Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/aYAlirUdSzsNOBL4xAb0W65XKwE.roa
File: aYAlirUdSzsNOBL4xAb0W65XKwE.roa (raw, json)
Hash identifier: qnq8pau6cOghsOoCSntxa4VvUqfWTvRAxbay9t5yIBY=
Subject key identifier: 69:80:25:8A:B5:1D:4B:3B:0D:38:12:F8:C4:06:F4:5B:AE:57:2B:01
Certificate issuer: /CN=ed536c19a691c2f544220a9521474a8765e59cf1
Certificate serial: 018571030203E2F23CDBFE431B0C69C124A4
Authority key identifier: ED:53:6C:19:A6:91:C2:F5:44:22:0A:95:21:47:4A:87:65:E5:9C:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7VNsGaaRwvVEIgqVIUdKh2XlnPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/aYAlirUdSzsNOBL4xAb0W65XKwE.roa
Signing time: Mon 02 Jan 2023 05:45:00 +0000
ROA not before: Mon 02 Jan 2023 05:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13335
IP address blocks: 185.206.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:03:02:03:e2:f2:3c:db:fe:43:1b:0c:69:c1:24:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed536c19a691c2f544220a9521474a8765e59cf1
Validity
Not Before: Jan 2 05:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6980258ab51d4b3b0d3812f8c406f45bae572b01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:84:ae:77:d8:ec:0b:7a:37:ae:64:1a:79:6f:
64:06:c8:a0:19:95:94:c7:41:ca:33:4e:37:2a:af:
50:92:7c:73:b6:d9:fd:82:d1:cb:1c:19:a3:ca:3a:
7f:f7:e3:32:d7:8d:39:53:c9:d4:75:7d:ae:2e:99:
1d:5c:cf:6b:90:5e:9a:34:73:84:9b:52:88:08:42:
31:c3:a7:3b:8c:95:3a:0c:17:20:6d:fd:12:c4:c6:
9e:2d:1d:cb:56:81:2a:3d:48:c4:2e:cd:08:25:9e:
a8:89:e0:15:aa:0d:80:9f:69:74:d5:f4:e2:33:ad:
7b:46:0e:3a:8e:31:ea:5f:bd:f6:9a:ea:db:81:e8:
88:fa:92:22:b1:6b:eb:d8:ea:13:9c:52:ca:b9:81:
df:94:8d:f8:a7:dd:95:ec:5d:01:6a:72:fe:c2:26:
66:12:ee:da:2c:09:81:1d:8b:36:b0:9f:fc:39:72:
a7:78:dc:b1:0a:ed:93:2f:54:ef:00:97:b7:ad:43:
01:81:e9:36:4e:df:00:c8:fe:bc:fa:1b:37:74:5a:
f5:97:85:c1:23:2b:b6:53:7f:eb:5a:7a:32:f4:70:
f4:82:a7:a5:30:55:e8:3f:8e:c3:4c:39:2b:ec:00:
ee:59:30:95:87:72:17:7f:be:06:0a:0e:62:e2:6d:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:80:25:8A:B5:1D:4B:3B:0D:38:12:F8:C4:06:F4:5B:AE:57:2B:01
X509v3 Authority Key Identifier:
keyid:ED:53:6C:19:A6:91:C2:F5:44:22:0A:95:21:47:4A:87:65:E5:9C:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7VNsGaaRwvVEIgqVIUdKh2XlnPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/aYAlirUdSzsNOBL4xAb0W65XKwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/6e20ca-a1ef-4ae8-aef1-e4509fb9cf20/1/7VNsGaaRwvVEIgqVIUdKh2XlnPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.82.0/24
Signature Algorithm: sha256WithRSAEncryption
50:68:42:e5:c1:7f:d9:61:d3:d9:20:9e:4b:f8:29:56:ff:49:
9f:02:fa:86:67:0f:65:e7:59:aa:69:e5:d1:11:a3:c9:9f:31:
8c:fa:51:77:0b:50:01:db:dd:ed:1b:1a:f5:69:ed:c2:7d:e4:
3b:f0:eb:1e:dc:fa:f2:ec:ab:3c:63:83:2c:52:ce:38:71:cf:
a8:82:50:0f:89:86:32:eb:00:d5:d0:d4:8e:9f:d5:ea:8f:5d:
49:ee:dd:c1:5d:94:26:c2:57:e6:cc:ce:ae:db:59:93:49:57:
92:d7:65:30:a9:24:11:aa:9b:a3:fc:ec:c2:b9:64:36:d1:c4:
ef:ba:ae:04:ce:da:9d:e2:a6:05:44:00:d0:55:2c:43:55:07:
d6:1a:c2:37:6e:b1:00:62:f3:bc:27:ac:67:bc:30:be:12:8e:
c3:1b:41:3a:4f:1a:ba:51:c4:a7:b6:1e:53:ed:af:d7:77:7d:
0a:22:bb:b8:f0:d0:7b:90:e8:d7:50:b2:f3:14:3e:62:6e:cf:
43:b8:58:c8:58:28:a8:0b:0f:ba:92:e6:52:5d:38:07:a0:bf:
7b:8e:e6:33:94:88:88:81:f5:e6:62:64:32:10:e4:b7:cb:88:
f2:c8:3a:5f:55:9d:02:db:02:d3:6b:ee:86:53:54:14:16:35:
4c:ac:32:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:10 2024 by rpki-client on console-ams.rpki-client.org