Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/6HzOVx8rd6wTIDdioOZIh24ljzY.roa
File: 6HzOVx8rd6wTIDdioOZIh24ljzY.roa (raw, json)
Hash identifier: 8tRuT87RAFa7PQFxRpYSYX6idm+g5sha8qZIH7kPk8I=
Subject key identifier: E8:7C:CE:57:1F:2B:77:AC:13:20:37:62:A0:E6:48:87:6E:25:8F:36
Certificate issuer: /CN=40665ce80820a47ce3b83f480289554a58a45df4
Certificate serial: 01856DCB12AF1BE0EEB92B90D58DBEF51578
Authority key identifier: 40:66:5C:E8:08:20:A4:7C:E3:B8:3F:48:02:89:55:4A:58:A4:5D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QGZc6AggpHzjuD9IAolVSlikXfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/6HzOVx8rd6wTIDdioOZIh24ljzY.roa
Signing time: Sun 01 Jan 2023 14:45:03 +0000
ROA not before: Sun 01 Jan 2023 14:45:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7018
IP address blocks: 195.216.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:cb:12:af:1b:e0:ee:b9:2b:90:d5:8d:be:f5:15:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40665ce80820a47ce3b83f480289554a58a45df4
Validity
Not Before: Jan 1 14:45:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e87cce571f2b77ac13203762a0e648876e258f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:27:f9:78:a9:af:6d:ea:4f:40:5f:0f:6b:2f:
77:d7:49:25:7a:7b:52:c3:8f:14:cd:05:77:83:aa:
65:3c:84:9b:a3:3b:f1:b8:0d:df:36:d6:39:2b:53:
ae:6b:c1:92:49:ab:72:fc:44:c0:b6:6d:20:e1:35:
ec:b0:51:c1:9e:35:73:18:23:41:99:29:04:69:f6:
27:1c:49:da:cd:d4:ce:f8:9c:2a:11:e5:ae:91:ce:
8a:ea:c8:4f:3b:b1:05:38:37:ac:3d:fc:eb:9c:5d:
77:80:bb:bb:d9:e6:23:e9:77:0e:01:ba:73:9f:8c:
5d:1c:94:9b:32:b5:e7:d8:fd:92:92:92:0f:53:d6:
b0:30:e1:1f:e5:a2:f6:d3:8d:99:92:47:86:df:05:
af:06:fb:ab:20:5b:68:01:f3:6c:8c:33:80:55:55:
61:96:e4:51:29:92:65:9f:98:b8:ec:ed:f5:6c:4c:
18:d7:e2:ff:c4:ad:15:f9:20:c3:02:25:53:25:df:
cb:7f:dc:6a:cb:e2:97:e5:c1:ca:76:89:80:7b:19:
2e:b8:b9:2c:b4:92:04:0c:37:7b:aa:83:a1:c1:6e:
88:e3:fe:b1:a7:79:81:eb:7c:00:9c:92:8a:58:2c:
fb:da:e5:40:75:c5:45:14:c0:c0:c7:ab:9a:97:e6:
aa:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7C:CE:57:1F:2B:77:AC:13:20:37:62:A0:E6:48:87:6E:25:8F:36
X509v3 Authority Key Identifier:
keyid:40:66:5C:E8:08:20:A4:7C:E3:B8:3F:48:02:89:55:4A:58:A4:5D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QGZc6AggpHzjuD9IAolVSlikXfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/6HzOVx8rd6wTIDdioOZIh24ljzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/bd6a19-2595-4df9-84b5-ebadbc34a124/1/QGZc6AggpHzjuD9IAolVSlikXfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.248.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:77:58:a8:74:01:d5:f1:7a:03:04:d4:0e:8c:70:18:6e:b8:
83:16:69:79:ca:87:c8:b9:26:36:ac:dd:8a:34:64:b8:03:ff:
5c:19:cf:07:ad:9b:0f:1d:48:ef:e2:75:90:56:f1:f8:1a:58:
9f:35:39:cc:85:10:63:84:a3:e8:33:39:e2:20:dd:a9:b6:f4:
71:2a:8c:e3:02:f9:0b:63:23:82:e6:01:91:ac:00:48:5f:16:
f1:fa:10:26:60:67:28:52:a2:7e:d7:a0:c8:a0:99:db:87:fa:
8e:56:ec:68:11:e0:8d:18:5d:29:30:5b:86:9e:54:89:0f:23:
3a:2d:9d:5b:f0:ad:71:aa:d6:b0:13:b4:35:4e:8c:34:c0:8a:
75:28:3c:0e:1c:fa:21:81:9c:d1:de:03:e2:58:5d:1b:60:8c:
80:9a:7f:6e:41:a8:2d:8e:00:d5:61:b8:4a:07:22:b4:23:2d:
42:bc:5e:a7:00:cd:e2:5e:a2:f9:5a:5e:05:e7:0f:68:cb:67:
35:02:8e:d2:7f:b6:51:b7:bf:0c:f2:02:63:5d:1e:16:ea:e2:
35:19:d2:23:e5:a6:1e:20:88:6e:7e:d0:97:c5:11:3c:3d:62:
f6:ec:55:2d:2a:9f:77:71:ec:67:50:08:12:de:22:23:98:c5:
13:69:3f:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:01:28 2024 by rpki-client on console.sobornost.net