Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6nrMHkymQZOOy43owwkUOdMrtxY.roa
File: 6nrMHkymQZOOy43owwkUOdMrtxY.roa (raw, json)
Hash identifier: gH0Xy3NCb4vWx0KKZPKgwEMiRhp4TkBJVkO6rioS5Ps=
Subject key identifier: EA:7A:CC:1E:4C:A6:41:93:8E:CB:8D:E8:C3:09:14:39:D3:2B:B7:16
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0185710C26597DB721E8437FEFD675C478D3
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6nrMHkymQZOOy43owwkUOdMrtxY.roa
Signing time: Mon 02 Jan 2023 05:54:59 +0000
ROA not before: Mon 02 Jan 2023 05:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57371
IP address blocks: 185.200.189.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:26:59:7d:b7:21:e8:43:7f:ef:d6:75:c4:78:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 2 05:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea7acc1e4ca641938ecb8de8c3091439d32bb716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:14:77:39:88:bf:29:6d:c9:0f:43:db:8e:94:
3a:ec:84:0a:78:1a:71:cb:84:4f:6f:48:62:1a:cf:
a2:8b:5c:65:61:38:ed:39:a1:6a:50:36:21:ab:a0:
65:32:20:80:7f:83:3d:10:8b:24:ec:1b:30:4a:64:
c9:83:49:b4:2e:81:19:a1:af:95:01:bf:54:c3:3c:
39:d6:89:ee:24:31:9b:8b:f0:c6:62:d2:f9:05:8c:
a5:33:60:95:ff:a7:7c:4a:80:f6:0c:5e:c4:cb:73:
92:82:cf:f2:cb:f2:5d:5d:f3:ef:4c:43:78:44:00:
c3:8c:ed:85:7c:85:41:8f:a6:e9:1a:00:1b:af:b2:
2c:a3:41:71:35:b7:66:02:f1:5c:da:15:c0:c9:05:
8d:a2:1a:79:f7:85:7f:17:49:6f:3a:df:72:29:0d:
54:bb:28:b9:88:50:fe:c5:b3:df:cc:5b:e6:e0:4a:
81:0b:51:89:a5:24:20:a1:49:c4:50:53:4f:0e:e6:
4f:8d:c9:9c:9a:db:6f:31:c5:87:2f:db:42:e9:54:
17:46:33:bc:4d:74:2e:23:22:9f:72:c6:96:31:e9:
84:67:a7:d0:ef:2d:2c:ae:22:cc:2b:51:07:cd:d7:
15:7d:65:d7:d3:ff:25:1c:4a:df:69:62:2d:12:67:
2d:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:7A:CC:1E:4C:A6:41:93:8E:CB:8D:E8:C3:09:14:39:D3:2B:B7:16
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/6nrMHkymQZOOy43owwkUOdMrtxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.200.189.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:7a:b3:fd:71:da:86:1e:4b:ae:88:bb:05:d7:74:ee:03:42:
93:04:26:14:42:19:d3:17:a7:6e:0d:98:79:4e:80:03:86:61:
a5:bd:65:19:9a:1b:92:95:b7:d4:d1:2c:0f:1c:d4:78:c6:84:
94:93:2c:6a:ba:79:74:2e:0a:a3:4a:e8:8c:f8:8b:c1:89:02:
a4:09:6f:e5:09:70:d5:5e:51:3f:d7:e5:5c:b9:57:3c:fa:e5:
cc:b0:6e:d5:44:09:aa:95:de:e8:c6:bf:b2:fd:a2:78:ee:e1:
b2:8e:73:8b:ce:d8:16:db:6e:88:71:c4:4d:89:d3:a6:f4:87:
ed:f7:21:94:6b:bb:0c:99:58:9f:2b:cb:3b:7f:50:c1:42:4b:
1e:8b:af:20:3a:ac:1f:46:b7:ca:dc:b4:21:54:9c:48:33:0d:
ae:68:2c:0e:61:b9:2e:7c:25:26:25:c4:d5:54:ae:63:3a:19:
79:b9:a9:22:2b:9a:9a:6d:05:4f:3a:0d:6d:1b:96:87:4c:59:
bd:5c:06:47:15:6a:95:cc:35:67:6f:b8:c5:dc:52:57:4f:0e:
d9:8f:a5:fc:14:89:56:57:51:2c:e4:aa:bf:39:e7:8b:d7:39:
c9:3d:93:66:98:bd:e4:84:2a:3e:1e:23:2d:2c:25:31:8e:b3:
12:6b:23:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:02:23 2024 by rpki-client on console-ams.rpki-client.org