Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/1TWR7f-vK7Rnn-fSeuio4k8pJYE.roa
File: 1TWR7f-vK7Rnn-fSeuio4k8pJYE.roa (raw, json)
Hash identifier: PBL1hfovKg0xR792CJ17rRkBIxx6PWeqBQwmneh64b4=
Subject key identifier: D5:35:91:ED:FF:AF:2B:B4:67:9F:E7:D2:7A:E8:A8:E2:4F:29:25:81
Certificate issuer: /CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Certificate serial: 018894994426CBBFF0110E483454E4904CB1
Authority key identifier: 79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/1TWR7f-vK7Rnn-fSeuio4k8pJYE.roa
Signing time: Wed 07 Jun 2023 06:44:12 +0000
ROA not before: Wed 07 Jun 2023 06:44:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198456
IP address blocks: 185.17.86.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:94:99:44:26:cb:bf:f0:11:0e:48:34:54:e4:90:4c:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7979863cea82aeb8e9df384b39aa5176f4bcfa61
Validity
Not Before: Jun 7 06:44:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d53591edffaf2bb4679fe7d27ae8a8e24f292581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9a:4b:d6:02:d1:d5:58:9e:2e:67:1a:1a:58:
cd:0c:2d:d3:cd:41:0e:37:15:ca:ef:8e:fd:42:f5:
2b:3c:b9:98:4b:3e:73:32:83:3e:9e:70:91:23:0b:
64:dd:6d:1f:75:22:7c:b2:4b:00:59:76:15:f3:05:
c2:7e:88:63:32:38:dd:76:d7:f4:07:ac:24:19:eb:
61:90:d9:e9:5c:7b:8d:9d:37:0b:06:cf:84:4f:fd:
b3:26:52:0a:b0:a2:74:11:c3:7a:6a:b4:f7:9e:d7:
47:b8:26:08:dc:fe:71:d3:b0:1d:5c:a7:ad:14:74:
b8:00:3f:50:46:6a:c8:b9:a4:d8:94:11:e4:12:52:
82:96:2c:52:2c:17:8e:a9:b6:3e:ff:59:33:b6:f4:
40:05:12:1c:e2:03:c1:78:67:ab:71:5f:dd:27:58:
b3:42:3c:9f:53:2e:ee:79:4b:4d:92:66:3a:e3:54:
54:36:45:78:6a:9a:02:73:87:44:7d:2d:e6:56:e4:
a5:df:96:63:62:c4:a8:8c:83:47:59:c2:de:99:39:
6a:64:5a:61:54:92:3b:31:74:ac:39:ce:e5:b3:93:
70:dd:3e:d9:30:18:9e:53:ab:e2:b0:78:a0:5d:60:
8f:50:ef:81:fc:52:56:7b:01:41:88:c9:95:86:2e:
b9:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:35:91:ED:FF:AF:2B:B4:67:9F:E7:D2:7A:E8:A8:E2:4F:29:25:81
X509v3 Authority Key Identifier:
keyid:79:79:86:3C:EA:82:AE:B8:E9:DF:38:4B:39:AA:51:76:F4:BC:FA:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXmGPOqCrrjp3zhLOapRdvS8-mE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/1TWR7f-vK7Rnn-fSeuio4k8pJYE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/1ccf25-20de-4b2e-a0e1-de4acf447fae/1/eXmGPOqCrrjp3zhLOapRdvS8-mE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.17.86.0/24
Signature Algorithm: sha256WithRSAEncryption
63:e3:51:6e:a8:c2:f4:37:ef:04:e0:ee:c1:ff:11:e4:ea:e5:
e4:8d:2d:dc:05:0e:d0:d6:82:14:b4:cb:47:d5:d9:80:34:f1:
f4:d8:02:47:67:63:71:a4:f6:c8:14:81:fe:40:f8:2f:53:2e:
e0:71:30:42:cd:70:fe:d6:5c:39:6c:3b:d3:9f:5a:ac:f3:34:
2e:c8:30:06:af:a8:88:c4:68:ce:f6:cf:3b:a2:6e:a6:2f:b9:
e6:ab:eb:8f:d6:0d:a9:63:8d:7b:cd:2a:9b:84:a7:25:42:8a:
e4:e7:6c:09:65:fd:08:d2:b0:f4:ab:d8:0f:0a:8c:03:79:ef:
a7:87:15:f9:79:7f:3f:95:da:c5:0a:8d:7e:de:cb:70:0b:92:
56:6a:92:96:4f:1d:fa:71:ac:e2:ad:25:e8:01:82:ae:b8:b4:
69:77:78:84:5a:a6:42:38:7f:74:f8:0c:80:f4:57:88:37:e3:
45:77:45:fb:b8:d2:a7:73:f9:f1:f7:f0:8a:0d:a9:27:c4:cd:
f4:8d:35:14:8e:e5:82:db:75:3d:73:f8:df:a9:5a:68:51:f4:
b8:55:ae:ea:50:43:95:1c:fb:ef:fb:27:26:2e:7e:76:81:c8:
cf:c8:46:3d:e2:6b:7b:82:c9:3a:b8:60:94:39:51:fc:df:a3:
9d:3f:02:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:53:21 2024 by rpki-client on console-fra.rpki-client.org