Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dxnlliznB4C_rHysUpc327-Kg-0.roa
File: dxnlliznB4C_rHysUpc327-Kg-0.roa (raw, json)
Hash identifier: CBdek091HwtkA15knpnPCQKJf/cIr56a15uEsCj1sJ4=
Subject key identifier: 77:19:E5:96:2C:E7:07:80:BF:AC:7C:AC:52:97:37:DB:BF:8A:83:ED
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01856C53EECFE4B5B3E0AA0120D615D89E72
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dxnlliznB4C_rHysUpc327-Kg-0.roa
Signing time: Sun 01 Jan 2023 07:55:17 +0000
ROA not before: Sun 01 Jan 2023 07:55:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41546
IP address blocks: 185.119.253.0/24 maxlen: 24
2a06:82c7::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ee:cf:e4:b5:b3:e0:aa:01:20:d6:15:d8:9e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 07:55:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7719e5962ce70780bfac7cac529737dbbf8a83ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d1:55:d4:94:e1:54:5a:09:a2:27:f0:ec:16:
7d:be:20:f0:be:16:5f:39:45:11:61:cd:fb:ee:22:
6b:02:03:7c:ca:fc:45:e5:fd:30:82:40:a6:e4:c4:
71:cc:29:d7:4c:10:e1:b8:d2:e4:53:43:ba:b9:86:
0d:0b:1e:95:74:ab:bd:b5:b0:ff:fd:33:73:b9:a3:
74:54:e2:26:59:2b:7e:c1:44:2b:59:74:aa:51:aa:
1d:08:55:ad:07:99:2d:ea:21:be:be:17:9a:13:d0:
fe:c5:87:82:21:2c:85:c3:a1:cd:96:20:e8:19:8d:
ba:60:b7:92:bb:aa:72:02:e5:7d:17:45:e2:d3:71:
49:99:8a:5e:e8:dd:1e:5a:fc:7c:16:01:39:70:ec:
d4:04:c0:a2:96:66:58:78:c0:d5:ae:a9:bc:4b:fb:
1a:ad:09:ba:7f:e0:3b:08:69:66:90:cb:4e:50:dc:
08:b2:62:64:3a:01:7f:28:3f:d2:79:da:85:c0:b1:
89:5f:b7:ff:d2:fd:3a:69:4e:bc:19:a3:55:26:c8:
db:53:b3:50:5e:de:ba:3c:01:11:40:80:5e:c4:2f:
0f:81:fd:71:9f:e9:a3:19:ca:24:7d:d7:69:cf:4d:
2b:95:c4:b7:60:3b:f8:96:a8:bf:0b:ab:c2:77:58:
86:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:19:E5:96:2C:E7:07:80:BF:AC:7C:AC:52:97:37:DB:BF:8A:83:ED
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dxnlliznB4C_rHysUpc327-Kg-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.119.253.0/24
IPv6:
2a06:82c7::/48
Signature Algorithm: sha256WithRSAEncryption
bd:67:d9:12:cc:0e:c3:32:02:75:a8:33:f5:04:e2:01:63:45:
37:81:4f:05:19:9e:56:16:6a:4e:9c:0b:22:62:ea:ac:75:99:
be:44:19:5d:63:a5:f6:e1:77:f7:80:66:0e:d7:ce:a3:44:64:
1f:bf:71:ba:f8:fb:e7:fc:b1:da:b5:52:c9:7b:00:e1:88:cf:
81:65:d7:f5:5e:a0:98:7a:16:76:dd:ed:2c:df:93:42:56:d7:
f0:52:90:94:f7:80:3e:37:05:dd:e1:a1:15:be:a6:c5:ff:e6:
b5:73:8b:b2:a6:49:e0:ab:c4:7c:e8:7c:ed:84:4b:26:e6:04:
70:8f:a6:36:75:7a:57:c8:39:93:15:e9:39:bc:a4:21:1b:ca:
8a:7f:2f:79:0a:fd:17:4a:ed:0d:e6:81:ca:1b:6f:4c:86:3e:
58:81:78:1d:2a:59:68:a8:d6:b0:ff:7d:bb:03:e4:4e:1a:df:
33:e8:e7:61:7b:5e:f5:4f:8f:d0:13:98:12:88:24:14:f4:e4:
70:0c:0a:86:fa:0e:a0:6e:81:58:9c:dc:ac:98:ef:6a:b0:e8:
71:2e:b3:e1:49:9c:bf:92:a1:5a:0f:2f:21:a6:42:01:7e:c5:
c6:a3:ed:fe:9d:a8:d9:7a:6b:85:e4:7f:91:a1:c9:0b:06:7d:
e0:11:fc:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:35:55 2024 by rpki-client on console-fra.rpki-client.org