Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/26d6f6-11ee-4a86-bfb9-ddc276acb910/1/_BBybZGgZLbF-61eVZp45LOb60Q.roa
File: _BBybZGgZLbF-61eVZp45LOb60Q.roa (raw, json)
Hash identifier: D4TJ0xhLOfCP9ElnIBS/BGtCyr3lhwThabwvkYCN3yQ=
Subject key identifier: FC:10:72:6D:91:A0:64:B6:C5:FB:AD:5E:55:9A:78:E4:B3:9B:EB:44
Certificate issuer: /CN=0acd4e2c04c39edb242a67051b8b581263436e79
Certificate serial: 01857321FA49343B2FD8D0F31E21D51EE0ED
Authority key identifier: 0A:CD:4E:2C:04:C3:9E:DB:24:2A:67:05:1B:8B:58:12:63:43:6E:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cs1OLATDntskKmcFG4tYEmNDbnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/26d6f6-11ee-4a86-bfb9-ddc276acb910/1/_BBybZGgZLbF-61eVZp45LOb60Q.roa
Signing time: Mon 02 Jan 2023 15:38:04 +0000
ROA not before: Mon 02 Jan 2023 15:38:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60593
IP address blocks: 185.196.134.0/23 maxlen: 24
2a09:a5c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:fa:49:34:3b:2f:d8:d0:f3:1e:21:d5:1e:e0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0acd4e2c04c39edb242a67051b8b581263436e79
Validity
Not Before: Jan 2 15:38:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fc10726d91a064b6c5fbad5e559a78e4b39beb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:4c:05:ee:a1:7e:7d:95:ac:6b:1f:9a:29:93:
cb:bd:46:f5:42:f4:45:ee:1a:b2:11:d8:f2:2d:be:
81:31:06:26:55:57:7e:ba:23:a9:52:99:75:e7:f3:
1f:c1:ba:44:ca:15:08:7f:c0:85:36:e3:e3:89:6d:
4e:e1:e5:44:91:ed:e5:cf:74:af:0f:84:e9:e1:56:
c2:2d:f0:ff:a4:36:4f:fd:b0:a0:c4:13:54:9a:e8:
5a:29:7e:b5:10:33:1f:89:dc:55:32:29:c5:c3:5b:
9d:63:c7:0e:3b:a3:4c:64:b5:65:98:82:04:2c:11:
95:76:52:e1:fe:d3:60:06:a7:0e:80:5e:50:d2:88:
61:3c:f8:24:89:e4:39:f0:43:65:85:3b:a6:4e:0a:
73:0c:21:02:d7:22:1e:4d:54:a0:46:56:f8:cc:cc:
fb:df:e6:af:71:ef:1d:c0:3f:1b:1d:12:41:b8:a1:
90:3a:3e:8d:98:32:d7:aa:4f:1e:d1:46:00:13:a0:
5d:7d:03:d3:6e:2b:bb:40:cc:29:ba:e7:c9:7a:1f:
50:8f:3e:43:7d:26:9e:3a:96:ab:3b:f6:3b:ff:62:
81:6d:e1:a9:e7:2f:08:79:da:f8:38:f3:ae:9b:9a:
4c:0c:49:44:33:25:22:72:a4:91:3e:20:63:c9:4d:
ac:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:10:72:6D:91:A0:64:B6:C5:FB:AD:5E:55:9A:78:E4:B3:9B:EB:44
X509v3 Authority Key Identifier:
keyid:0A:CD:4E:2C:04:C3:9E:DB:24:2A:67:05:1B:8B:58:12:63:43:6E:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cs1OLATDntskKmcFG4tYEmNDbnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/26d6f6-11ee-4a86-bfb9-ddc276acb910/1/_BBybZGgZLbF-61eVZp45LOb60Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/26d6f6-11ee-4a86-bfb9-ddc276acb910/1/Cs1OLATDntskKmcFG4tYEmNDbnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.134.0/23
IPv6:
2a09:a5c0::/29
Signature Algorithm: sha256WithRSAEncryption
7b:7d:a9:75:9a:d2:ef:05:f9:a6:5c:16:66:ab:fd:ee:26:33:
84:64:5c:da:00:09:14:80:6e:23:95:16:e7:11:be:5b:6e:f9:
06:8d:b3:dc:2a:40:22:96:05:20:d7:f4:8b:e6:86:a7:80:b7:
cf:34:47:f3:aa:85:18:90:70:be:f1:7d:16:f8:d5:79:20:9e:
c3:2f:dd:42:43:9e:aa:be:62:c3:af:52:10:84:ed:c8:f5:a9:
23:4b:8b:70:f6:54:64:0a:08:f5:71:5c:87:9c:09:5e:13:6b:
1b:a5:a6:23:e3:b6:8a:70:4d:a0:51:46:e8:b1:16:39:31:ee:
6c:be:c6:3b:ca:27:96:77:ce:64:bb:62:99:a1:82:7d:3f:7e:
f9:36:6d:7a:c8:a1:a6:db:2f:3e:05:6a:a5:09:43:bf:74:08:
e5:82:de:99:1e:7c:61:9a:ed:a9:de:de:6b:db:85:5c:bb:b0:
88:64:02:92:9a:aa:94:32:4e:2e:f3:20:8c:32:65:b5:ca:30:
cd:03:aa:86:fb:19:a2:05:e0:cb:1c:82:5c:3d:3f:57:80:4b:
fa:f3:23:56:5c:69:93:2f:4b:a6:79:0e:e5:27:b5:83:c5:5c:
38:b2:84:46:b5:db:e4:8d:78:d2:c3:0e:6e:5a:e0:81:cf:cb:
80:00:57:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:05 2024 by rpki-client on console-ams.rpki-client.org