Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/SHFcOQhXZjzJcFCYLeA-ra9JTqI.roa
File: SHFcOQhXZjzJcFCYLeA-ra9JTqI.roa (raw, json)
Hash identifier: +BC5okLQuM7cArkYSmFM9FleDkAZ4D2x2g7frS/6wN8=
Subject key identifier: 48:71:5C:39:08:57:66:3C:C9:70:50:98:2D:E0:3E:AD:AF:49:4E:A2
Certificate issuer: /CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Certificate serial: 0186B87B19CAD8E603F953842962F63D78C0
Authority key identifier: 7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/SHFcOQhXZjzJcFCYLeA-ra9JTqI.roa
Signing time: Mon 06 Mar 2023 19:52:00 +0000
ROA not before: Mon 06 Mar 2023 19:52:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41219
IP address blocks: 185.88.128.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:7b:19:ca:d8:e6:03:f9:53:84:29:62:f6:3d:78:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Validity
Not Before: Mar 6 19:52:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48715c390857663cc97050982de03eadaf494ea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c9:c0:a4:6d:57:99:06:f2:93:d7:5a:7e:c1:
72:fb:85:80:5f:a1:46:11:08:c1:11:a7:01:e0:7b:
0c:47:2d:c8:a9:1e:af:0d:e1:eb:7f:96:dc:c6:aa:
03:48:6e:4f:f6:a8:02:6a:d5:64:bc:20:f7:d4:7c:
79:40:20:ed:13:91:24:eb:53:7e:42:55:e6:e9:7a:
fb:1f:af:57:0b:82:b9:a3:e2:e9:ff:85:04:f4:be:
01:b4:81:19:02:cf:f2:87:42:3b:14:c3:8b:dd:32:
e8:2d:81:fe:b9:17:67:15:ac:a2:57:c6:ef:80:4d:
c5:1b:39:3b:a1:0e:27:1c:f2:e9:16:49:73:d7:0f:
91:97:f9:77:aa:64:b5:72:af:ff:98:63:4f:ac:ec:
1b:b4:d2:29:c8:7d:3b:57:e2:1c:4b:40:41:17:6e:
f4:92:60:a9:6a:9a:a3:1d:cd:08:0c:4d:49:76:65:
0a:8a:cf:65:d0:93:5d:f6:9e:97:57:5b:aa:b0:37:
71:25:fb:cd:31:90:d1:62:7b:0b:c0:72:73:d5:92:
c8:a2:08:34:b4:76:2e:8e:3f:c6:b3:d9:d0:90:eb:
30:89:ac:34:af:93:5e:56:2a:f6:78:86:82:c6:5e:
b1:1e:c6:fb:46:44:c0:9a:f2:47:8b:a2:83:5d:36:
25:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:71:5C:39:08:57:66:3C:C9:70:50:98:2D:E0:3E:AD:AF:49:4E:A2
X509v3 Authority Key Identifier:
keyid:7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/SHFcOQhXZjzJcFCYLeA-ra9JTqI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.88.128.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:97:3a:46:9f:bd:3c:9e:50:54:51:a6:dc:c1:34:42:47:24:
4a:08:a6:2e:6d:e8:ba:f5:7a:a7:c4:5e:42:82:03:51:63:8c:
e8:35:1b:b8:12:d6:33:93:59:45:7b:c4:c5:7b:60:05:d6:88:
9e:f0:56:ae:7e:56:c2:a3:e6:4e:05:65:01:82:44:da:c2:8b:
fc:30:97:d0:fa:76:79:b3:53:68:18:15:79:ae:58:c3:d6:36:
08:fa:aa:42:18:8e:ae:64:5e:26:78:04:af:f3:ab:e8:5e:20:
ca:bc:a5:db:b5:38:77:35:30:69:2d:8f:87:85:7e:d3:d6:dd:
17:34:55:df:d0:3a:0d:c6:14:ed:fa:7a:08:ce:fe:98:bd:97:
33:a4:9a:2f:ef:c9:b2:9a:c2:42:8f:47:ca:21:07:d4:86:b3:
f4:83:3f:b0:a2:d9:e4:a9:73:1e:bd:89:98:af:b9:8a:a9:58:
66:11:25:ce:9e:65:b3:a1:8e:e7:4e:de:68:76:3c:54:bc:f4:
28:63:bf:ce:26:cd:f4:58:53:6f:e2:38:a4:6e:3d:e1:fc:1f:
dd:2a:51:ec:1d:de:fd:13:08:ab:fe:81:ab:8d:62:2a:51:d3:
53:2a:8e:cc:45:46:be:e3:d3:e5:22:49:2c:44:b0:a2:1d:5d:
00:9e:41:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:35 2024 by rpki-client on console.sobornost.net