Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/186a93-8e93-4652-9289-7ed51ca5af51/1/1OtNIzPUpa8Ks8mfu46E21ZyIwU.roa
File: 1OtNIzPUpa8Ks8mfu46E21ZyIwU.roa (raw, json)
Hash identifier: 1PBwUnPduIpGMZKmzhuGIDZOF7uXaz5wWFM7YCEAv+o=
Subject key identifier: D4:EB:4D:23:33:D4:A5:AF:0A:B3:C9:9F:BB:8E:84:DB:56:72:23:05
Certificate issuer: /CN=964335563d9b6f9e3e28de368d85988bc141371e
Certificate serial: 0185712783DB39ABD9110C18A7FADC04EB55
Authority key identifier: 96:43:35:56:3D:9B:6F:9E:3E:28:DE:36:8D:85:98:8B:C1:41:37:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lkM1Vj2bb54-KN42jYWYi8FBNx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/186a93-8e93-4652-9289-7ed51ca5af51/1/1OtNIzPUpa8Ks8mfu46E21ZyIwU.roa
Signing time: Mon 02 Jan 2023 06:24:53 +0000
ROA not before: Mon 02 Jan 2023 06:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206608
IP address blocks: 185.180.81.0/24 maxlen: 24
185.180.80.0/22 maxlen: 22
185.180.80.0/24 maxlen: 24
185.180.83.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:27:83:db:39:ab:d9:11:0c:18:a7:fa:dc:04:eb:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=964335563d9b6f9e3e28de368d85988bc141371e
Validity
Not Before: Jan 2 06:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4eb4d2333d4a5af0ab3c99fbb8e84db56722305
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e0:62:0e:1d:2f:56:28:5e:7d:6c:3b:10:df:
a5:ca:d4:43:2e:23:d6:23:4b:23:e0:6d:79:8b:07:
34:d9:85:7a:9e:18:33:2b:36:76:38:55:84:ea:1f:
7c:24:2e:05:f9:27:2c:b3:1f:6b:d6:67:bf:f9:fd:
a1:12:96:77:8e:87:e0:75:d5:f7:c5:ef:00:cd:9b:
0f:01:15:7a:b8:a8:e3:3d:9d:48:e3:08:80:a1:bb:
ca:b9:76:bd:ac:7b:c6:cf:5f:a5:4c:13:6c:60:17:
fe:cb:ff:b9:04:23:ee:a2:15:a8:5e:d4:43:e1:81:
b9:96:fc:c7:81:94:70:89:7b:8f:53:53:17:69:4d:
44:3a:c7:2f:aa:8b:e7:2b:97:0b:cf:25:98:9f:8e:
f2:2d:27:5f:f2:6e:35:f1:09:59:4a:2e:89:61:45:
61:4a:0f:81:ad:0e:0e:b5:30:33:08:cf:97:9d:e8:
14:8c:c9:50:3c:0d:b6:8f:70:45:71:7e:23:2d:ca:
75:ce:81:b4:0a:a1:47:43:f3:a9:4b:7e:61:84:40:
98:a5:83:91:2d:49:77:c0:c4:4c:6e:99:65:be:3c:
48:ed:a6:94:f3:a6:20:a8:1e:7f:c3:36:cd:bf:e0:
75:68:97:50:d0:a9:1a:bc:fc:80:82:27:ca:c2:6e:
45:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EB:4D:23:33:D4:A5:AF:0A:B3:C9:9F:BB:8E:84:DB:56:72:23:05
X509v3 Authority Key Identifier:
keyid:96:43:35:56:3D:9B:6F:9E:3E:28:DE:36:8D:85:98:8B:C1:41:37:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lkM1Vj2bb54-KN42jYWYi8FBNx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/186a93-8e93-4652-9289-7ed51ca5af51/1/1OtNIzPUpa8Ks8mfu46E21ZyIwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/186a93-8e93-4652-9289-7ed51ca5af51/1/lkM1Vj2bb54-KN42jYWYi8FBNx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.180.80.0/22
Signature Algorithm: sha256WithRSAEncryption
16:5c:25:4a:be:25:c5:60:ea:e8:da:6d:6f:07:cc:0c:a8:b0:
9d:8b:46:5c:02:71:52:a5:7e:5b:0a:75:e1:64:b8:0a:0f:05:
69:af:60:09:f7:80:8a:bf:ef:d3:64:41:31:81:14:3e:b5:2f:
4d:32:be:bc:aa:2a:0f:92:b0:7c:ef:c5:53:f7:fc:f4:86:87:
09:f9:bf:1f:27:38:99:af:6c:25:cd:31:24:24:03:c4:f2:36:
46:52:46:8f:40:a0:d3:21:10:0b:32:76:1d:1d:b2:bc:6b:34:
2c:a1:f1:24:fa:81:d8:d8:44:bd:ef:84:a6:db:98:b4:ce:4e:
c8:c4:d6:9c:6d:0b:c7:7a:8e:2b:64:a2:40:bd:1f:0d:31:a3:
d1:47:6f:b0:10:e2:16:0f:a6:60:d2:1c:ee:66:6d:45:1d:1a:
a6:d4:ed:a2:99:45:24:af:20:a4:79:8a:bc:08:57:8a:54:e5:
c2:7c:a6:36:9a:4b:ea:3f:ac:e8:5f:f4:88:12:66:6e:c0:65:
51:c3:4f:c1:db:bf:b9:ec:6f:ea:17:60:77:be:5f:23:9e:5d:
bc:02:49:75:7c:d5:9e:7d:74:73:24:41:53:35:e6:2d:2d:4a:
a1:74:f4:0e:81:fe:66:30:78:9c:fe:05:47:78:f4:97:86:2f:
2d:b6:db:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:14 2024 by rpki-client on console-fra.rpki-client.org