Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/xyh8QnJQKQoUgczezLUj1SwI3lQ.roa
File: xyh8QnJQKQoUgczezLUj1SwI3lQ.roa (raw, json)
Hash identifier: Fu4KWOMvRwnL3jeHfHKVF7oM+hIOLmWu+CNt8VLdSzc=
Subject key identifier: C7:28:7C:42:72:50:29:0A:14:81:CC:DE:CC:B5:23:D5:2C:08:DE:54
Certificate issuer: /CN=473ddbc4bb381dbef24d2ff8b4e1f23f2ddf40cc
Certificate serial: 018703D2EBD04561E5EAD5AF51F90C8AF356
Authority key identifier: 47:3D:DB:C4:BB:38:1D:BE:F2:4D:2F:F8:B4:E1:F2:3F:2D:DF:40:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Rz3bxLs4Hb7yTS_4tOHyPy3fQMw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/xyh8QnJQKQoUgczezLUj1SwI3lQ.roa
Signing time: Tue 21 Mar 2023 10:59:27 +0000
ROA not before: Tue 21 Mar 2023 10:59:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54253
IP address blocks: 185.69.0.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:03:d2:eb:d0:45:61:e5:ea:d5:af:51:f9:0c:8a:f3:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ddbc4bb381dbef24d2ff8b4e1f23f2ddf40cc
Validity
Not Before: Mar 21 10:59:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c7287c427250290a1481ccdeccb523d52c08de54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9c:eb:3f:47:1b:c0:fe:6c:2c:e8:90:5a:38:
fb:ab:36:9b:86:12:3e:c9:f1:46:63:9c:29:54:e7:
bc:f2:f7:db:b9:2b:c8:7f:0b:92:dd:4b:a6:2b:b8:
ea:f0:6c:42:bd:0b:0b:dd:3f:aa:b6:2f:24:c6:17:
6e:13:50:38:04:21:03:12:d2:b4:c0:18:b6:6b:15:
ac:e4:94:0d:23:08:64:a1:3f:92:be:55:98:2b:0f:
74:a4:ad:59:dd:3c:81:61:a8:50:68:22:d5:66:35:
75:ba:5f:2e:5d:0d:f1:b6:c5:d0:a6:c0:d5:eb:57:
bc:33:aa:29:58:bd:a8:c9:4d:c2:3b:74:50:6c:5e:
33:df:48:4a:f8:61:8e:36:f0:35:94:96:54:2c:a3:
af:e9:f3:82:c3:f1:61:9b:35:af:e1:81:f1:8e:49:
a8:1b:bc:64:b5:ea:de:c1:3b:99:72:3b:e3:a4:94:
96:ba:39:7e:a6:a9:cb:a2:27:29:b2:d7:ba:18:ac:
a6:a8:03:cf:78:1d:7c:7a:5c:85:8b:55:07:93:dd:
14:a6:2a:dd:2e:e2:13:03:97:21:e7:5c:85:25:23:
56:d8:77:eb:86:38:d6:c7:2c:87:16:a5:b3:10:43:
61:c9:5f:1c:93:da:ee:62:0a:da:0d:bc:e3:8e:b8:
75:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:28:7C:42:72:50:29:0A:14:81:CC:DE:CC:B5:23:D5:2C:08:DE:54
X509v3 Authority Key Identifier:
keyid:47:3D:DB:C4:BB:38:1D:BE:F2:4D:2F:F8:B4:E1:F2:3F:2D:DF:40:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Rz3bxLs4Hb7yTS_4tOHyPy3fQMw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/xyh8QnJQKQoUgczezLUj1SwI3lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/55bf9f-240f-49bb-b30e-604b201e65f8/1/Rz3bxLs4Hb7yTS_4tOHyPy3fQMw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.69.0.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:a2:51:3c:50:a7:92:d6:89:f9:eb:d3:46:10:d2:4b:b2:4e:
ed:11:2c:ad:75:9e:48:46:7e:97:cc:08:74:dc:a4:b3:f7:70:
d1:e0:91:53:a3:ad:ba:44:6f:a2:af:5c:ac:05:4a:15:b3:6e:
c2:c8:e5:a7:1c:c8:bc:e5:38:02:bd:64:b8:70:a3:ed:47:d6:
81:8d:17:cd:cf:72:77:5b:ad:81:eb:0f:58:ad:99:8d:3a:db:
e8:28:20:44:32:06:f2:38:47:2e:98:8b:a2:89:2c:a5:f7:45:
42:22:bd:3b:49:f9:72:fd:bb:e8:0d:8c:d5:c5:85:25:96:ba:
65:f1:be:d9:8c:f1:0b:a0:1b:eb:c3:ca:31:59:36:97:fa:c6:
98:ae:1d:91:7a:ad:f4:96:04:57:ed:9a:08:27:92:38:a9:ac:
94:42:47:03:3f:fa:e3:1c:ac:29:bb:1e:95:e9:74:e0:48:28:
85:26:e0:a0:f2:21:2b:82:80:20:a7:78:64:aa:cc:27:23:cc:
74:91:dc:4f:57:57:cd:9b:45:bf:22:6c:62:26:9c:45:85:c1:
87:90:44:55:d1:2e:44:5b:a4:79:1b:a9:4d:dd:66:fb:83:54:
2e:93:25:ec:f6:d7:9b:aa:c3:c5:99:4b:22:1b:63:38:a7:b7:
7b:b0:88:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:34 2024 by rpki-client on console.sobornost.net