Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/L7P7IaCv3fUatadkKP6uEXotyAQ.roa
File: L7P7IaCv3fUatadkKP6uEXotyAQ.roa (raw, json)
Hash identifier: yLWG5Kqn3bJSImYfDhyjpla96OzEhsIS+m3Ex5QAwfU=
Subject key identifier: 2F:B3:FB:21:A0:AF:DD:F5:1A:B5:A7:64:28:FE:AE:11:7A:2D:C8:04
Certificate issuer: /CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Certificate serial: 018571B0ECF4BE3E4B4D49E77EEF7316A94B
Authority key identifier: 99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/L7P7IaCv3fUatadkKP6uEXotyAQ.roa
Signing time: Mon 02 Jan 2023 08:54:58 +0000
ROA not before: Mon 02 Jan 2023 08:54:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203898
IP address blocks: 185.122.0.0/24 maxlen: 24
2a06:98c0:1000::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ec:f4:be:3e:4b:4d:49:e7:7e:ef:73:16:a9:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99d5bfad45d7c65a6e343028509fd1892e97b9d0
Validity
Not Before: Jan 2 08:54:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2fb3fb21a0afddf51ab5a76428feae117a2dc804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:40:ec:c3:1b:05:05:72:17:5e:58:c5:9e:35:
5a:9f:d1:07:32:fe:dc:a9:0f:49:08:c5:9a:06:e1:
58:c1:8e:be:12:28:7b:24:f0:25:76:cb:26:73:66:
68:1e:96:f9:c0:ca:88:d5:81:67:08:08:8e:d6:00:
2a:be:36:07:37:cc:66:1c:2d:e3:d8:10:2e:a9:3e:
43:d7:f3:9f:67:1b:b7:f8:38:a0:00:b4:39:73:48:
7d:d6:44:e0:13:f9:fa:3c:6c:e9:d3:91:66:60:a7:
d8:1c:d0:7c:d6:ad:ea:2f:c5:36:09:c5:56:8d:c7:
16:d9:40:06:55:cd:8e:dc:42:26:50:d8:15:48:43:
ea:57:61:26:19:97:80:46:ad:d9:44:44:5c:99:19:
e6:af:d8:fc:ab:5a:d7:e7:0c:88:c1:d0:4c:d3:37:
c6:d3:76:a5:5a:86:e5:77:3c:7c:3c:2d:2e:8f:17:
68:16:36:cf:f3:21:7c:29:b2:f9:64:5c:7a:75:2e:
51:e4:c9:34:c5:c9:e3:15:6e:85:42:0c:f7:c7:f1:
1f:e9:76:83:a0:13:4d:e9:8c:c1:c3:1b:52:6c:47:
5e:b9:86:08:36:88:ec:b8:73:f0:18:85:d2:87:05:
35:4c:20:df:bc:b2:28:d0:8e:f5:9e:b0:cf:68:ee:
df:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B3:FB:21:A0:AF:DD:F5:1A:B5:A7:64:28:FE:AE:11:7A:2D:C8:04
X509v3 Authority Key Identifier:
keyid:99:D5:BF:AD:45:D7:C6:5A:6E:34:30:28:50:9F:D1:89:2E:97:B9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mdW_rUXXxlpuNDAoUJ_RiS6XudA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/L7P7IaCv3fUatadkKP6uEXotyAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/8171e3-2d29-4cb6-8a94-7551809cb731/1/mdW_rUXXxlpuNDAoUJ_RiS6XudA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.0.0/24
IPv6:
2a06:98c0:1000::/48
Signature Algorithm: sha256WithRSAEncryption
79:2e:97:e3:08:4c:4f:8a:cd:65:ba:c2:c1:15:29:30:27:d4:
fa:0e:eb:e7:73:a9:fd:a0:30:59:88:42:a7:6f:67:50:f5:d1:
d3:e7:ea:00:e7:6e:3f:55:34:8f:5a:93:5f:31:70:11:93:4e:
de:d5:00:f9:07:b2:ca:07:af:ea:a7:82:5b:a0:15:61:9d:19:
38:af:16:58:fe:62:d2:b4:d1:72:91:c4:2c:38:0e:d1:fb:aa:
30:19:94:21:63:a9:32:04:5f:f1:39:31:52:fe:47:31:cf:55:
8c:7b:bc:8b:68:a9:25:5b:d8:71:92:55:f1:4c:ea:ad:44:d7:
cc:19:1e:6d:e8:ff:2e:70:0e:b0:53:d9:3b:8b:96:1f:f4:89:
6e:0d:ca:f1:f4:b8:2e:24:f1:bc:84:e7:4b:47:07:ad:27:2f:
04:38:2f:0d:32:f0:04:d3:af:e6:0c:0d:e7:b1:b4:59:03:3b:
91:5b:9f:3f:51:2d:61:dc:8e:ca:22:fa:d4:c3:b3:30:63:e7:
7c:2c:f4:7d:d0:6f:45:e5:05:db:97:22:f9:15:e4:a4:a4:dd:
c9:08:bd:e9:af:b4:ec:e6:e7:fb:25:a3:2e:b1:1b:6d:c4:0f:
ce:f2:66:0d:62:0a:83:0f:b6:73:2a:e6:a6:a2:82:9f:2a:24:
5c:a2:c9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:15 2024 by rpki-client on console-fra.rpki-client.org