Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/C8Y9BmdGtMDdxsygCCKnpUwnw68.roa
File: C8Y9BmdGtMDdxsygCCKnpUwnw68.roa (raw, json)
Hash identifier: NyVxge60jbB4Ez5SqU4U/IIHFrFy/6N7/pYiKKLz7Js=
Subject key identifier: 0B:C6:3D:06:67:46:B4:C0:DD:C6:CC:A0:08:22:A7:A5:4C:27:C3:AF
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 018789DC307708ACBE0B8005D05FB2C21DAA
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/C8Y9BmdGtMDdxsygCCKnpUwnw68.roa
Signing time: Sun 16 Apr 2023 11:38:41 +0000
ROA not before: Sun 16 Apr 2023 11:38:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 185.127.166.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:89:dc:30:77:08:ac:be:0b:80:05:d0:5f:b2:c2:1d:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: Apr 16 11:38:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0bc63d066746b4c0ddc6cca00822a7a54c27c3af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:77:2d:b7:de:71:ef:30:df:05:1d:42:d0:e5:
20:06:95:95:e3:0b:2e:72:39:73:58:6e:0f:5d:67:
b6:69:42:09:fd:63:45:3c:25:ab:d3:6a:d9:0a:6b:
00:5f:77:ed:76:b3:73:3d:37:b9:09:af:3c:aa:49:
a8:b3:1f:47:8b:5d:f5:c3:89:9e:b7:f5:f7:3f:da:
9b:86:07:d1:7d:f5:bb:f2:41:85:47:25:95:e2:4f:
15:42:71:9e:8b:5f:38:58:58:16:80:e6:cf:a3:f4:
61:ae:df:a4:54:bb:73:09:67:62:ad:0b:27:0c:68:
0c:78:2b:2a:e2:aa:03:3d:b6:3a:a5:d6:34:26:5a:
c8:68:f3:cf:4c:e6:2d:15:fd:38:2c:2e:c9:79:2d:
76:4e:32:2d:83:32:ca:9e:22:a7:5f:83:bd:5a:a6:
bd:31:03:fb:0c:5c:29:6e:e0:42:3f:38:e1:95:a8:
90:82:03:43:8d:e0:43:bc:3d:b5:3b:6a:55:3d:10:
cd:c5:f1:6b:a4:93:87:de:92:48:55:f4:e5:d5:ed:
e8:d0:c7:8e:b6:09:49:4a:9c:9a:42:c4:b7:e6:63:
08:35:32:0a:d7:f0:b0:63:55:1e:ae:c1:50:1d:1f:
b7:cd:7e:11:9b:da:d1:0f:69:e4:42:62:de:d8:05:
bb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:C6:3D:06:67:46:B4:C0:DD:C6:CC:A0:08:22:A7:A5:4C:27:C3:AF
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/C8Y9BmdGtMDdxsygCCKnpUwnw68.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.166.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:6f:e5:f4:d3:39:2b:de:a6:3b:1f:ab:4b:f6:b4:33:b8:ce:
d7:8c:8d:7a:fe:ae:cc:7a:22:08:9f:b4:6c:44:f0:95:18:9b:
d8:e9:8e:03:d4:29:18:84:0b:6a:03:90:3f:1d:20:fd:ff:ea:
48:29:a5:8b:68:1e:74:35:f9:6a:d7:18:0b:51:20:45:68:b2:
78:0c:d6:a0:e7:4e:e4:db:41:6e:22:d3:dd:5b:fa:3d:91:11:
e7:0c:de:83:24:92:b6:99:bc:31:b6:ab:6b:e3:74:24:b2:2f:
d2:53:ca:1c:10:73:34:aa:8e:ca:e2:ce:ba:70:a9:8c:0d:8b:
94:7d:c0:1a:b1:71:58:04:43:2a:ac:12:9b:36:1a:82:0c:e0:
ed:d3:8d:97:1f:68:48:25:eb:11:6d:f7:7f:9a:62:3d:0d:59:
d2:71:f2:db:0b:92:aa:75:9f:20:7b:de:a4:08:89:ab:89:5c:
fc:b8:84:37:ad:20:60:51:a2:be:2b:96:34:6a:69:cb:57:51:
ee:e2:bf:24:00:8e:78:6a:af:bf:25:e9:5a:75:1a:e3:0c:0b:
50:d1:f6:d1:3b:11:95:40:41:74:28:b6:a0:55:c6:ab:61:b8:
41:98:e2:7a:e0:1a:b6:63:4a:49:ce:4c:62:1d:b0:bd:96:94:
68:f2:47:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 7 23:05:19 2023 by rpki-client on console-fra.rpki-client.org