Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/0qeL4mmj0ajIO4c_7dfd7yqaCrQ.roa
File: 0qeL4mmj0ajIO4c_7dfd7yqaCrQ.roa (raw, json)
Hash identifier: KcnTwwCK00DNYnt8cJnsLgVU0FGNJC6MuiKKycYxedw=
Subject key identifier: D2:A7:8B:E2:69:A3:D1:A8:C8:3B:87:3F:ED:D7:DD:EF:2A:9A:0A:B4
Certificate issuer: /CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Certificate serial: 018573E87B85A86BFFF01264FAD0E823F22F
Authority key identifier: E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/0qeL4mmj0ajIO4c_7dfd7yqaCrQ.roa
Signing time: Mon 02 Jan 2023 19:14:53 +0000
ROA not before: Mon 02 Jan 2023 19:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51765
IP address blocks: 185.199.196.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:e8:7b:85:a8:6b:ff:f0:12:64:fa:d0:e8:23:f2:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e61bd7dd1f8ac8b4192ba78a592348b5dd0a1a66
Validity
Not Before: Jan 2 19:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2a78be269a3d1a8c83b873fedd7ddef2a9a0ab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:5d:94:bf:a7:c3:00:3d:c3:bb:00:05:ec:58:
93:a0:4c:c1:b7:31:20:0e:fb:7a:e2:6d:96:ce:c4:
b4:36:bd:4f:d8:e9:5f:b2:52:49:50:11:df:84:91:
96:6e:bf:00:35:23:19:a1:56:2a:69:96:a9:e6:2a:
22:ec:98:63:ce:d7:49:7a:8b:1d:86:c1:62:e5:d9:
4f:69:e9:ea:35:08:63:44:f5:66:35:2f:51:31:94:
1b:39:ba:0e:b9:c9:61:d2:f4:71:4d:dd:98:94:78:
8e:0e:5c:c8:24:c3:b9:f9:fe:b1:61:52:74:d0:e7:
b3:ab:84:d1:cc:84:a9:d0:1e:42:cf:2f:39:ae:d7:
27:c4:88:af:c7:fb:bf:26:36:11:5f:5c:e7:04:c6:
8e:74:8b:6a:68:6d:d4:5b:d8:bc:a4:32:71:22:14:
ec:85:3c:6a:f5:5c:45:e1:c7:f6:ca:15:de:d9:c7:
6e:65:d8:ac:1c:9b:95:fa:7b:bb:41:d1:53:9d:dd:
15:ff:3f:00:b7:72:eb:ca:1e:33:f8:89:38:e0:45:
2d:b9:71:7c:d7:ce:4e:64:d8:73:3d:21:22:33:a5:
f4:16:e5:cd:5d:31:b8:bf:4c:d4:99:ed:af:bd:a8:
90:24:c4:be:04:67:13:9e:a8:35:31:24:23:f0:10:
06:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A7:8B:E2:69:A3:D1:A8:C8:3B:87:3F:ED:D7:DD:EF:2A:9A:0A:B4
X509v3 Authority Key Identifier:
keyid:E6:1B:D7:DD:1F:8A:C8:B4:19:2B:A7:8A:59:23:48:B5:DD:0A:1A:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hvX3R-KyLQZK6eKWSNItd0KGmY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/0qeL4mmj0ajIO4c_7dfd7yqaCrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4acc15-bba0-4459-9667-de9b2f8f7e29/1/5hvX3R-KyLQZK6eKWSNItd0KGmY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.196.0/22
Signature Algorithm: sha256WithRSAEncryption
82:0f:df:87:61:70:20:5f:64:ac:2d:ea:24:d7:94:f4:cb:7b:
ad:73:37:6c:74:78:64:01:32:ba:2c:c3:6a:e9:41:10:51:33:
18:16:78:11:1c:b5:9f:a3:f0:2f:2b:cc:64:9f:2f:ec:e5:93:
d5:83:c8:8c:e6:d5:65:73:66:60:fc:bf:35:9d:7b:9a:2a:bb:
7f:fd:97:72:7f:fd:88:69:d8:52:63:85:d4:5a:73:b0:28:e6:
b5:d1:90:2c:74:3c:55:40:42:28:4e:00:3e:4d:ba:ba:f9:fe:
1d:ed:d2:3f:f9:19:a6:b6:27:c8:d2:53:42:9f:01:c9:1a:78:
8e:45:d4:75:e9:1f:68:32:0e:b7:5c:bd:46:71:4c:9f:c1:fa:
3d:51:16:a6:f8:96:0a:27:37:1c:74:ab:c0:00:b4:ad:bf:18:
69:96:53:74:a7:7b:b7:d9:d8:a3:a0:e6:40:62:e6:62:18:02:
e6:07:d4:b2:ad:94:68:88:43:55:c3:0d:bc:e1:91:0b:98:80:
86:1f:91:36:b4:60:29:ba:b1:3f:bb:95:b4:a2:be:37:7d:24:
5e:74:57:ba:88:97:c8:a9:63:7c:09:59:56:c1:24:c1:72:24:
8d:25:fc:8b:68:2e:e8:ec:d0:bb:a6:b1:21:96:f8:ec:39:cc:
7d:1c:76:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org