Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/6tJA-0T-xAq2UB3mKCn6GrttMxA.roa
File: 6tJA-0T-xAq2UB3mKCn6GrttMxA.roa (raw, json)
Hash identifier: dwpn8wZtRZbXZcU1WUf3Jj9arCAJRnqDZauAAIaylXQ=
Subject key identifier: EA:D2:40:FB:44:FE:C4:0A:B6:50:1D:E6:28:29:FA:1A:BB:6D:33:10
Certificate issuer: /CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Certificate serial: 018571FA1B473D82436D6BEAC0E2C910892D
Authority key identifier: 99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/6tJA-0T-xAq2UB3mKCn6GrttMxA.roa
Signing time: Mon 02 Jan 2023 10:14:54 +0000
ROA not before: Mon 02 Jan 2023 10:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43541
IP address blocks: 185.196.221.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:fa:1b:47:3d:82:43:6d:6b:ea:c0:e2:c9:10:89:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99ce569a14c2db3772f23187ce68e6541ec0048e
Validity
Not Before: Jan 2 10:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ead240fb44fec40ab6501de62829fa1abb6d3310
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c3:09:78:41:90:de:af:36:5a:a6:f8:d2:16:
28:2b:5f:7c:5f:dc:5b:c5:59:5b:1d:b6:12:cd:2c:
c5:f6:89:fa:f0:84:ac:5c:23:a3:f3:7e:67:26:1e:
b9:52:23:88:23:80:3f:1d:26:ba:b4:35:db:2f:73:
ce:cb:f8:80:d5:f2:37:c2:65:f1:3d:30:24:8f:52:
17:a6:45:33:a9:81:30:ba:f4:b2:de:a4:84:59:8d:
f7:2c:a2:9b:bc:55:1a:13:b8:d8:15:de:11:8b:74:
9a:8c:1c:b4:1f:c9:d5:db:5a:f7:68:dd:67:93:a5:
99:2d:aa:46:f2:3d:1b:7a:7f:c3:23:fe:82:94:6d:
31:03:1f:fd:d8:a1:e7:2e:61:a3:29:09:4b:c4:bc:
c5:68:32:b4:ca:65:06:a6:f4:8d:0a:40:bc:90:fe:
10:c1:e1:c9:0f:6b:85:f1:e2:ce:17:7e:46:e4:be:
3c:1e:b1:c7:30:75:b0:d3:27:a4:b7:49:1f:df:08:
84:03:f4:d1:aa:c3:96:87:73:0b:d7:e0:c1:b5:60:
25:cd:d3:60:aa:91:40:a3:48:2c:d2:3f:31:93:be:
74:1d:e7:21:03:bc:76:b4:9e:30:a2:82:5c:fd:76:
df:a1:82:80:14:f6:21:70:95:d7:7d:53:f7:5c:28:
b3:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:D2:40:FB:44:FE:C4:0A:B6:50:1D:E6:28:29:FA:1A:BB:6D:33:10
X509v3 Authority Key Identifier:
keyid:99:CE:56:9A:14:C2:DB:37:72:F2:31:87:CE:68:E6:54:1E:C0:04:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mc5WmhTC2zdy8jGHzmjmVB7ABI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/6tJA-0T-xAq2UB3mKCn6GrttMxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/cc6e99-6e5f-401b-912d-1095544c6c50/1/mc5WmhTC2zdy8jGHzmjmVB7ABI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.221.0/24
Signature Algorithm: sha256WithRSAEncryption
90:c4:f4:10:40:27:89:aa:26:9b:5d:64:1c:d4:f1:f5:78:b1:
58:4e:3a:5a:06:05:09:09:c2:ce:ba:39:88:e1:d6:2a:0b:5d:
64:f6:e8:0e:9d:60:da:3f:1b:5a:74:62:7a:2a:28:eb:46:3a:
8f:7c:0c:bd:dd:50:26:50:e9:44:c3:be:46:35:a1:94:80:39:
78:2f:54:7a:ff:ca:9d:a7:8a:3c:b1:33:3d:3a:08:5a:86:ac:
9f:5e:6c:4c:39:bb:ca:5b:71:01:b1:03:f7:b8:0a:bc:45:68:
b1:7d:4c:fb:6e:95:0e:70:3f:74:68:2a:e4:34:17:03:c7:e7:
35:c7:37:99:3d:2c:22:29:53:7c:71:84:85:86:8b:c0:13:1a:
60:02:75:10:a9:77:6d:0d:8d:58:bd:b5:ea:5e:6d:9a:c6:8a:
f5:50:7a:37:00:46:04:bb:53:c5:e8:31:3d:d0:72:94:70:47:
c7:96:bc:9c:97:64:f6:a9:bf:48:ac:41:2b:10:e7:81:66:ec:
3b:a9:1f:ee:87:be:2b:84:da:30:e4:83:99:7f:fb:f2:b3:90:
18:07:1d:e3:01:10:d8:c1:29:06:54:95:09:a5:87:cb:b8:87:
98:51:1e:b6:d1:84:83:8d:1b:b5:38:8b:37:56:f3:45:aa:bb:
ca:12:65:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 26 00:39:41 2023 by rpki-client on console-fra.rpki-client.org