Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/3EXE_p4cjfKJ4SJe73bqkTG2t2A.roa
File: 3EXE_p4cjfKJ4SJe73bqkTG2t2A.roa (raw, json)
Hash identifier: pla0VIuDLSBG6jY83kpb9X54uQBWB/j6GGWTFu86BhA=
Subject key identifier: DC:45:C4:FE:9E:1C:8D:F2:89:E1:22:5E:EF:76:EA:91:31:B6:B7:60
Certificate issuer: /CN=adb9b628fd33093fa2ac0890ee1ce555cba82671
Certificate serial: 01856FA6EEDBA1444D3C1A59DAED90B97FF7
Authority key identifier: AD:B9:B6:28:FD:33:09:3F:A2:AC:08:90:EE:1C:E5:55:CB:A8:26:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rbm2KP0zCT-irAiQ7hzlVcuoJnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/3EXE_p4cjfKJ4SJe73bqkTG2t2A.roa
Signing time: Sun 01 Jan 2023 23:24:49 +0000
ROA not before: Sun 01 Jan 2023 23:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201814
IP address blocks: 185.225.191.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:ee:db:a1:44:4d:3c:1a:59:da:ed:90:b9:7f:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adb9b628fd33093fa2ac0890ee1ce555cba82671
Validity
Not Before: Jan 1 23:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc45c4fe9e1c8df289e1225eef76ea9131b6b760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1d:ce:41:a5:fa:9e:fe:e0:58:61:56:b2:25:
5b:2d:71:27:a3:95:62:fd:eb:c4:e3:48:46:fe:1b:
7b:8b:0e:64:61:e7:e1:ef:c7:a2:97:0f:05:90:13:
42:e1:5c:7a:ab:5e:07:a9:94:2a:c6:c8:7a:73:d4:
dc:f0:64:fc:a1:9d:c8:c5:8e:c1:00:b4:00:00:56:
d0:d0:68:ab:d6:95:19:95:85:c5:0d:f9:70:ce:a3:
2c:1a:7d:5f:ff:8c:c9:99:1c:11:ac:a4:03:4c:74:
40:00:ac:1a:d8:5e:74:6c:a3:39:57:32:42:23:a7:
4a:32:06:de:ad:0d:2c:50:76:5b:3c:d1:a7:cc:7c:
c3:d1:27:14:0a:f1:62:54:66:dd:ae:98:15:ac:d3:
1c:bc:5b:9f:f5:4f:f9:af:dc:21:f6:f8:83:01:4f:
6c:19:62:3a:dc:35:81:f3:91:c4:60:5f:32:cf:27:
0a:3e:a4:e4:50:32:5c:d6:07:bd:d1:e0:ff:87:df:
a6:d1:b0:65:b7:37:9b:e1:56:a6:71:2a:e5:e0:77:
91:71:c7:e4:dc:88:a5:fb:63:58:57:d6:c2:34:1a:
6d:e2:70:1d:06:26:3a:e3:22:eb:58:3f:55:70:bc:
cb:bf:5f:e6:f0:c1:02:93:5e:5f:9f:68:ed:b5:01:
63:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:45:C4:FE:9E:1C:8D:F2:89:E1:22:5E:EF:76:EA:91:31:B6:B7:60
X509v3 Authority Key Identifier:
keyid:AD:B9:B6:28:FD:33:09:3F:A2:AC:08:90:EE:1C:E5:55:CB:A8:26:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rbm2KP0zCT-irAiQ7hzlVcuoJnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/3EXE_p4cjfKJ4SJe73bqkTG2t2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/d75206-3b0e-45e6-b0aa-37d41c5b81bf/1/rbm2KP0zCT-irAiQ7hzlVcuoJnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.225.191.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:ee:18:89:cb:84:d6:f9:8d:c4:54:5e:f9:bd:4a:ba:9e:fc:
f4:f9:e0:8a:29:a7:61:0e:fc:80:46:52:a6:52:22:19:1b:67:
75:4f:e4:54:e3:f5:6a:c6:7c:08:b2:a3:19:df:e3:6a:2c:bd:
63:53:ff:b8:ba:88:fa:70:37:13:50:67:5f:8d:e8:64:8c:a3:
ec:e5:4c:85:b6:48:1d:3d:ae:ab:b0:a0:11:ec:9d:88:e2:26:
55:04:70:2e:cd:8b:ec:34:3e:fd:a2:cf:d7:c8:92:c0:4b:5f:
c2:d1:a2:fb:c2:22:17:4d:7a:91:29:d3:97:16:61:40:0b:46:
e7:b7:7f:eb:08:d9:0a:d4:95:a3:00:8c:b3:c4:0f:a2:2a:60:
13:fc:50:e6:5f:25:fc:86:98:ec:1c:22:8c:e7:17:37:27:13:
12:95:d2:30:d6:8d:4c:db:2a:8d:ed:12:6d:07:52:a7:bb:86:
9c:33:9b:92:03:0d:88:4a:62:a4:9c:99:6c:3a:5e:fb:ab:de:
eb:65:36:24:78:ab:5b:92:c3:f8:f8:87:bd:bf:9a:dd:a3:8b:
ec:5e:0d:6d:26:1c:d2:b4:10:54:37:d4:16:d7:ff:ab:f7:68:
de:ff:24:9b:7e:5e:8c:46:ed:e4:4e:d4:72:b6:a9:9e:e0:e8:
a2:5c:55:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 02:56:37 2024 by rpki-client on console.sobornost.net