7237ea7c2e0ffeaccd856649500e2a8c3267156
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:91:e4:50:f1:9c:2c:f5:79:9a:9e:72:19:07:
7e:b5:c7:9a:2e:f7:23:7a:5d:bd:f3:ce:0a:f9:de:
84:5b:8b:95:89:c6:ee:d3:d2:07:97:cb:ab:c4:12:
fa:e1:a5:b1:aa:fd:88:20:3f:8d:d5:9d:45:86:98:
0e:43:2c:cf:30:70:7d:4b:f3:07:54:c3:5f:c8:24:
a7:ed:a7:e9:be:c3:88:84:64:d4:ce:a0:8b:b3:ad:
22:c1:2a:8e:95:db:c7:4e:f0:66:50:52:6e:e7:e4:
d9:22:bd:e9:89:c6:9b:af:27:73:31:58:f6:b9:0d:
bc:a6:c4:03:d3:29:7e:e9:15:1f:97:bd:8c:ec:ef:
7e:35:46:8f:59:92:74:60:be:d8:cf:44:a3:24:ca:
5d:81:39:a7:9e:db:6c:6f:46:22:1f:6c:ae:ae:ef:
48:52:cc:c1:73:38:d0:9b:a9:1d:9c:6d:11:3f:9b:
2f:bf:df:69:62:5e:d7:7c:df:4f:80:bf:bb:c4:6f:
06:02:a3:07:dd:c5:47:a8:c5:5c:ec:8d:01:fb:3f:
06:b0:86:4c:0a:3b:27:d4:f5:fa:a3:d7:fd:83:bb:
05:94:fd:03:ca:fe:92:e2:1e:29:1c:c5:94:87:28:
15:b7:09:f2:9e:a6:63:69:0c:28:51:8f:33:72:a6:
57:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:23:7E:A7:C2:E0:FF:EA:CC:D8:56:64:95:00:E2:A8:C3:26:71:56
X509v3 Authority Key Identifier:
keyid:D0:BD:4C:A7:F3:31:AA:2A:D9:12:40:A6:58:3A:17:6C:00:5E:8A:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0L1Mp_MxqirZEkCmWDoXbABeimM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/tyN-p8Lg_-rM2FZklQDiqMMmcVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/1d9440-cee8-4383-b0a0-e0b5a92df940/1/0L1Mp_MxqirZEkCmWDoXbABeimM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.181.156.0/22
Signature Algorithm: sha256WithRSAEncryption
33:e0:57:3b:88:79:21:72:d1:95:15:59:0a:a2:92:ec:17:f5:
ef:7e:69:e2:05:29:6c:0d:58:e6:a7:63:15:41:f5:e8:12:70:
80:91:4e:34:6b:66:75:7b:7c:23:11:f7:b1:39:4b:3c:66:13:
aa:f3:d1:a6:61:4d:99:0d:1b:31:2a:88:ab:9f:05:92:46:1b:
13:4c:c6:96:79:5a:94:ec:85:89:fa:ac:79:1b:ae:80:a0:d7:
b5:a9:56:f3:b8:dd:8f:0f:a6:f8:8a:b9:ed:d3:a7:5c:c5:de:
0f:d5:eb:77:12:49:a1:95:81:19:2d:48:18:2d:ae:5d:e9:52:
0f:eb:3f:16:92:e2:9c:9a:96:28:85:c9:5e:21:7a:bc:e3:a5:
e3:8d:67:f0:ab:26:67:fd:1e:8c:2f:79:7f:c3:dc:d1:a0:a9:
a0:ec:17:88:df:18:b9:53:e5:07:69:40:c6:16:ff:3b:bd:0c:
f2:db:b8:ae:11:83:67:93:98:d2:ee:4d:bb:43:c1:31:67:79:
36:9d:71:1d:4f:c7:a7:7c:91:ee:99:ea:44:76:78:93:88:8a:
e2:82:16:13:3a:30:a4:9e:f1:b4:b1:1a:7f:0c:f8:05:c3:3f:
2a:49:fb:c6:8b:43:b7:f9:ce:f0:4d:c6:90:55:b8:5c:90:13:
49:5c:4c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:06 2024 by rpki-client on console-ams.rpki-client.org