Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/a5fc11-72b4-4f9d-aa45-a2a5a8d99db8/1/rCobFvD2-5KR4aM9Q8koh_LefiY.roa
File: rCobFvD2-5KR4aM9Q8koh_LefiY.roa (raw, json)
Hash identifier: 1nCzXbs9q1iXpC/Q4/higxNyEeIhLGo3vWqWQcTHuMo=
Subject key identifier: AC:2A:1B:16:F0:F6:FB:92:91:E1:A3:3D:43:C9:28:87:F2:DE:7E:26
Certificate issuer: /CN=baf79127ee34a3aee9079c8e9799c40f0dc8dca2
Certificate serial: 01856F8B8F03B64644F08E88DE52CEE33D05
Authority key identifier: BA:F7:91:27:EE:34:A3:AE:E9:07:9C:8E:97:99:C4:0F:0D:C8:DC:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uveRJ-40o67pB5yOl5nEDw3I3KI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/a5fc11-72b4-4f9d-aa45-a2a5a8d99db8/1/rCobFvD2-5KR4aM9Q8koh_LefiY.roa
Signing time: Sun 01 Jan 2023 22:54:55 +0000
ROA not before: Sun 01 Jan 2023 22:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30873
IP address blocks: 185.71.132.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:8f:03:b6:46:44:f0:8e:88:de:52:ce:e3:3d:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baf79127ee34a3aee9079c8e9799c40f0dc8dca2
Validity
Not Before: Jan 1 22:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ac2a1b16f0f6fb9291e1a33d43c92887f2de7e26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8a:75:69:6d:f8:2f:51:ed:5d:cd:13:18:73:
89:39:90:ff:11:71:c2:df:f5:ec:9e:1b:33:b9:0f:
13:16:3c:cc:e0:7d:ff:81:16:e4:f8:29:01:a6:45:
53:2f:3a:c8:9d:2f:ab:a0:95:f5:6d:40:c7:cf:ac:
d1:a8:96:81:9d:06:e1:54:0a:a5:7c:f9:b1:0e:53:
ff:61:9c:f6:9b:24:ff:67:56:2b:83:ae:f4:0a:48:
76:c0:36:4c:0a:9c:4f:c6:4c:66:3d:7e:dc:62:07:
4c:0f:89:58:30:98:d1:51:55:d4:c6:8b:f2:30:21:
3a:f9:c4:b8:5a:f5:17:b9:e4:e5:52:60:c5:34:90:
8b:39:16:cb:b2:86:d8:6b:14:22:4e:12:a2:76:59:
4f:39:4c:06:95:c7:88:39:a6:bb:61:2c:45:17:70:
8b:b6:d2:93:32:91:e0:15:4d:db:5a:a2:ef:f0:6f:
6e:3c:af:6b:c5:b5:33:77:c0:59:63:66:41:5c:85:
77:e2:7f:f4:46:4b:f7:11:d5:4e:9d:94:c9:6b:6f:
e7:90:41:ee:e0:5a:50:ab:12:73:ce:28:7c:49:b2:
83:d4:93:62:82:61:98:30:39:ad:fc:2c:67:61:fd:
db:8d:1f:67:ff:b4:cd:bd:80:3c:9f:f4:02:63:5f:
67:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2A:1B:16:F0:F6:FB:92:91:E1:A3:3D:43:C9:28:87:F2:DE:7E:26
X509v3 Authority Key Identifier:
keyid:BA:F7:91:27:EE:34:A3:AE:E9:07:9C:8E:97:99:C4:0F:0D:C8:DC:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uveRJ-40o67pB5yOl5nEDw3I3KI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a5fc11-72b4-4f9d-aa45-a2a5a8d99db8/1/rCobFvD2-5KR4aM9Q8koh_LefiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/a5fc11-72b4-4f9d-aa45-a2a5a8d99db8/1/uveRJ-40o67pB5yOl5nEDw3I3KI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.132.0/22
Signature Algorithm: sha256WithRSAEncryption
b9:92:2b:bf:df:be:ea:a8:24:1d:1d:5d:6d:c2:0e:65:0c:fc:
74:18:a4:c6:b4:db:72:3d:a7:9a:8a:b9:bf:65:d8:88:e3:e5:
55:1f:87:db:50:51:c9:46:b0:c3:2a:f6:9f:ce:f8:c1:73:5e:
d0:a4:8d:ab:f9:55:5d:95:27:b5:76:ec:b1:fd:1f:2d:61:d1:
59:ed:13:19:fa:cd:b6:06:67:18:12:a8:ce:35:3b:dc:e8:59:
f0:7d:97:0d:48:54:6f:be:df:2f:dc:41:d8:90:f1:95:a8:17:
d1:83:f8:8d:70:d3:34:aa:7f:c9:8b:aa:77:65:25:e1:d1:6f:
a7:4b:ec:ea:a2:77:e8:b9:89:55:c3:d8:c7:52:d5:23:fd:7b:
f1:85:41:52:17:8a:58:7c:6b:9e:9c:d2:0d:b3:1d:89:b9:ce:
a0:b4:e2:3a:b9:d5:bc:f0:ce:28:d6:e6:f9:03:50:64:f3:24:
5c:5c:d1:b5:17:fc:c7:de:6c:99:7c:96:cd:83:84:83:e0:d7:
8e:dd:b4:ef:8c:b3:48:bf:29:5d:ca:2e:6a:52:cd:85:cd:f3:
fd:6b:57:03:40:0a:e0:4a:11:16:ff:dc:22:51:ac:8b:39:f8:
09:8e:3e:51:d7:c9:6d:d7:69:37:19:86:e8:d8:2a:3c:52:22:
db:45:6d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:32 2024 by rpki-client on console-fra.rpki-client.org