Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/7KdPfqVurJOVSaLkWXWzq4mZ7Os.roa
File: 7KdPfqVurJOVSaLkWXWzq4mZ7Os.roa (raw, json)
Hash identifier: CnhNzliMzR9DjKY7bB4cIzxuolcrDSTEIuqKcSnIIzw=
Subject key identifier: EC:A7:4F:7E:A5:6E:AC:93:95:49:A2:E4:59:75:B3:AB:89:99:EC:EB
Certificate issuer: /CN=1b0bb51a7b532be4d44ba604ae6e063f063f37d4
Certificate serial: 01856CE60C2D9C7A13A28EBD9A41865545AB
Authority key identifier: 1B:0B:B5:1A:7B:53:2B:E4:D4:4B:A6:04:AE:6E:06:3F:06:3F:37:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/7KdPfqVurJOVSaLkWXWzq4mZ7Os.roa
Signing time: Sun 01 Jan 2023 10:34:53 +0000
ROA not before: Sun 01 Jan 2023 10:34:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206429
IP address blocks: 185.186.196.0/22 maxlen: 22
2a0b:8580::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:0c:2d:9c:7a:13:a2:8e:bd:9a:41:86:55:45:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0bb51a7b532be4d44ba604ae6e063f063f37d4
Validity
Not Before: Jan 1 10:34:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eca74f7ea56eac939549a2e45975b3ab8999eceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:bb:09:25:ed:47:a4:49:44:1a:ef:0b:dc:8f:
98:cb:68:cf:95:51:e4:a2:46:2d:44:23:d1:21:df:
0c:5e:4f:c3:0b:e3:74:c4:eb:d5:ae:1d:6f:21:6a:
ad:74:0a:bd:9c:2e:68:49:e5:72:60:2c:55:07:30:
13:bc:84:43:ca:07:6e:f9:e5:68:53:2f:ec:f9:33:
71:71:8d:c1:16:89:d9:a1:69:97:af:7f:98:47:ad:
04:3e:d4:42:7d:25:06:71:ff:5e:cc:08:b3:92:c4:
ce:78:40:70:e9:e0:84:47:02:0e:d0:1b:30:e7:da:
a6:73:8b:7b:9f:c7:d3:6c:d9:52:5d:8b:34:86:1d:
1b:6d:4e:10:8a:f1:10:34:fc:f1:57:27:b6:62:68:
0c:a3:16:3f:4d:7e:c6:e1:ce:68:d6:f6:f9:4d:4e:
2d:9a:52:14:be:eb:1e:a5:76:24:53:a5:05:d7:8e:
cb:b6:15:86:49:ad:ae:b5:f7:ee:c7:f6:35:63:5b:
03:ff:52:56:20:76:53:a2:5b:3e:62:b0:cf:73:d8:
75:be:29:df:92:19:74:44:18:9b:51:01:a8:18:b7:
1b:67:26:98:84:be:93:f3:46:62:21:23:ba:e0:6d:
1b:88:d6:db:c8:bc:ff:6c:eb:99:7d:88:aa:1d:2b:
6c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:A7:4F:7E:A5:6E:AC:93:95:49:A2:E4:59:75:B3:AB:89:99:EC:EB
X509v3 Authority Key Identifier:
keyid:1B:0B:B5:1A:7B:53:2B:E4:D4:4B:A6:04:AE:6E:06:3F:06:3F:37:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gwu1GntTK-TUS6YErm4GPwY_N9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/7KdPfqVurJOVSaLkWXWzq4mZ7Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/5e6a8f-0b79-4894-b91c-eecee893c527/1/Gwu1GntTK-TUS6YErm4GPwY_N9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.186.196.0/22
IPv6:
2a0b:8580::/29
Signature Algorithm: sha256WithRSAEncryption
0d:3a:61:00:bf:f8:15:17:c9:1b:8d:50:9e:f6:f6:9e:eb:47:
45:e9:c3:81:2c:b3:28:01:0c:c3:72:8f:c0:1c:14:a7:f8:1a:
1b:7f:4b:e3:33:fe:f9:e3:8f:19:6d:67:5f:20:bf:0c:35:4f:
f1:ab:89:2e:6f:fe:cf:d7:30:b5:b3:52:8e:72:25:04:07:32:
d6:54:04:9c:d9:a9:98:18:1a:bc:a3:9b:b5:af:48:6b:3a:43:
bc:e6:70:d3:8b:71:25:c2:27:4c:04:41:4e:60:3f:f2:50:69:
8f:53:29:a2:fb:3f:81:00:26:ad:56:54:d3:fb:23:3a:5b:2d:
e3:af:a9:f0:93:34:3e:de:0d:a2:78:e5:0f:8b:76:5f:77:16:
ad:ef:57:e2:e5:a9:78:65:f1:08:9c:33:1a:a0:b5:79:8f:47:
9c:d5:bc:ba:37:61:93:ee:4e:1c:ef:79:43:c3:5e:7d:59:ff:
52:11:9f:a1:86:7a:0d:cb:48:74:a8:76:90:03:b9:bf:5f:d6:
4c:01:40:3f:1c:81:cd:ce:2f:58:b3:ab:7c:9a:b2:e8:4c:88:
dd:c2:1b:84:d6:5f:3f:61:4d:9b:97:16:51:ec:8d:b4:25:de:
94:83:26:6a:40:10:46:e2:2a:e7:e8:15:0f:42:fa:e6:76:7c:
27:67:0e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Sep 7 10:52:02 2023 by rpki-client on console-fra.rpki-client.org