Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/RJmfx-5w8O6JxAJP5OU5VlscR5M.roa
File: RJmfx-5w8O6JxAJP5OU5VlscR5M.roa (raw, json)
Hash identifier: 580lpwKCnKoyMxeLfABaFA6yiJHyiN3cOg2cd5Ig18A=
Subject key identifier: 44:99:9F:C7:EE:70:F0:EE:89:C4:02:4F:E4:E5:39:56:5B:1C:47:93
Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02
Certificate serial: 018573839E14AF56843D6A7102EDAAB46DF4
Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/RJmfx-5w8O6JxAJP5OU5VlscR5M.roa
Signing time: Mon 02 Jan 2023 17:24:43 +0000
ROA not before: Mon 02 Jan 2023 17:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213338
IP address blocks: 185.167.183.0/24 maxlen: 24
2a0b:9c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:83:9e:14:af:56:84:3d:6a:71:02:ed:aa:b4:6d:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02
Validity
Not Before: Jan 2 17:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44999fc7ee70f0ee89c4024fe4e539565b1c4793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b7:41:57:0d:89:ba:ab:1f:29:b7:1c:41:3e:
38:35:e0:42:0b:e6:a9:dc:4b:a1:41:fc:10:7b:b5:
f0:72:bc:b0:70:98:83:8d:c4:9c:52:dc:29:a1:ae:
4c:e4:90:fd:05:98:ce:1e:ae:0d:0d:cd:3e:9b:0e:
36:bd:98:b8:9f:ff:79:bd:74:7a:c2:f6:4a:65:5e:
a1:37:cc:60:7e:a1:73:e1:6d:41:81:c5:27:f3:41:
f0:87:77:17:39:a4:2a:0e:d9:c0:8d:e4:a2:a1:d7:
84:eb:bb:6f:d5:7a:74:35:0d:86:7d:82:17:0e:c8:
21:80:e8:81:90:bb:9d:e4:49:d9:98:e2:91:d6:3a:
31:27:0d:ab:d4:b1:e5:2b:4a:28:34:b1:fa:f8:c6:
79:e4:34:61:03:fd:5f:df:f6:12:48:59:9f:0e:af:
ed:69:95:7d:1d:fb:b9:ae:90:0f:7d:17:04:0d:90:
fd:1f:8d:f4:11:5d:c3:96:92:e4:b6:a2:3b:28:a9:
17:38:a7:21:09:50:ec:e5:fe:94:b7:56:87:86:83:
8c:31:79:ed:ac:02:34:10:b3:0d:0c:32:60:32:6b:
8e:65:36:4b:f8:ec:d3:d7:1f:3a:e6:fe:06:f1:54:
be:76:4b:11:64:fe:e3:f7:2a:b4:be:13:4b:cd:cc:
5e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:99:9F:C7:EE:70:F0:EE:89:C4:02:4F:E4:E5:39:56:5B:1C:47:93
X509v3 Authority Key Identifier:
keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/RJmfx-5w8O6JxAJP5OU5VlscR5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.167.183.0/24
IPv6:
2a0b:9c0::/29
Signature Algorithm: sha256WithRSAEncryption
97:8d:a1:36:cf:83:d1:e1:ef:98:b7:6e:ea:0f:af:5c:ec:b6:
2d:06:e6:2d:91:35:73:e2:f9:92:30:e4:49:31:c7:93:74:d3:
e1:91:e4:dd:cf:dc:a6:52:99:5d:84:7e:75:15:a9:c6:3d:d8:
1a:73:ad:be:15:ac:da:21:e2:14:6e:e9:1d:8b:64:36:d5:ce:
d8:93:82:9f:17:68:74:f1:15:83:eb:05:37:32:28:a9:39:6b:
27:77:74:71:ab:75:a4:8d:48:fb:67:ad:3b:d4:4e:32:cd:eb:
c0:40:f2:00:5f:77:3e:08:82:4a:b2:a0:76:c5:38:88:2c:90:
a2:69:1d:dd:82:05:4d:26:2d:bd:7f:aa:26:ad:0a:f8:7a:9a:
c4:e8:e5:ca:59:5b:8d:06:c4:0c:6b:c2:64:b2:33:57:ab:dd:
fd:31:bf:33:9b:fe:6a:14:2e:62:87:bc:27:e7:98:6a:04:db:
c5:97:1c:5f:01:e7:4a:06:40:5d:ab:6c:21:f8:0b:70:8a:35:
59:53:9d:00:8f:d5:13:de:41:18:52:a6:45:1b:82:e6:49:a5:
3e:4f:c5:ff:6d:87:19:36:fe:0f:d8:61:61:01:b1:37:dc:e6:
39:07:81:f4:b9:ae:16:78:bb:89:8e:5a:37:19:41:f7:94:62:
e8:63:bc:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:13 2024 by rpki-client on console-fra.rpki-client.org