Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/6haRDw8YnVfrZz4lnH7POTXskUI.roa
File: 6haRDw8YnVfrZz4lnH7POTXskUI.roa (raw, json)
Hash identifier: JbOjDgjfAF8WiR6sKXwga4qQyfSFoSL9CR3wIL70aF4=
Subject key identifier: EA:16:91:0F:0F:18:9D:57:EB:67:3E:25:9C:7E:CF:39:35:EC:91:42
Certificate issuer: /CN=0e28e373b096398145452af627210ae1e36a7882
Certificate serial: 01856FCB95DE1AE04C7BD0C50A7B9D835612
Authority key identifier: 0E:28:E3:73:B0:96:39:81:45:45:2A:F6:27:21:0A:E1:E3:6A:78:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dijjc7CWOYFFRSr2JyEK4eNqeII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/6haRDw8YnVfrZz4lnH7POTXskUI.roa
Signing time: Mon 02 Jan 2023 00:04:51 +0000
ROA not before: Mon 02 Jan 2023 00:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50790
IP address blocks: 185.21.49.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:95:de:1a:e0:4c:7b:d0:c5:0a:7b:9d:83:56:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e28e373b096398145452af627210ae1e36a7882
Validity
Not Before: Jan 2 00:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea16910f0f189d57eb673e259c7ecf3935ec9142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0b:96:83:5c:62:77:25:11:7f:76:af:4c:9f:
c7:ef:99:9f:00:c6:04:c9:d0:fc:5b:6e:60:95:79:
44:0e:f0:0e:d1:47:60:ec:7f:f9:9b:f6:1e:86:6c:
51:4a:9b:ae:fe:7e:6c:e5:2b:12:23:89:3e:b5:70:
a2:78:e5:7e:3f:a9:f3:97:58:8b:ac:61:68:d3:52:
42:63:5e:a2:a3:db:b2:23:78:e0:18:20:5b:c4:83:
b7:40:d5:7a:52:9b:78:87:6f:19:ac:e1:ee:1f:59:
df:14:4a:bd:b8:55:fb:c7:2a:50:ba:80:68:fe:40:
c3:e9:9d:a8:44:f9:4f:15:4e:5d:18:23:c3:66:6b:
e2:e4:8d:b4:45:31:60:d6:cb:f6:43:e5:21:d4:4f:
00:1b:e7:72:6a:2d:d7:24:18:52:81:83:4b:29:db:
d3:96:30:e4:9c:89:b8:d1:73:ce:ca:93:cf:1d:a3:
85:0b:8f:57:ce:68:a1:c7:c7:e4:cc:79:48:66:66:
ab:ce:92:6b:ed:1a:57:40:ad:97:cf:df:45:0b:61:
e9:78:39:2e:28:02:33:99:26:3b:52:5b:ec:4e:a5:
cc:25:80:c7:6c:3c:d7:a8:70:34:db:04:97:2b:55:
b8:0f:42:3c:71:c0:5d:e6:31:f3:84:95:27:44:b9:
c5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:16:91:0F:0F:18:9D:57:EB:67:3E:25:9C:7E:CF:39:35:EC:91:42
X509v3 Authority Key Identifier:
keyid:0E:28:E3:73:B0:96:39:81:45:45:2A:F6:27:21:0A:E1:E3:6A:78:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dijjc7CWOYFFRSr2JyEK4eNqeII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/6haRDw8YnVfrZz4lnH7POTXskUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6ac66d-e5ed-4761-b728-9409d67a8579/1/Dijjc7CWOYFFRSr2JyEK4eNqeII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.49.0/24
Signature Algorithm: sha256WithRSAEncryption
19:83:2d:99:ac:f3:9e:f2:76:da:1b:a9:00:9e:7d:11:65:d1:
c8:9a:69:3c:89:44:b4:19:3c:4d:83:5f:e0:fc:11:56:bb:23:
6c:a2:60:13:ef:fd:d5:5f:d8:d5:18:14:8a:00:b1:9c:d9:38:
4b:39:ef:b6:c6:a9:21:bb:b8:c9:85:fc:3f:98:e8:9d:51:5b:
22:5d:b9:02:a8:b2:19:19:c4:c4:f6:21:82:8c:43:c1:d3:1d:
fd:af:0f:41:10:33:ae:f2:d1:ed:56:af:2b:5d:ce:5f:f9:12:
a8:2d:26:04:41:11:3c:ab:ec:3f:c5:ba:b2:a6:f0:45:5d:df:
b8:4e:40:dd:63:18:a6:0a:24:6f:da:10:16:23:c3:70:4a:1d:
08:4c:d3:9e:9e:03:67:ec:79:b8:2f:ce:12:30:5c:65:ae:eb:
dc:e3:d5:11:83:04:1a:4d:34:9c:4e:15:9f:65:0e:63:d4:39:
1e:d5:11:9f:11:61:6b:d7:63:19:cc:34:64:84:56:d2:4b:75:
79:da:e3:50:b6:a8:21:0e:4e:e1:77:b2:cd:11:a0:e8:f3:ec:
7f:d3:b0:e4:e0:e7:b8:6f:a9:25:69:ad:6b:5f:7f:be:ec:4b:
01:08:58:01:49:4c:50:e6:99:15:07:ba:94:1d:e3:0b:1d:33:
28:7b:3f:b7
-----BEGIN CERTIFICATE-----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Generated at Mon Nov 27 16:32:16 2023 by rpki-client on console-fra.rpki-client.org