Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/7c2e07-6cf2-4122-99f4-9c6bea4cd5b5/1/D7KVA_HoIVy0mBy9sItfdGdZRDM.roa
File: D7KVA_HoIVy0mBy9sItfdGdZRDM.roa (raw, json)
Hash identifier: luZLpW7eEWEjfcfTHZp20A/7FsKUJDgxEUft6KRxWJg=
Subject key identifier: 0F:B2:95:03:F1:E8:21:5C:B4:98:1C:BD:B0:8B:5F:74:67:59:44:33
Certificate issuer: /CN=07ac64191435789995bc5a67f5b51d9685002815
Certificate serial: 01856C6F32161C48B485CD745E4DEEA12E3A
Authority key identifier: 07:AC:64:19:14:35:78:99:95:BC:5A:67:F5:B5:1D:96:85:00:28:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B6xkGRQ1eJmVvFpn9bUdloUAKBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/7c2e07-6cf2-4122-99f4-9c6bea4cd5b5/1/D7KVA_HoIVy0mBy9sItfdGdZRDM.roa
Signing time: Sun 01 Jan 2023 08:25:04 +0000
ROA not before: Sun 01 Jan 2023 08:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34049
IP address blocks: 185.137.124.0/22 maxlen: 22
2a07:3c0::/29 maxlen: 29
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:6f:32:16:1c:48:b4:85:cd:74:5e:4d:ee:a1:2e:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ac64191435789995bc5a67f5b51d9685002815
Validity
Not Before: Jan 1 08:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fb29503f1e8215cb4981cbdb08b5f7467594433
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:be:46:b1:26:17:67:13:ac:2b:c2:d7:b5:69:
2c:d5:19:e3:0b:8d:c9:33:a6:68:ba:bc:38:d5:67:
87:10:d6:71:a0:bc:ef:26:00:91:d3:c8:e9:7d:58:
77:56:9a:3d:5d:ee:33:7d:e7:7a:88:f0:b6:c6:b8:
91:fe:e8:bc:04:0f:3d:30:0a:e6:63:80:f1:0e:fc:
f6:80:a8:b6:70:a0:3c:cf:5a:4c:6c:bd:2e:a1:2d:
dc:33:68:9e:64:06:e7:9c:33:87:b2:c6:a6:0f:aa:
e3:43:98:90:51:7a:0c:d1:15:a1:96:b7:a1:10:01:
2b:02:60:2f:56:25:fc:55:bb:ae:6d:36:01:20:c7:
be:b4:5c:02:d7:c5:f5:78:50:81:a4:5c:7e:6b:7a:
2c:81:33:84:96:35:3f:a4:a4:4c:ac:40:26:43:a9:
21:88:73:41:94:a8:b0:c5:be:5c:17:86:87:56:94:
3e:e3:d3:17:2a:16:b8:d5:c2:88:e3:6b:30:bc:73:
f3:06:b0:2e:72:93:74:c3:f2:20:16:91:98:be:35:
e4:92:3f:e2:a8:cc:28:5f:b7:38:d1:09:ed:87:14:
fb:f4:b4:95:51:07:1a:d4:66:0b:7c:11:42:ec:93:
ed:81:d7:94:62:bf:7d:44:68:37:ba:a7:88:19:23:
9b:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B2:95:03:F1:E8:21:5C:B4:98:1C:BD:B0:8B:5F:74:67:59:44:33
X509v3 Authority Key Identifier:
keyid:07:AC:64:19:14:35:78:99:95:BC:5A:67:F5:B5:1D:96:85:00:28:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B6xkGRQ1eJmVvFpn9bUdloUAKBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/7c2e07-6cf2-4122-99f4-9c6bea4cd5b5/1/D7KVA_HoIVy0mBy9sItfdGdZRDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/7c2e07-6cf2-4122-99f4-9c6bea4cd5b5/1/B6xkGRQ1eJmVvFpn9bUdloUAKBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.124.0/22
IPv6:
2a07:3c0::/29
Signature Algorithm: sha256WithRSAEncryption
0a:78:a3:c3:f2:5d:3d:3f:45:13:db:c8:c4:f3:0c:dc:a9:77:
a9:73:6d:2b:84:0e:60:53:95:40:65:f2:7a:48:03:37:dd:81:
aa:cd:82:3a:9b:6e:b1:f0:3f:0e:06:3c:c6:ce:19:4f:21:bc:
50:35:64:5f:47:b0:d7:46:de:66:01:f9:76:42:c1:0b:5f:d7:
f2:b5:69:ac:0e:28:90:54:4e:10:08:5f:ce:c2:a0:f2:72:bc:
5a:31:c2:12:e0:89:c7:d7:33:f0:ae:5b:35:d1:4a:07:ab:77:
a2:50:2a:f6:e6:8e:47:cd:61:86:7e:23:0e:8c:ea:7e:ce:3e:
d3:bf:5f:b7:8f:30:0b:06:ef:88:97:fc:63:5d:79:7c:ce:bc:
3e:1e:6d:ba:9e:3a:85:db:d8:48:79:cf:8e:bd:8a:eb:46:40:
98:3e:2e:cd:34:67:44:e6:d4:ce:40:c7:aa:44:0a:12:56:61:
ae:22:f4:22:53:88:f3:82:4b:3f:46:10:fb:0c:d1:39:d8:3c:
84:b3:7f:15:b9:e6:54:d7:66:ad:82:fe:16:95:d4:d6:ae:a7:
67:34:58:49:c6:8b:a0:0c:a1:df:cd:23:14:6e:81:c0:31:f0:
40:13:b1:41:cb:19:88:a0:7e:c4:64:19:57:4b:b0:ff:ac:50:
e7:9b:0f:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:53:10 2024 by rpki-client on console-fra.rpki-client.org