Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/vl2qw5tzkY5GYgo0BdyI_Ne2jHQ.roa
File: vl2qw5tzkY5GYgo0BdyI_Ne2jHQ.roa (raw, json)
Hash identifier: eALlEEsXnh28zaC3xfW+lu0reK9iqg6X9lxN6nGX1JQ=
Subject key identifier: BE:5D:AA:C3:9B:73:91:8E:46:62:0A:34:05:DC:88:FC:D7:B6:8C:74
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 01856B6EB15AB74D48745AF2A5C3405D97F0
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/vl2qw5tzkY5GYgo0BdyI_Ne2jHQ.roa
Signing time: Sun 01 Jan 2023 03:44:54 +0000
ROA not before: Sun 01 Jan 2023 03:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.127.164.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:b1:5a:b7:4d:48:74:5a:f2:a5:c3:40:5d:97:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: Jan 1 03:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=be5daac39b73918e46620a3405dc88fcd7b68c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4b:9f:4a:58:0b:5d:60:19:0d:81:b3:68:3e:
fe:c7:56:60:01:83:a9:67:91:66:51:94:00:18:b8:
1d:b2:59:4e:4d:41:5c:90:d2:97:98:f2:65:6b:05:
03:7c:8c:16:02:f5:11:4d:0b:bc:24:6f:79:39:33:
16:5f:a5:86:e3:f0:5b:7b:88:0b:77:c1:99:2a:23:
1a:3e:57:41:36:ff:2f:39:d8:fe:0a:69:f2:5e:1a:
50:35:f8:80:2c:53:46:f2:e0:ef:54:1b:72:d5:7d:
6d:b3:46:3a:9b:d2:7f:ee:ae:a2:aa:fe:90:db:3c:
1a:71:a8:b9:27:bf:66:74:12:c1:2e:11:f2:65:a3:
d7:2a:57:d6:32:1a:0f:76:3a:70:7b:6f:b6:c2:25:
ce:5f:bd:75:89:e7:c3:27:0a:9f:d4:66:67:45:26:
5e:e1:e5:f2:7d:7c:c0:c2:d9:fe:eb:e2:66:93:da:
07:30:d1:3b:5d:c4:a0:78:38:5e:d0:61:b8:d7:82:
14:e3:11:47:a2:c9:76:0a:b6:d4:5d:d3:09:25:00:
35:1a:6e:c1:43:3b:bb:46:bf:11:3e:7f:87:07:8b:
3e:c7:76:c0:d4:43:da:3d:1e:cb:0e:96:f6:61:9c:
3a:18:44:4e:99:11:f9:df:22:57:eb:ee:0b:84:41:
03:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5D:AA:C3:9B:73:91:8E:46:62:0A:34:05:DC:88:FC:D7:B6:8C:74
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/vl2qw5tzkY5GYgo0BdyI_Ne2jHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.164.0/23
Signature Algorithm: sha256WithRSAEncryption
99:90:c6:87:9e:b7:e8:f9:23:3e:cb:f0:cd:aa:23:3d:81:82:
78:b6:24:fd:24:06:cc:1d:4a:d7:5d:18:06:13:d7:e2:6d:b8:
59:68:15:2b:13:c1:31:8b:38:89:7e:31:63:19:78:66:10:23:
31:6b:8a:d3:37:ac:25:04:11:85:39:16:c7:67:da:b1:55:cf:
32:6d:17:0f:60:59:92:08:50:bc:93:6b:86:78:c1:94:57:2e:
0b:09:81:a9:c5:bb:af:1d:f4:58:af:ad:98:fc:71:78:13:cd:
09:27:1b:2c:9e:ae:bc:50:dd:ba:4d:3c:60:0e:16:16:fd:cb:
12:bf:8f:dc:70:c6:20:49:37:b4:1a:3e:30:95:43:d6:e6:9c:
7d:0c:6c:2d:04:de:0b:a3:be:c9:fd:7b:a6:4c:41:ce:eb:fa:
16:53:f4:32:86:16:05:30:e9:3d:73:da:59:f7:29:1c:c4:f7:
f7:fa:03:a8:6d:41:4c:4a:d8:d1:d5:3e:ba:5a:2c:13:95:1a:
ef:27:4a:68:c1:93:b5:97:9b:d6:97:c7:13:57:ee:61:4c:5f:
4a:a4:81:99:9c:b3:6c:f5:ca:dd:9d:20:34:3b:52:58:a0:d1:
e6:2f:bd:31:25:b6:cc:3a:81:16:89:58:7c:bb:99:99:71:e9:
d0:f1:61:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:23 2023 by rpki-client on console-ams.rpki-client.org