Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/rk-prKsQjTnkyMEOi5JftJ4maMk.roa
File: rk-prKsQjTnkyMEOi5JftJ4maMk.roa (raw, json)
Hash identifier: OzpVIrw9WiHE4vX4q7MuTWg6Tk9f9JsEChggTpv2xXs=
Subject key identifier: AE:4F:A9:AC:AB:10:8D:39:E4:C8:C1:0E:8B:92:5F:B4:9E:26:68:C9
Certificate issuer: /CN=079d9053717a16a76c10ae838f5625055be0481f
Certificate serial: 01856E0AF6BF69D940093872F766C9EFDA89
Authority key identifier: 07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/rk-prKsQjTnkyMEOi5JftJ4maMk.roa
Signing time: Sun 01 Jan 2023 15:54:50 +0000
ROA not before: Sun 01 Jan 2023 15:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9121
IP address blocks: 185.93.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:0a:f6:bf:69:d9:40:09:38:72:f7:66:c9:ef:da:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=079d9053717a16a76c10ae838f5625055be0481f
Validity
Not Before: Jan 1 15:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae4fa9acab108d39e4c8c10e8b925fb49e2668c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:88:d7:c7:0d:5f:79:67:24:14:be:7b:34:a0:
4d:63:3e:69:8f:9b:84:4b:df:6a:46:46:57:2c:c3:
fc:2c:92:ea:54:00:fc:92:31:fa:ca:9a:32:71:49:
1b:2d:c5:60:1f:ae:c4:d7:bf:fc:ae:11:ff:23:d7:
28:62:01:de:08:2b:c6:12:99:e3:b3:50:2b:1c:37:
d7:7f:1b:d2:d0:e1:97:0d:1d:7c:1d:4b:10:e2:a6:
3b:e3:5e:3b:ad:e6:42:c6:78:f2:79:38:93:dc:22:
1e:f9:4f:7e:2d:13:c7:0b:05:7b:28:b7:85:43:59:
bb:f1:92:e5:aa:9f:b4:8a:a1:82:66:17:69:c9:f2:
86:f1:0a:4a:71:d7:48:81:c2:19:e7:36:41:38:cd:
95:b3:a9:6b:23:35:d7:86:47:4e:9d:6c:30:df:4f:
ab:47:94:ce:7b:67:54:8b:55:36:18:3d:30:32:ce:
d2:13:08:e9:cb:a6:77:36:87:10:9e:c5:89:e5:da:
66:a8:83:c1:cd:04:90:91:31:36:40:91:ee:fc:b0:
eb:34:36:65:b6:8c:c8:6f:80:c4:81:d4:c7:b0:cb:
7f:fe:82:7d:3b:20:a0:08:d0:6a:15:b4:0d:e5:2a:
61:35:c7:a0:c4:b4:9f:e2:f4:bd:a7:57:31:e2:94:
c7:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:4F:A9:AC:AB:10:8D:39:E4:C8:C1:0E:8B:92:5F:B4:9E:26:68:C9
X509v3 Authority Key Identifier:
keyid:07:9D:90:53:71:7A:16:A7:6C:10:AE:83:8F:56:25:05:5B:E0:48:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B52QU3F6FqdsEK6Dj1YlBVvgSB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/rk-prKsQjTnkyMEOi5JftJ4maMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/68d16a-82e5-4f4a-8730-27d03e393fb7/1/B52QU3F6FqdsEK6Dj1YlBVvgSB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.93.249.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f8:be:81:86:51:32:56:80:08:37:50:76:92:56:42:9b:78:
c3:18:0b:46:7e:ee:7d:31:85:6c:3a:27:d7:0e:a5:38:d6:ad:
ef:d9:07:dc:2f:79:9f:eb:51:0e:39:a9:f2:9c:fd:4f:4b:d1:
70:51:40:cd:0d:9a:92:d1:13:9d:12:bf:ea:e3:84:24:0e:6c:
08:37:12:8d:3c:d9:a3:d0:d4:65:e6:3d:d5:7a:db:0b:2e:e3:
c6:f5:71:02:f9:e2:12:78:96:06:2b:d2:7f:a2:06:34:3e:5e:
38:88:20:a6:cf:59:c3:33:e2:d3:18:74:71:61:79:04:ce:24:
55:1a:f1:86:b8:f4:78:ee:e1:d4:58:4f:b6:71:5f:c7:9c:70:
a8:e6:15:c4:44:85:94:8d:1d:c1:4d:53:d5:64:d3:fe:9a:5c:
c8:a8:c9:17:f7:a6:28:6b:99:c9:bb:6f:d8:b6:9e:e7:3c:7d:
48:28:b3:40:df:6e:09:9a:6d:8a:ba:0f:6a:0c:01:5f:a4:cf:
f9:c6:c4:14:77:26:61:4f:99:ad:63:66:3e:3d:7b:54:51:78:
b4:ce:4e:55:e1:88:9b:30:20:c8:2e:eb:fb:9f:b2:5b:70:9f:
85:2c:91:20:03:f1:9f:9f:7b:8f:bc:b3:05:4b:f7:f2:e7:58:
a2:2b:80:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:19 2024 by rpki-client on console-fra.rpki-client.org