Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/psjYPBXHmhxJ-x3MOyCrSd47MGQ.roa
File: psjYPBXHmhxJ-x3MOyCrSd47MGQ.roa (raw, json)
Hash identifier: U+Eq1oR9vbFt5sxLnXeBgzXUxvR6BX2ASm8OUq89x8Y=
Subject key identifier: A6:C8:D8:3C:15:C7:9A:1C:49:FB:1D:CC:3B:20:AB:49:DE:3B:30:64
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0186990C3B36322FCD4A4A7056A5D31C96C5
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/psjYPBXHmhxJ-x3MOyCrSd47MGQ.roa
Signing time: Tue 28 Feb 2023 17:22:40 +0000
ROA not before: Tue 28 Feb 2023 17:22:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.81.218.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:99:0c:3b:36:32:2f:cd:4a:4a:70:56:a5:d3:1c:96:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Feb 28 17:22:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6c8d83c15c79a1c49fb1dcc3b20ab49de3b3064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:aa:30:bc:6f:06:06:44:ae:41:71:83:07:e8:
e6:cf:3a:a2:18:5e:f7:7b:50:fa:da:17:98:8e:2c:
e9:51:da:d1:0d:ec:f8:cc:93:76:46:c5:0d:9c:e7:
eb:5b:4b:9a:75:a9:d8:89:38:70:f9:4e:ed:00:62:
a2:b8:e0:ea:af:60:f3:be:a8:f8:c4:d7:f4:6e:25:
37:7d:1e:92:0e:25:a3:bc:61:48:83:e6:af:ca:33:
dd:fa:b2:b8:9f:b8:33:8e:35:ce:b0:1b:12:80:95:
13:c1:b1:a8:a2:6b:15:a8:8e:1d:a4:c0:6d:52:a3:
4c:f5:c6:e8:1f:26:6d:36:40:fa:9b:d5:e4:1e:39:
43:9b:2f:2d:f0:88:a4:11:5e:1c:94:69:e3:5e:1e:
fc:b0:29:84:af:36:6b:e9:9e:02:9d:b3:b0:07:39:
b4:a4:d9:10:09:71:e3:80:e4:be:24:05:ce:86:e7:
15:1b:8f:66:15:5d:8a:e5:9e:27:5e:73:0f:61:88:
e5:c2:8b:eb:3c:e7:96:a1:89:9f:93:3a:97:65:52:
57:55:04:c1:00:f8:49:29:e2:c6:ef:fb:33:dd:9a:
79:9c:50:fe:1e:a5:4d:dd:06:84:2e:31:62:5a:3e:
db:75:7a:98:0a:69:74:de:66:6f:30:f4:c2:c4:ad:
e2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C8:D8:3C:15:C7:9A:1C:49:FB:1D:CC:3B:20:AB:49:DE:3B:30:64
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/psjYPBXHmhxJ-x3MOyCrSd47MGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.218.0/24
Signature Algorithm: sha256WithRSAEncryption
da:48:51:05:66:ec:d1:66:3c:4b:b3:fe:9d:7a:c0:ba:28:0d:
d2:b3:d5:3d:e3:2c:4c:1e:6f:87:b5:05:29:50:f5:ac:e9:1d:
ef:0b:a8:e1:ed:d9:b2:48:f9:21:06:ba:ca:34:43:a2:48:b0:
c8:f6:8d:80:f4:fe:b8:dd:78:11:38:b9:b2:ec:b9:77:69:3f:
4a:c6:d5:33:ec:fc:77:ca:a7:0b:79:6e:36:e2:4e:32:7c:54:
34:0a:5f:2a:c9:70:5d:7d:eb:6e:2f:d4:6d:ad:4b:30:47:76:
ef:76:21:98:5d:da:9f:d1:98:65:c7:86:a0:57:05:b4:1e:b1:
3e:3b:82:65:94:9a:6b:3b:2b:61:f3:6b:bd:07:65:c8:61:91:
30:5c:14:5f:a6:b7:e2:bf:23:41:a1:42:97:8b:a7:e0:4c:ee:
a6:c7:9e:a8:ca:d0:75:77:46:f9:ed:9c:0b:a6:da:14:1d:c7:
4f:f9:8f:3d:1b:7b:b4:fb:35:ec:7c:24:62:cd:ab:49:61:cb:
0c:60:b7:f7:45:35:31:73:07:1d:70:7c:82:58:f1:98:5d:32:
1d:16:f2:3b:9e:88:97:e4:82:0a:c4:9c:db:07:ea:36:8d:62:
99:13:b6:a8:96:6b:2d:4c:df:ed:00:38:e4:a2:62:47:71:c6:
da:ed:81:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:51 2023 by rpki-client on console-ams.rpki-client.org