Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/zF7o4vCCw52fFJS4eJhRqEu7agU.roa
File: zF7o4vCCw52fFJS4eJhRqEu7agU.roa (raw, json)
Hash identifier: D5G9smm4uFI3RUUkMsW8ayq5HlN/kAJtILgxWaorlmY=
Subject key identifier: CC:5E:E8:E2:F0:82:C3:9D:9F:14:94:B8:78:98:51:A8:4B:BB:6A:05
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 01856C78132A60D34667D77164063420DC53
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/zF7o4vCCw52fFJS4eJhRqEu7agU.roa
Signing time: Sun 01 Jan 2023 08:34:46 +0000
ROA not before: Sun 01 Jan 2023 08:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210848
IP address blocks: 185.156.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 26 Jun 2023 14:06:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:13:2a:60:d3:46:67:d7:71:64:06:34:20:dc:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jan 1 08:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cc5ee8e2f082c39d9f1494b8789851a84bbb6a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ee:42:f6:77:71:d1:ea:4b:29:11:b0:d3:9b:
78:5f:c3:43:23:08:0c:2e:18:3d:69:b7:94:de:02:
de:4f:1d:83:7d:0b:84:28:8b:a0:bb:df:4e:0a:02:
fc:67:f6:2c:6f:14:3f:80:83:aa:ca:d9:d4:8e:d8:
59:85:fb:90:85:94:17:b6:9c:42:06:80:21:a2:10:
d4:40:9c:81:4c:7d:f3:3d:5d:d4:8c:79:dd:15:be:
24:e3:23:6c:6d:4a:5b:59:d0:c6:b8:b0:7b:21:f7:
49:c8:8b:20:8a:b8:13:f2:a8:50:6c:93:38:cb:0e:
29:87:5b:ff:54:63:cc:a6:de:0f:d7:e6:46:d9:1a:
ee:b9:04:2b:17:78:d8:e8:83:ab:84:2d:73:f7:c6:
f5:ca:15:3b:66:52:4b:b2:b8:b7:38:39:44:8d:87:
44:54:d4:ea:48:2b:c6:01:28:2d:36:f2:75:a3:3c:
e8:96:85:1c:2a:26:24:08:97:12:fc:04:1f:3f:c4:
24:d8:5e:a1:56:9f:2e:41:38:5b:cf:fb:cc:9b:6d:
2c:6f:e3:05:ec:33:44:54:3b:3f:5d:bb:08:9a:e8:
a0:fb:ea:51:54:13:f2:6a:5e:e1:a7:0f:22:a9:d3:
e4:a3:5c:c7:50:88:72:a1:e7:2b:06:e0:46:fb:6f:
94:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:5E:E8:E2:F0:82:C3:9D:9F:14:94:B8:78:98:51:A8:4B:BB:6A:05
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/zF7o4vCCw52fFJS4eJhRqEu7agU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.74.0/24
Signature Algorithm: sha256WithRSAEncryption
28:f8:a4:75:a6:6b:d6:05:83:9e:2e:ba:f5:9c:4b:d8:0f:c6:
a5:b2:6f:87:3c:c5:8a:a7:ba:aa:f6:f1:02:08:78:dc:93:68:
64:e6:99:30:37:70:f0:d5:4c:93:54:25:43:d6:e8:a0:93:62:
6c:a0:d3:ba:0f:f2:90:42:33:4a:7a:a7:48:4e:ec:fb:d5:4d:
b4:d8:67:8f:d5:57:45:73:a4:03:98:0b:4b:5d:70:46:c8:2e:
c7:f9:67:3d:22:4a:c9:a6:92:2c:d5:f4:19:d4:19:fb:09:87:
c4:36:88:5f:0a:2d:42:24:20:9e:3a:c2:c4:7a:b3:ea:15:15:
d1:51:f5:42:4b:82:0e:2a:48:3a:9c:f9:68:4e:86:64:c7:8a:
af:cf:19:8d:34:1a:ab:eb:5f:1c:07:d5:b9:cd:b3:dd:bb:80:
7c:eb:bc:32:0a:17:09:c7:ba:1f:3d:06:90:82:38:08:ae:26:
c3:e6:1d:f8:ae:76:f2:c9:44:6e:67:f3:73:9c:ed:19:61:fa:
61:84:77:8c:3d:54:5a:f0:10:59:86:44:82:fe:dc:b5:44:0c:
98:51:b4:81:05:03:19:d7:e7:10:81:3b:0a:c1:27:32:a7:de:
98:75:70:da:17:29:52:8f:d3:08:34:10:ed:93:bd:9f:4b:e6:
05:d2:02:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:29 2024 by rpki-client on console-ams.rpki-client.org