Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3jlFKdkzVlWAG_L_LqUa--RWy0Q.roa
File: 3jlFKdkzVlWAG_L_LqUa--RWy0Q.roa (raw, json)
Hash identifier: gkY6TtAfRBu/XkO5VfR5y+4aFOIKNtsSBQAC0wYR6XA=
Subject key identifier: DE:39:45:29:D9:33:56:55:80:1B:F2:FF:2E:A5:1A:FB:E4:56:CB:44
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C53F20BA1EFCBEB72761BC15E6E5591
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3jlFKdkzVlWAG_L_LqUa--RWy0Q.roa
Signing time: Sun 01 Jan 2023 07:55:18 +0000
ROA not before: Sun 01 Jan 2023 07:55:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43126
IP address blocks: 185.190.82.0/24 maxlen: 24
2a0b:1904::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:f2:0b:a1:ef:cb:eb:72:76:1b:c1:5e:6e:55:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=de394529d9335655801bf2ff2ea51afbe456cb44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b8:3d:73:e9:21:c8:c7:19:5d:b8:b8:be:ea:
b2:ad:db:a7:e2:35:cd:1d:48:27:82:95:93:5e:5f:
ff:0a:f6:3d:42:d0:2a:fd:b3:e5:c6:85:7b:c3:e5:
2f:82:66:32:f8:52:94:88:87:ec:dd:c4:ca:16:77:
22:ba:e3:3b:8c:36:ce:2d:fe:1f:39:70:29:ba:21:
d0:7c:dc:d0:e1:a9:cc:ab:df:5a:bb:ec:9b:5c:cb:
46:17:ee:a6:b5:9c:01:bd:60:42:a1:a9:bf:08:5f:
c7:6f:43:99:32:f8:fd:ac:dd:0e:19:89:3b:14:20:
30:ca:98:2d:2f:83:f4:e1:61:eb:31:ec:82:69:a8:
09:4f:30:97:15:ea:35:66:84:92:67:62:58:ed:f0:
de:9a:da:ed:84:73:39:d7:70:ca:d0:df:7c:0b:5c:
a3:37:04:df:93:65:1e:88:9a:18:de:59:61:d6:1e:
9e:ab:db:90:2b:d6:58:f5:e3:b9:df:aa:d2:2b:cb:
88:99:ea:e5:ec:ce:3f:c3:8c:13:13:f0:9d:58:f3:
9c:8b:df:37:3b:a8:81:33:90:21:73:f3:d1:52:8c:
f7:f5:25:90:c2:d1:6c:10:7c:90:a1:0e:7d:96:2b:
67:95:5c:bb:37:8d:26:ce:50:e0:21:c5:66:42:59:
8f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:39:45:29:D9:33:56:55:80:1B:F2:FF:2E:A5:1A:FB:E4:56:CB:44
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3jlFKdkzVlWAG_L_LqUa--RWy0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.190.82.0/24
IPv6:
2a0b:1904::/48
Signature Algorithm: sha256WithRSAEncryption
07:a4:c6:82:b3:4b:9b:b0:4e:91:17:e6:d7:cf:b4:2f:08:fa:
85:fe:2f:33:ea:1f:95:01:78:f0:36:73:9a:c8:d5:22:65:4a:
79:93:0c:32:63:c8:9d:8d:d5:13:97:12:03:ee:e6:2a:e0:63:
e2:e7:77:db:b2:d2:9f:66:62:22:3a:ed:41:d5:55:6a:14:6f:
b4:71:ab:5d:58:18:22:05:69:4d:72:10:c3:f4:58:db:0d:ee:
2c:8b:22:f1:93:26:92:fc:70:20:7b:f4:5b:7c:f8:71:c9:a3:
b9:d3:00:17:4a:62:9d:98:75:fc:1f:f0:68:28:77:90:35:d4:
e8:8b:8f:e2:74:f5:81:13:d7:ae:0c:a1:7d:56:31:81:7d:2d:
b6:68:df:a6:d7:a7:d7:c6:d9:96:16:85:91:29:c5:3d:d8:b9:
0d:aa:72:0b:84:e2:5d:dd:bc:dd:fa:df:37:d8:fe:1b:47:ca:
20:bd:d9:e5:02:1f:a6:37:96:bb:5a:d0:db:cb:62:b2:ff:4e:
5b:14:41:fe:c3:16:fe:f2:94:42:fe:00:e8:15:57:4f:3d:17:
bb:e8:e8:53:4c:42:4d:ce:e9:9e:11:c1:65:1b:db:f2:6c:37:
dc:41:9a:66:41:dc:36:a5:b0:c2:20:24:38:67:05:3f:06:f2:
7b:2e:e2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 1 03:08:44 2023 by rpki-client on console-fra.rpki-client.org