Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/ProYKEcn563-AeEMxgYtZ1CM-uc.roa
File: ProYKEcn563-AeEMxgYtZ1CM-uc.roa (raw, json)
Hash identifier: ahloOmElPUPfwaZKJsaszewdncQ3adKA8jrRpFzKzNU=
Subject key identifier: 3E:BA:18:28:47:27:E7:AD:FE:01:E1:0C:C6:06:2D:67:50:8C:FA:E7
Certificate issuer: /CN=0d819c9d2e52d84adea2de4c2de64b7789858eb2
Certificate serial: 01869D7DA21B036F92F1AFA561341C91AA40
Authority key identifier: 0D:81:9C:9D:2E:52:D8:4A:DE:A2:DE:4C:2D:E6:4B:77:89:85:8E:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYGcnS5S2Ereot5MLeZLd4mFjrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/ProYKEcn563-AeEMxgYtZ1CM-uc.roa
Signing time: Wed 01 Mar 2023 14:05:01 +0000
ROA not before: Wed 01 Mar 2023 14:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6830
IP address blocks: 185.207.100.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:7d:a2:1b:03:6f:92:f1:af:a5:61:34:1c:91:aa:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d819c9d2e52d84adea2de4c2de64b7789858eb2
Validity
Not Before: Mar 1 14:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3eba18284727e7adfe01e10cc6062d67508cfae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e0:26:84:7d:b3:e0:5a:2a:d6:6d:fe:9c:fe:
3d:e1:a0:6c:9f:06:36:cc:d5:3b:ff:72:e9:2f:db:
50:a9:69:4c:ae:c0:cc:f1:63:e3:1d:11:8e:9f:ef:
4d:fd:be:06:21:90:c5:6d:c5:f1:f3:3b:83:6b:17:
22:18:3a:01:4f:36:55:84:ba:12:8f:10:15:87:5f:
f5:4a:90:85:d7:9c:72:b9:53:6b:29:bd:18:ce:c1:
fa:d0:a5:6c:bb:fc:a6:75:09:93:6c:dd:37:39:2b:
d9:5e:06:15:0c:8f:d1:91:7a:6c:78:c7:8b:21:ec:
37:f8:95:1a:bc:01:2f:5c:f5:26:a0:65:db:71:a8:
4b:42:25:bb:ce:5d:9d:3b:aa:08:2a:3c:71:d1:96:
16:f5:b7:fc:2a:4b:34:bf:4d:ba:18:e3:8a:09:7f:
53:63:8f:d8:4f:64:a9:9e:9a:63:46:e1:f2:51:bc:
f8:57:4d:f7:38:11:9b:ad:4a:aa:b2:0e:f6:7f:fe:
ea:6d:7f:58:d6:54:02:52:c6:67:a9:73:1f:c6:01:
ed:24:ca:87:92:81:41:a8:5a:16:e3:20:76:e0:86:
7f:92:a2:7c:f9:24:ef:16:c3:0c:d0:27:24:6a:8f:
54:30:20:9e:f6:53:d3:e7:79:77:7a:22:de:2f:1c:
05:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:BA:18:28:47:27:E7:AD:FE:01:E1:0C:C6:06:2D:67:50:8C:FA:E7
X509v3 Authority Key Identifier:
keyid:0D:81:9C:9D:2E:52:D8:4A:DE:A2:DE:4C:2D:E6:4B:77:89:85:8E:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYGcnS5S2Ereot5MLeZLd4mFjrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/ProYKEcn563-AeEMxgYtZ1CM-uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/877342-734c-471b-b3f9-02c37feb8a9e/1/DYGcnS5S2Ereot5MLeZLd4mFjrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.100.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:37:5f:4f:00:46:78:fe:a0:57:fe:df:2f:27:70:fd:53:fe:
00:80:ab:4b:0f:a1:a2:db:78:61:92:11:b4:c2:2e:c7:c5:d2:
b5:40:75:27:a2:84:8b:30:8b:a8:c6:09:ed:9d:fb:5e:ab:84:
c0:99:c5:64:d9:e9:c1:2c:96:e6:ba:8a:1e:49:4d:2f:69:a6:
47:4e:0d:ec:36:eb:b7:72:cc:a4:66:25:82:7f:82:b2:0e:c7:
89:ac:94:7d:29:7b:16:b9:20:6a:46:4a:d5:bf:aa:8c:48:5d:
38:47:d5:af:4c:84:af:dd:89:f1:46:31:2d:e2:4e:79:02:be:
59:1b:3c:cd:de:8b:a9:9b:43:2b:cc:79:8c:02:a8:09:6e:e7:
2e:13:27:c1:83:1a:6a:63:c0:96:fb:b1:83:1f:28:c1:84:1b:
39:f1:f4:23:e0:b5:f1:2f:e0:0b:45:21:87:d4:46:35:99:5f:
a4:d5:41:df:c5:4f:01:6f:23:51:05:7f:30:f4:c5:c6:25:1c:
1b:60:ed:03:2e:4f:8e:25:b5:19:ac:7c:c4:f3:43:55:e7:5f:
14:ff:c5:86:8b:c6:5f:88:a8:1e:c1:e1:51:3f:73:26:ff:aa:
a3:18:9e:72:30:32:f2:7f:e4:f3:83:6a:1d:2c:8b:fe:de:87:
62:f6:1d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 08:10:10 2024 by rpki-client on console-fra.rpki-client.org