Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/f81eab-bc36-42a6-822a-cdb1d38556bb/1/KcwSEaq2iyBIxhgKhbc_vkFxoiY.roa
File: KcwSEaq2iyBIxhgKhbc_vkFxoiY.roa (raw, json)
Hash identifier: gkvE7LSCZ9Ucb87iqAlrWDrOWbAmivVztVQgq1O6xrY=
Subject key identifier: 29:CC:12:11:AA:B6:8B:20:48:C6:18:0A:85:B7:3F:BE:41:71:A2:26
Certificate issuer: /CN=847d1bebe4c23c4217b84f7fd8192ab2555415a8
Certificate serial: 01856EF430A2CAA2727635F13923E1D742EC
Authority key identifier: 84:7D:1B:EB:E4:C2:3C:42:17:B8:4F:7F:D8:19:2A:B2:55:54:15:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hH0b6-TCPEIXuE9_2BkqslVUFag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/f81eab-bc36-42a6-822a-cdb1d38556bb/1/KcwSEaq2iyBIxhgKhbc_vkFxoiY.roa
Signing time: Sun 01 Jan 2023 20:09:35 +0000
ROA not before: Sun 01 Jan 2023 20:09:35 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198228
IP address blocks: 195.250.60.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:30:a2:ca:a2:72:76:35:f1:39:23:e1:d7:42:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=847d1bebe4c23c4217b84f7fd8192ab2555415a8
Validity
Not Before: Jan 1 20:09:35 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=29cc1211aab68b2048c6180a85b73fbe4171a226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:06:3b:ff:ef:12:c6:c6:5b:84:d4:d3:17:6c:
af:95:ba:2f:d6:6d:fa:88:4c:83:4f:c9:c3:f5:c6:
a3:16:61:90:52:7c:23:24:34:17:0a:3f:33:19:72:
14:ed:27:b7:ec:98:df:27:82:2e:29:8b:73:aa:22:
96:d0:e2:ed:ab:d7:87:f9:2a:ef:02:28:16:7d:1f:
cf:f3:8d:82:62:45:b4:df:f8:7b:7b:9d:3b:43:d7:
4a:c6:63:e2:b1:ea:bb:f4:2a:d6:f7:48:0e:a8:13:
cb:ca:d7:c6:d8:a9:d5:b7:12:5c:ed:45:49:25:0a:
a8:3f:88:cd:4a:7b:c2:7f:14:12:f7:a9:8c:16:39:
4c:e6:f7:ca:40:dc:83:37:44:c3:cb:d8:dc:2a:68:
48:1b:a4:77:ae:f2:63:53:a3:d0:74:06:04:79:df:
f3:dc:5c:56:85:22:21:94:3e:78:5f:aa:79:59:64:
87:85:dd:0a:50:72:d7:05:9d:01:a9:79:30:c0:4d:
9c:16:9e:86:3c:91:8a:cd:1b:cb:14:bf:24:f7:ca:
e6:64:10:83:df:e6:91:aa:6e:bc:09:f2:a8:2f:61:
bc:bd:34:82:c9:40:7d:63:07:ef:a3:a0:54:82:52:
02:25:d8:14:6b:81:e2:a2:e9:19:6f:78:a4:d4:87:
64:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:CC:12:11:AA:B6:8B:20:48:C6:18:0A:85:B7:3F:BE:41:71:A2:26
X509v3 Authority Key Identifier:
keyid:84:7D:1B:EB:E4:C2:3C:42:17:B8:4F:7F:D8:19:2A:B2:55:54:15:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hH0b6-TCPEIXuE9_2BkqslVUFag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f81eab-bc36-42a6-822a-cdb1d38556bb/1/KcwSEaq2iyBIxhgKhbc_vkFxoiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/f81eab-bc36-42a6-822a-cdb1d38556bb/1/hH0b6-TCPEIXuE9_2BkqslVUFag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.250.60.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:d2:8c:d8:69:db:95:3b:0a:e0:99:8a:2b:0d:80:fe:75:7f:
77:de:9c:30:b3:10:9f:51:37:67:15:16:b9:b2:ca:e7:4d:35:
1a:fd:45:ed:58:d0:29:d5:e2:4c:87:52:7a:59:7d:4d:0f:5b:
0e:b0:1e:08:30:d3:50:6c:f0:b2:cd:a4:ec:1c:77:ad:53:1c:
f7:4f:94:1d:d3:2c:ff:81:7b:7e:e1:2d:49:4c:25:36:58:c7:
8a:15:5c:a7:a2:8d:39:03:63:36:c1:88:5a:cd:b3:1b:2c:3f:
a2:9a:7e:60:b3:7f:da:a5:f9:4a:51:7e:07:d4:a6:f8:b2:88:
4e:71:63:cf:94:62:f2:d6:10:fd:8e:ab:a7:15:29:d5:93:8d:
eb:6c:d5:fe:ea:93:b7:b5:6c:a1:06:37:e5:06:0d:c3:22:45:
a3:fb:ee:8f:df:8b:bb:41:1c:a2:57:6c:b7:5f:04:b5:e7:5f:
42:29:af:5e:b7:a2:e5:8d:31:30:cf:a3:5c:96:05:2b:be:6c:
22:19:ad:ce:73:f8:99:f4:90:c0:9d:62:68:9d:7e:84:b5:fa:
1e:dd:79:e9:58:fc:68:93:4e:8e:d4:63:8f:6c:a6:39:81:f2:
6e:dc:5f:48:98:9b:38:e1:f8:be:e5:69:10:31:40:fe:b2:13:
de:c8:e6:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:43 2024 by rpki-client on console.sobornost.net