Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/amuchllSn1uWNzXsAEXGJXQ7P98.roa
File: amuchllSn1uWNzXsAEXGJXQ7P98.roa (raw, json)
Hash identifier: pXlK+dOHRf/cwOwZy5Re4OU8/oQ8Ek/dxUB6IJMKAKY=
Subject key identifier: 6A:6B:9C:86:59:52:9F:5B:96:37:35:EC:00:45:C6:25:74:3B:3F:DF
Certificate issuer: /CN=a61ada61202413cd8fca2f49742527ad021f9676
Certificate serial: 01856F021B0FF5958AE416A72556C33F86CC
Authority key identifier: A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/amuchllSn1uWNzXsAEXGJXQ7P98.roa
Signing time: Sun 01 Jan 2023 20:24:46 +0000
ROA not before: Sun 01 Jan 2023 20:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 395184
IP address blocks: 185.38.240.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:1b:0f:f5:95:8a:e4:16:a7:25:56:c3:3f:86:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a61ada61202413cd8fca2f49742527ad021f9676
Validity
Not Before: Jan 1 20:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a6b9c8659529f5b963735ec0045c625743b3fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3b:c1:cc:81:d3:b5:02:dd:bf:7f:a8:a4:1a:
1c:48:f5:e0:68:21:3c:83:1b:28:48:8e:48:d6:f8:
8f:0e:f0:4d:e1:d7:4d:20:37:0d:3b:8e:e7:52:92:
67:c7:4f:33:41:34:b3:8b:61:61:b4:31:5a:60:fb:
2a:38:8f:f6:8d:5e:5a:3f:44:ae:c4:36:2a:e7:0a:
3b:bf:4f:0f:f1:65:8f:78:4d:f9:fb:bc:8e:40:34:
3d:65:d9:93:7c:ee:8b:c2:97:72:97:2d:94:b8:ad:
c4:06:7b:66:bc:68:52:18:4f:0b:69:d1:c3:ea:13:
91:46:07:26:b9:77:4d:61:be:d5:1a:75:50:bb:2d:
09:b6:78:58:54:fe:48:6b:db:48:e0:20:1d:f1:ee:
0b:00:61:84:31:ef:b4:38:e5:75:f4:d2:ac:67:98:
a1:1d:f8:41:47:b6:e1:c4:36:35:ac:fc:13:63:e1:
00:83:69:e2:04:a2:cc:db:a8:69:9e:4f:16:80:fa:
01:47:26:13:80:c5:ae:9e:cd:92:27:17:27:32:86:
fc:17:70:04:67:91:27:6c:49:c5:7e:d8:0c:f7:8c:
79:66:a1:fc:bd:46:eb:84:7e:10:38:f4:4c:93:b2:
ff:da:9e:8b:4c:ce:66:08:a7:e0:32:ac:93:ee:ee:
59:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:6B:9C:86:59:52:9F:5B:96:37:35:EC:00:45:C6:25:74:3B:3F:DF
X509v3 Authority Key Identifier:
keyid:A6:1A:DA:61:20:24:13:CD:8F:CA:2F:49:74:25:27:AD:02:1F:96:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/phraYSAkE82Pyi9JdCUnrQIflnY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/amuchllSn1uWNzXsAEXGJXQ7P98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bdab9d-458b-4d6a-9d9b-aeec7a859c59/1/phraYSAkE82Pyi9JdCUnrQIflnY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.240.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:8d:18:3c:00:47:d2:f6:2b:80:bb:12:c5:d1:28:ab:7f:d0:
78:52:82:ba:c4:0e:18:58:58:17:f0:0f:52:36:36:52:4f:94:
77:22:8a:b3:32:3f:b7:e5:14:dd:3d:04:d5:89:dc:3e:31:2f:
25:8c:46:b4:65:dd:be:30:53:76:4c:20:0d:0a:22:ed:90:6e:
90:1a:a4:39:f7:0f:00:a9:13:e1:5f:e1:e6:e5:7e:f2:b8:a5:
b8:a1:97:c3:bf:47:fe:95:bf:7f:f6:80:3c:bf:3f:75:09:c0:
39:f9:41:63:e3:ae:94:8d:42:a3:65:c0:1f:fd:15:4b:e9:e4:
96:07:d6:c7:0f:75:48:90:8e:ef:35:2f:10:9f:1f:0d:08:7a:
09:6c:98:fe:c8:1f:8e:80:cd:f8:4b:74:07:dd:1a:9a:80:cd:
c5:c5:ba:63:1b:8c:34:72:4c:99:c5:a1:36:1e:ab:76:6f:e0:
45:42:70:43:6b:5e:52:b6:cc:33:b9:ba:b7:6d:31:09:d5:a1:
de:16:a4:2d:c6:c8:b4:91:23:76:ef:f2:c3:58:f0:fa:ce:d7:
e4:d1:b8:94:33:6f:ca:71:75:7e:f2:1c:d0:db:3a:7e:b6:24:
5b:90:00:c9:93:67:93:99:25:34:6a:fd:81:b8:d0:74:ad:a7:
60:c5:b2:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:50 2024 by rpki-client on console-fra.rpki-client.org