Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/Sq84C1LcgJ_FB17Iy8REHDdD03U.roa
File: Sq84C1LcgJ_FB17Iy8REHDdD03U.roa (raw, json)
Hash identifier: gzYCAVNU2mtGAgUokQRgRPSSnaeaWvEcqRUoa6RUANw=
Subject key identifier: 4A:AF:38:0B:52:DC:80:9F:C5:07:5E:C8:CB:C4:44:1C:37:43:D3:75
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 0185714C308B1EF6BBA492BA47A13E2DF5C6
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/Sq84C1LcgJ_FB17Iy8REHDdD03U.roa
Signing time: Mon 02 Jan 2023 07:04:56 +0000
ROA not before: Mon 02 Jan 2023 07:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203375
IP address blocks: 185.136.224.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:4c:30:8b:1e:f6:bb:a4:92:ba:47:a1:3e:2d:f5:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Jan 2 07:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4aaf380b52dc809fc5075ec8cbc4441c3743d375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ee:ca:e0:00:67:c9:43:86:ca:c9:8b:2b:0c:
0a:84:df:c2:e9:36:43:74:0f:82:d7:b5:ac:3d:e5:
fb:02:36:1e:af:fa:49:38:b0:d9:c0:a1:55:a5:51:
44:28:b2:4d:50:1f:db:d5:52:bc:92:01:15:25:cb:
05:d8:cf:86:b3:63:da:d6:ed:00:e7:11:98:bd:04:
eb:de:af:34:c3:b4:f0:d8:ea:af:50:05:ef:d1:72:
a3:cd:b5:19:af:f0:a3:bf:30:68:06:37:22:02:00:
e5:05:8f:31:42:d8:87:9f:07:af:f5:fe:75:bb:1f:
6e:e8:61:86:29:9f:6e:f5:55:2d:91:c8:2f:71:5d:
b5:b5:df:32:44:c4:bc:16:d6:a4:88:db:72:d1:33:
67:be:c5:20:18:ce:d1:0d:4b:c6:38:cf:52:de:1c:
53:ca:4c:54:cc:b3:04:3f:18:ee:06:95:ea:30:a3:
d9:eb:2f:fd:87:6f:87:cf:f7:b7:ef:b4:9e:1b:38:
85:20:eb:63:61:1b:19:5f:af:59:e9:a6:61:9f:94:
9e:49:6d:2d:53:a6:e0:61:7d:52:3f:9f:a5:8e:95:
24:e7:4d:ec:c8:14:07:bb:5d:c3:f3:80:38:30:81:
00:50:18:d2:d5:ff:f0:30:7c:73:6c:85:1a:9d:f9:
a8:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:AF:38:0B:52:DC:80:9F:C5:07:5E:C8:CB:C4:44:1C:37:43:D3:75
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/Sq84C1LcgJ_FB17Iy8REHDdD03U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.136.224.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:12:02:b2:12:54:4c:b1:bd:05:80:23:af:53:39:4c:97:57:
c5:ca:53:55:88:4a:f7:a6:7a:41:1a:22:91:99:ba:2d:45:81:
2e:00:ce:d4:3f:a9:9c:cc:d6:70:5c:a5:9d:fc:31:ae:a7:40:
85:23:0b:35:51:ee:c2:af:17:d5:33:f2:5c:ce:24:1c:72:47:
ca:f7:92:d9:a1:93:34:1e:4d:cb:9f:9d:9d:c2:cd:b1:fc:ef:
ab:70:23:53:79:1e:f3:bb:af:6b:b5:cd:84:2f:24:f0:f5:6a:
fe:69:25:e6:99:90:59:36:73:4d:44:5d:d1:24:07:d9:ae:6d:
ab:8f:12:ca:34:19:b7:b6:d1:5f:19:a7:b4:49:98:bf:d5:ca:
1a:09:fa:a1:14:cc:d9:5c:42:4c:e3:75:0a:1a:88:00:7e:7a:
01:0f:62:cb:4a:93:02:32:90:cc:9a:8e:f1:a0:b4:fd:2b:50:
f4:21:60:37:54:0c:b1:d2:53:66:31:47:73:1c:e5:35:ad:b2:
60:4a:25:0e:9c:f8:09:91:be:58:bf:8e:bb:bb:bb:fd:d3:08:
ce:3f:ed:38:32:8c:fc:ec:65:af:71:e3:18:2b:1d:74:70:dc:
cc:97:40:4a:03:17:e0:56:7b:6e:93:25:23:6b:9a:7e:d4:62:
86:1f:57:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:25 2024 by rpki-client on console.sobornost.net