Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/c79635-bec4-4fb5-892c-fa26ec39faba/1/sLCCk3muTRrlAXrdrdWbuhZo0Uk.roa
File: sLCCk3muTRrlAXrdrdWbuhZo0Uk.roa (raw, json)
Hash identifier: S0c1r+kCI2ssOTZJTtmbwQ20wXOFC5dz1cvINXd/bNY=
Subject key identifier: B0:B0:82:93:79:AE:4D:1A:E5:01:7A:DD:AD:D5:9B:BA:16:68:D1:49
Certificate issuer: /CN=413ffa106ae3fee6be87bac06a87ba57ed1c1140
Certificate serial: 01856FF02E658A05F7A7C52AD801A0284C2E
Authority key identifier: 41:3F:FA:10:6A:E3:FE:E6:BE:87:BA:C0:6A:87:BA:57:ED:1C:11:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QT_6EGrj_ua-h7rAaoe6V-0cEUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/c79635-bec4-4fb5-892c-fa26ec39faba/1/sLCCk3muTRrlAXrdrdWbuhZo0Uk.roa
Signing time: Mon 02 Jan 2023 00:44:49 +0000
ROA not before: Mon 02 Jan 2023 00:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60621
IP address blocks: 185.14.197.0/24 maxlen: 24
185.14.196.0/24 maxlen: 24
185.14.196.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f0:2e:65:8a:05:f7:a7:c5:2a:d8:01:a0:28:4c:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=413ffa106ae3fee6be87bac06a87ba57ed1c1140
Validity
Not Before: Jan 2 00:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0b0829379ae4d1ae5017addadd59bba1668d149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c1:42:6d:4c:d6:73:62:ff:8b:43:75:cd:fb:
79:26:1c:14:29:7d:a0:ca:f3:ca:c9:36:20:9c:a2:
16:2a:a3:ad:1d:2e:d9:31:97:ce:59:8c:d1:b1:53:
2a:3b:0e:f6:a7:5c:81:1c:15:97:0d:dc:15:f1:9d:
ff:10:9f:67:58:4d:9c:18:97:bd:cf:db:34:c2:12:
ac:40:88:b7:fb:e9:7c:9d:30:79:bf:8c:88:e7:27:
af:5f:84:d9:21:62:84:9d:be:e5:0a:2c:79:27:2a:
29:d3:b1:f1:e4:1f:d2:e2:56:46:5e:06:75:30:88:
74:2a:b4:91:ad:42:71:97:c3:6a:27:95:28:53:c0:
e7:3c:7c:cd:8e:53:f9:5b:fc:2b:49:11:e5:8b:fa:
24:50:08:62:0d:41:29:9a:98:40:ef:8b:4e:02:b3:
eb:be:25:57:13:a1:fc:48:88:a0:67:a4:5e:0c:3b:
f2:19:6d:34:02:2c:d0:6e:d9:89:c1:5e:95:3b:e7:
fa:9d:86:e2:a9:ca:3b:26:b9:ce:ce:24:56:b0:df:
59:0b:a2:e5:30:37:57:cf:7f:19:db:27:ec:85:a1:
56:32:70:9e:a9:14:a1:01:cf:3c:a9:2b:33:a2:91:
99:d5:ce:db:0d:9d:ad:21:9c:61:0f:a6:a6:04:4a:
cb:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:B0:82:93:79:AE:4D:1A:E5:01:7A:DD:AD:D5:9B:BA:16:68:D1:49
X509v3 Authority Key Identifier:
keyid:41:3F:FA:10:6A:E3:FE:E6:BE:87:BA:C0:6A:87:BA:57:ED:1C:11:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QT_6EGrj_ua-h7rAaoe6V-0cEUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c79635-bec4-4fb5-892c-fa26ec39faba/1/sLCCk3muTRrlAXrdrdWbuhZo0Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c79635-bec4-4fb5-892c-fa26ec39faba/1/QT_6EGrj_ua-h7rAaoe6V-0cEUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.14.196.0/22
Signature Algorithm: sha256WithRSAEncryption
02:f8:c4:21:36:83:f2:40:af:36:77:99:88:b7:d5:b4:cc:4a:
9a:f8:c8:a8:61:fc:0e:c3:a3:79:1c:88:29:a5:a6:1f:39:53:
fc:00:6e:01:7a:dc:66:eb:3f:c0:cf:f6:fb:a7:5c:9b:af:b3:
38:46:ff:54:f7:f2:df:06:6e:d1:7c:0b:90:e3:f8:21:4e:2e:
a7:33:c3:ff:0f:9f:86:a0:61:e4:66:66:62:ea:da:55:48:3b:
ed:d0:e4:4a:78:c2:16:a2:c4:a9:b1:ce:a3:c9:da:85:03:c8:
3b:31:e6:31:c1:3b:32:6a:c9:8b:5f:ab:55:c6:f4:0b:49:1d:
56:0d:2b:36:e7:07:2a:4d:97:07:4f:d6:ec:2e:cc:b9:41:53:
90:75:1b:6d:5b:84:fa:2f:8a:13:5d:5b:84:e8:33:8c:4f:83:
1a:88:57:57:87:13:64:93:f7:ef:ff:4c:17:b0:6e:9d:db:0d:
1f:b4:aa:a6:8e:5b:de:2b:f8:c6:3b:8b:ee:23:7c:76:ac:10:
58:08:8a:d5:d0:42:78:84:42:c9:3f:9a:7d:e9:e4:59:0c:c7:
98:29:70:9d:27:a0:80:2c:24:b2:14:1f:1b:94:c1:ac:17:5c:
13:78:fa:26:eb:eb:ba:1a:49:c8:a4:7d:ba:51:9f:ed:fb:48:
45:c7:45:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 19:27:37 2024 by rpki-client on console-fra.rpki-client.org