Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/r7iKeWLy3ZgDgv1oF9K6IYjfRrM.roa
File: r7iKeWLy3ZgDgv1oF9K6IYjfRrM.roa (raw, json)
Hash identifier: 4euEQw7Swb8pDwlp6FIHIUkkJs9Yun4eXf2sMm2EinY=
Subject key identifier: AF:B8:8A:79:62:F2:DD:98:03:82:FD:68:17:D2:BA:21:88:DF:46:B3
Certificate issuer: /CN=27d54e4a788d6967a2eef3a6692622626f54efad
Certificate serial: 01856BF7EC8BAD118131EA19EF0304113DC8
Authority key identifier: 27:D5:4E:4A:78:8D:69:67:A2:EE:F3:A6:69:26:22:62:6F:54:EF:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/r7iKeWLy3ZgDgv1oF9K6IYjfRrM.roa
Signing time: Sun 01 Jan 2023 06:14:48 +0000
ROA not before: Sun 01 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8487
IP address blocks: 185.156.24.0/24 maxlen: 24
2a07:9980::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:f7:ec:8b:ad:11:81:31:ea:19:ef:03:04:11:3d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27d54e4a788d6967a2eef3a6692622626f54efad
Validity
Not Before: Jan 1 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afb88a7962f2dd980382fd6817d2ba2188df46b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:22:06:8d:05:29:0e:c8:63:f6:6a:cb:30:d1:
e9:32:9b:f5:aa:69:5f:95:64:2b:ba:81:d4:14:1b:
37:fe:7b:14:76:0f:33:5d:e1:a7:a0:45:84:5f:46:
a8:7e:91:18:4b:d4:4e:ed:a8:3f:67:c4:da:3f:64:
1b:77:1e:c4:f8:ad:90:f1:d9:77:e7:90:26:42:40:
34:4d:8d:5f:5f:c1:5a:66:68:db:52:e1:fc:4c:59:
5a:06:a0:bd:65:cd:8f:83:3a:85:1f:6d:9e:6b:da:
f9:e4:85:7f:92:76:b4:54:ca:63:b1:15:1a:5e:ad:
53:c1:a9:5a:b3:b3:2a:64:74:db:2e:92:00:1a:b6:
93:79:b4:c5:9a:b0:53:16:ed:73:06:75:c7:61:ce:
81:31:5c:55:09:9c:44:d7:5b:e9:07:73:a6:02:c9:
df:74:f2:46:43:68:6e:09:e7:72:90:37:b5:cf:c7:
53:47:1d:25:c8:ed:7d:c5:f5:9a:a7:fc:23:d0:67:
a7:6f:31:65:38:8b:73:70:9f:cb:a8:63:b4:9c:e3:
e8:0e:c7:8d:21:d1:52:bf:1e:cf:cb:b5:8b:d0:51:
b0:ab:b8:5d:c7:38:9e:dd:3e:52:15:5b:de:99:d0:
28:2c:a3:c5:02:c8:fc:bc:8a:aa:2a:b6:46:f6:0b:
6a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B8:8A:79:62:F2:DD:98:03:82:FD:68:17:D2:BA:21:88:DF:46:B3
X509v3 Authority Key Identifier:
keyid:27:D5:4E:4A:78:8D:69:67:A2:EE:F3:A6:69:26:22:62:6F:54:EF:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J9VOSniNaWei7vOmaSYiYm9U760.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/r7iKeWLy3ZgDgv1oF9K6IYjfRrM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/832147-310e-4bb5-99da-e99a8dc30255/1/J9VOSniNaWei7vOmaSYiYm9U760.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.24.0/24
IPv6:
2a07:9980::/29
Signature Algorithm: sha256WithRSAEncryption
38:aa:d0:39:4e:51:e8:69:05:6d:25:6c:30:fd:df:79:9a:81:
e2:aa:47:77:20:0f:2c:ef:67:70:ae:74:d2:b6:21:ad:e9:bb:
6b:a7:8e:33:58:d9:4d:74:96:98:5f:1e:a1:44:db:15:55:66:
4a:9a:25:66:f6:bf:99:7a:85:a8:b7:c4:88:7e:87:47:70:d8:
c0:fc:19:32:d5:9f:06:d2:7e:d6:45:2e:d3:4e:94:02:67:27:
33:6a:b8:81:36:fc:ff:9f:9c:c1:07:cf:73:11:58:34:79:e1:
f6:53:5e:96:20:de:c1:10:26:3e:1b:f7:52:42:1e:81:9b:49:
ea:9b:f8:39:a8:ca:12:55:84:c8:17:f1:af:aa:0b:38:22:5b:
da:db:e8:35:02:a8:28:6f:4b:a8:a8:b9:7d:8e:0c:f4:88:4d:
00:27:4d:67:e5:aa:55:70:d3:5c:2d:81:43:cb:bb:8f:55:b2:
d7:63:28:72:a6:b3:98:bc:e8:ec:8b:87:bd:4d:dc:7c:68:c2:
dc:06:4f:0a:1a:51:a3:fd:7b:eb:81:11:4e:ec:34:7f:24:d1:
30:0a:22:03:f3:af:a2:29:fa:9f:f6:61:a4:4c:e6:6b:97:7b:
c2:c0:6d:96:1b:4d:ec:5b:c3:97:eb:84:72:76:c7:77:88:90:
92:83:f9:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:17 2024 by rpki-client on console-fra.rpki-client.org