Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/4ordl9lppQrZAU0yBMWS9RhN42Q.roa
File: 4ordl9lppQrZAU0yBMWS9RhN42Q.roa (raw, json)
Hash identifier: je4iBypfgkak5YyJDP8QP2tsrQxSEcggIltQYIWEsts=
Subject key identifier: E2:8A:DD:97:D9:69:A5:0A:D9:01:4D:32:04:C5:92:F5:18:4D:E3:64
Certificate issuer: /CN=0c90c356e2864f43894857443555d8b5c0352819
Certificate serial: 0185718C2D991B6725435F5934A5831FE772
Authority key identifier: 0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/4ordl9lppQrZAU0yBMWS9RhN42Q.roa
Signing time: Mon 02 Jan 2023 08:14:50 +0000
ROA not before: Mon 02 Jan 2023 08:14:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201639
IP address blocks: 185.86.192.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:2d:99:1b:67:25:43:5f:59:34:a5:83:1f:e7:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c90c356e2864f43894857443555d8b5c0352819
Validity
Not Before: Jan 2 08:14:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e28add97d969a50ad9014d3204c592f5184de364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:5d:45:31:16:41:fd:e0:49:37:4e:64:bd:64:
ec:26:15:d5:b2:6d:d8:38:f3:70:d6:a7:7d:a8:74:
a6:fb:40:59:33:72:c4:6e:67:e3:ee:11:fb:1b:5b:
46:cd:29:c8:5b:9a:5a:2e:65:3e:95:37:2a:65:2f:
27:db:5f:31:bb:11:7d:f5:8d:f7:f2:8d:b6:90:b6:
b6:68:9d:78:e4:ad:11:68:f2:95:ca:b8:0e:b3:9f:
93:81:07:d8:10:3c:72:26:12:63:e5:40:44:ab:26:
9a:6b:f3:4d:2e:bf:0e:49:2e:4e:95:b4:cb:4f:13:
a6:e9:13:cb:df:01:29:51:05:c8:86:54:05:f8:19:
85:53:04:ba:3a:5b:17:cf:f4:e2:5e:2b:83:e4:02:
fa:31:1b:e1:b3:f7:f4:ea:95:67:eb:a6:30:c1:cb:
d1:ce:57:70:21:d5:57:65:28:c0:aa:52:de:ed:c0:
24:f6:63:91:ef:ea:6b:97:b6:0b:dd:4c:27:94:4d:
ad:8e:bb:1e:71:16:da:49:e8:48:f2:27:b6:3d:bb:
47:2b:ba:a7:e0:fd:1a:ac:e9:92:c9:5f:13:f5:60:
8f:97:61:5b:8a:38:44:0c:c5:d4:41:5d:19:40:0f:
ac:ed:7a:b6:a0:21:de:44:34:6d:17:b4:e0:84:9c:
1c:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:8A:DD:97:D9:69:A5:0A:D9:01:4D:32:04:C5:92:F5:18:4D:E3:64
X509v3 Authority Key Identifier:
keyid:0C:90:C3:56:E2:86:4F:43:89:48:57:44:35:55:D8:B5:C0:35:28:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DJDDVuKGT0OJSFdENVXYtcA1KBk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/4ordl9lppQrZAU0yBMWS9RhN42Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/ac5a56-163a-497a-9547-e3799ade9dfe/1/DJDDVuKGT0OJSFdENVXYtcA1KBk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.192.0/24
Signature Algorithm: sha256WithRSAEncryption
06:03:4d:3e:86:4a:c7:3f:a4:2c:64:26:3c:d0:e3:46:19:1e:
ba:1c:16:94:42:93:72:a0:71:86:5b:84:62:49:a3:55:dd:27:
9a:20:3f:07:49:93:e0:37:5b:90:35:b6:c2:af:84:2f:03:59:
40:3b:1a:49:f8:cc:49:78:59:c7:de:29:ed:a6:fe:ae:3b:54:
b4:99:03:93:93:cb:6f:98:1a:fe:0c:b9:91:11:37:61:7c:1a:
da:0e:ad:8f:08:a6:14:5e:c7:f0:20:b2:8b:4a:fb:61:69:2c:
e1:29:20:87:3f:6f:8c:eb:74:f5:d1:b0:df:9b:f1:96:c1:8e:
b7:6c:71:36:7c:43:4b:f1:f5:64:cf:a7:c7:0f:b6:38:43:2a:
ae:69:57:0f:a0:0d:50:7f:3e:f0:e9:9f:bc:2d:37:19:1b:11:
77:c4:44:43:27:cd:a5:32:80:49:36:b3:48:43:6b:43:ba:3e:
f8:2b:ea:4d:47:33:f1:3b:a0:e9:e0:b9:7c:02:ae:69:c0:19:
45:30:20:72:0a:d4:40:ad:80:d8:b8:d4:9a:13:87:da:a6:1a:
52:ca:61:17:9a:bf:d0:59:19:6a:8f:a0:6b:fc:09:b2:ce:b7:
18:28:96:bb:7d:2d:06:d5:7b:a2:28:70:05:d4:75:fc:a5:fb:
f7:2a:7a:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:33:11 2024 by rpki-client on console-ams.rpki-client.org