Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/i2RLjmelRIzVtdDk_lDuu7RYjP4.roa
File: i2RLjmelRIzVtdDk_lDuu7RYjP4.roa (raw, json)
Hash identifier: h1GaQkTgIPmoCP3V53/eg0SJFshx3RDb7IeVHO6QDoU=
Subject key identifier: 8B:64:4B:8E:67:A5:44:8C:D5:B5:D0:E4:FE:50:EE:BB:B4:58:8C:FE
Certificate issuer: /CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Certificate serial: 018572BA865927CAE90BC8228D8BB0095A69
Authority key identifier: 7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/i2RLjmelRIzVtdDk_lDuu7RYjP4.roa
Signing time: Mon 02 Jan 2023 13:45:04 +0000
ROA not before: Mon 02 Jan 2023 13:45:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28721
IP address blocks: 194.149.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:86:59:27:ca:e9:0b:c8:22:8d:8b:b0:09:5a:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Validity
Not Before: Jan 2 13:45:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b644b8e67a5448cd5b5d0e4fe50eebbb4588cfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:67:c5:d6:6f:82:9c:c8:cd:3c:7e:35:44:62:
c3:46:9f:69:ef:6c:61:46:c7:34:38:df:6c:33:80:
40:60:bb:3f:0b:5c:a0:e4:29:87:cd:58:06:2c:79:
aa:cf:6c:35:2d:9e:bf:b3:3f:2c:27:14:1e:3a:ce:
63:99:08:21:7a:30:c6:5f:54:20:93:8c:9a:67:0d:
01:fb:d6:71:3c:65:6b:33:ad:d1:36:00:0b:c9:10:
bc:a4:44:90:d8:e0:5a:ce:53:b9:54:1e:fb:a0:3b:
7d:6b:da:9d:25:42:d5:38:91:b6:0c:12:47:f4:ae:
da:a2:16:19:29:f4:34:b1:77:bb:ac:34:aa:e6:94:
a3:02:65:04:5e:9a:ed:91:75:31:7a:11:79:30:a2:
d4:25:22:d3:35:04:c5:ad:1f:16:78:9c:e2:48:8a:
66:e9:a8:c1:77:e0:bb:7e:92:75:1e:8c:33:99:a5:
74:f4:5c:e5:10:7c:d3:33:e9:c4:3c:22:43:a0:e5:
8a:a7:d4:c8:be:16:8c:d5:6e:65:71:69:c3:c5:67:
85:fc:40:3a:51:7d:12:b2:6a:3f:23:8a:10:8a:82:
8e:e7:ef:d2:de:53:ce:2e:cb:50:62:fa:fc:87:29:
87:2c:bf:7a:01:3b:64:35:cc:04:6c:fb:18:09:77:
47:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:64:4B:8E:67:A5:44:8C:D5:B5:D0:E4:FE:50:EE:BB:B4:58:8C:FE
X509v3 Authority Key Identifier:
keyid:7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/i2RLjmelRIzVtdDk_lDuu7RYjP4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.149.245.0/24
Signature Algorithm: sha256WithRSAEncryption
64:b9:1a:62:0d:bf:fe:58:c5:db:22:2e:80:00:4a:15:40:0c:
49:c4:55:e4:a9:14:9b:c6:59:b2:5d:b6:90:1a:fb:dc:f4:11:
6d:72:6a:6e:91:c7:aa:43:12:c4:18:c4:e0:b4:a6:f1:79:9a:
85:e0:95:16:e7:bf:bc:74:9d:e9:b6:f7:3d:ba:43:b5:af:ae:
aa:0f:ae:0c:b1:72:50:c9:22:85:d8:ce:e9:80:ec:e3:dd:39:
d4:c7:71:3b:a7:4b:eb:0f:40:ac:5a:ad:a2:5a:bd:79:b4:ca:
54:60:24:f8:be:00:79:98:e1:23:ff:b1:1f:ee:47:07:63:d8:
93:53:40:91:17:48:e7:37:97:c5:37:21:9e:b8:57:0a:95:f6:
9d:d5:b6:09:d6:84:0b:7d:3d:b4:a9:64:12:95:62:fb:dc:e3:
15:b0:10:86:44:c6:1a:9f:2b:a7:fd:28:e4:89:5d:80:7b:7c:
53:8a:49:f2:a1:d7:0a:b1:ad:2b:d5:60:50:42:82:4b:2a:db:
9b:32:5f:d3:f1:29:22:3c:de:34:f0:11:1e:3d:0a:f4:60:89:
1e:70:0d:66:dd:b9:0c:39:ad:e6:1a:08:af:9b:50:aa:a2:09:
1d:c0:53:cb:a0:6c:66:bb:9b:0d:a3:46:9d:34:3d:95:3d:8d:
d8:a0:05:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net