Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6c4021-0b67-4485-b823-0bddc80711ae/1/Cd7fbcqBx0D3NTt4EYH-_JAkAUQ.roa
File: Cd7fbcqBx0D3NTt4EYH-_JAkAUQ.roa (raw, json)
Hash identifier: xbfuxpSpZumWkTWBPUHk7bklBy1bbTB/QPwTPVCJCiE=
Subject key identifier: 09:DE:DF:6D:CA:81:C7:40:F7:35:3B:78:11:81:FE:FC:90:24:01:44
Certificate issuer: /CN=d15a1098c5c8535c9758f128d8a082df7cf8510b
Certificate serial: 0187BA3B9C3889F9B2DFBB54B603A523260A
Authority key identifier: D1:5A:10:98:C5:C8:53:5C:97:58:F1:28:D8:A0:82:DF:7C:F8:51:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0VoQmMXIU1yXWPEo2KCC33z4UQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6c4021-0b67-4485-b823-0bddc80711ae/1/Cd7fbcqBx0D3NTt4EYH-_JAkAUQ.roa
Signing time: Tue 25 Apr 2023 21:04:41 +0000
ROA not before: Tue 25 Apr 2023 21:04:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200186
IP address blocks: 185.144.97.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ba:3b:9c:38:89:f9:b2:df:bb:54:b6:03:a5:23:26:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d15a1098c5c8535c9758f128d8a082df7cf8510b
Validity
Not Before: Apr 25 21:04:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=09dedf6dca81c740f7353b781181fefc90240144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c6:2a:30:00:9c:73:02:23:67:94:c1:c3:fe:
fe:53:ae:ee:c3:c3:2b:2d:b4:17:64:86:e7:de:0a:
0e:7e:ac:6d:8e:01:84:da:e4:0e:f5:d4:5a:49:c2:
67:95:5b:b2:e4:c7:06:81:3f:1d:8f:b7:1a:f1:3f:
6e:e1:e1:29:fc:fa:e7:70:32:47:a1:e9:39:d9:54:
a8:00:04:03:ee:27:50:c3:5c:01:1d:c4:33:f2:ab:
fb:13:94:d2:a7:90:80:6d:6e:11:6c:45:61:a5:17:
42:ca:9d:21:90:1e:dd:1a:13:19:64:93:34:ca:79:
63:d5:53:9d:90:48:9d:1e:1e:80:9e:c9:8c:28:47:
8c:a8:ba:e3:9e:47:84:d5:87:ad:7d:a4:38:0b:43:
00:be:cb:3c:db:af:d3:b9:c7:ec:a1:b5:21:b2:fc:
64:f3:0e:69:e8:05:bd:e6:f6:2c:e3:59:a4:4e:76:
b1:e9:bf:e2:f0:64:5b:52:dc:2d:f1:0c:29:65:da:
f9:3e:cb:06:53:ef:b4:c9:de:23:c8:f9:d5:f9:e7:
d5:2f:95:9e:b1:30:cc:e7:af:f7:d3:fa:6d:6b:32:
f7:70:ef:b4:9a:a7:41:c6:de:65:f6:5c:b4:5b:25:
f2:2b:f9:22:6f:32:d9:60:51:22:00:ba:10:da:6c:
fe:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:DE:DF:6D:CA:81:C7:40:F7:35:3B:78:11:81:FE:FC:90:24:01:44
X509v3 Authority Key Identifier:
keyid:D1:5A:10:98:C5:C8:53:5C:97:58:F1:28:D8:A0:82:DF:7C:F8:51:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0VoQmMXIU1yXWPEo2KCC33z4UQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6c4021-0b67-4485-b823-0bddc80711ae/1/Cd7fbcqBx0D3NTt4EYH-_JAkAUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6c4021-0b67-4485-b823-0bddc80711ae/1/0VoQmMXIU1yXWPEo2KCC33z4UQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.144.97.0/24
Signature Algorithm: sha256WithRSAEncryption
99:0b:69:a6:50:e0:30:a9:66:7f:cf:d3:30:ac:cd:51:d0:2b:
48:8d:cf:6f:4c:c2:bf:bb:85:ba:ba:20:1d:88:be:f3:0e:2a:
cc:58:d6:45:cb:dc:1a:c6:28:ce:e7:9d:2f:a7:1b:87:0c:c2:
7b:48:52:b6:de:86:b3:71:06:65:a3:58:9f:a7:f9:08:a5:f8:
cf:cd:c0:b9:22:35:6a:e3:cb:5d:7e:78:36:72:6a:b3:b0:7d:
bc:1b:f2:6b:d5:70:48:24:7d:ff:be:da:b7:e9:cc:22:08:6e:
e8:1d:04:f0:74:58:67:79:aa:fa:15:31:c4:d1:67:35:52:8f:
74:70:b5:05:47:3c:6d:6a:e1:4a:5d:4d:17:2a:9a:0a:f5:a3:
e4:2a:40:94:17:6c:90:5a:8a:d1:a5:f7:42:af:73:2a:a3:83:
2b:7d:21:4c:f3:0a:f0:60:7a:10:f6:42:33:4c:ab:13:0c:e3:
c8:79:4d:f3:14:c4:94:d2:32:53:a0:62:1e:dc:7b:bc:0a:73:
cd:23:95:39:bd:54:6d:5d:e8:8c:cc:77:e8:52:5e:b8:e2:e7:
10:0c:57:8a:96:de:fb:af:bf:a1:56:5a:0f:4e:c7:3e:05:bb:
0d:8f:ec:32:5a:99:3c:88:8c:1e:41:e8:1e:ae:82:7f:45:38:
08:77:69:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 01:50:33 2024 by rpki-client on console-fra.rpki-client.org