Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/1-kPViDFbw8ov55OGozwb3Vj2A_k.roa
File: 1-kPViDFbw8ov55OGozwb3Vj2A_k.roa (raw, json)
Hash identifier: H3i+S6SnEv/+a8yG4brdvYVaZt9nwJ13UTbo4akM3+M=
Subject key identifier: FA:43:D5:88:31:5B:C3:CA:2F:E7:93:86:A3:3C:1B:DD:58:F6:03:F9
Certificate issuer: /CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Certificate serial: 01856F02390BDFD97D9DDDDA16ACF5D6875E
Authority key identifier: 5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/1-kPViDFbw8ov55OGozwb3Vj2A_k.roa
Signing time: Sun 01 Jan 2023 20:24:54 +0000
ROA not before: Sun 01 Jan 2023 20:24:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204566
IP address blocks: 185.243.208.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:39:0b:df:d9:7d:9d:dd:da:16:ac:f5:d6:87:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6c64fc20ce1d972f5e3474319048a2ac656df1
Validity
Not Before: Jan 1 20:24:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fa43d588315bc3ca2fe79386a33c1bdd58f603f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:70:1d:e1:00:cf:72:03:61:a6:0a:58:65:48:
20:47:66:9a:d3:a5:c5:99:ae:c1:68:6f:d5:31:93:
3b:37:6d:b1:b7:71:76:55:cd:2b:f1:5d:5a:a3:0a:
39:5c:8c:c4:f0:bd:5d:aa:00:a6:21:d6:f7:b4:7d:
80:57:5f:fe:ed:1e:30:c7:aa:c5:31:05:8a:d2:71:
00:7d:11:b8:da:ac:e8:30:f2:32:93:53:ec:1e:9f:
ea:73:8f:b2:02:a2:32:33:08:4d:b7:86:47:11:f0:
70:05:57:a7:f2:5a:3f:93:1e:20:a7:ca:72:36:05:
e7:51:ec:04:5a:21:ef:ad:24:88:83:4d:de:27:d9:
e6:7a:1e:08:47:56:2a:a6:40:46:4a:aa:78:59:bc:
13:b6:69:20:3f:15:ca:d5:5b:05:7d:80:b5:fa:52:
8c:67:bf:34:21:a5:6d:57:d7:3a:00:a1:e7:de:af:
55:a9:77:4a:69:77:2d:6f:26:27:87:ea:97:8a:91:
b0:42:ca:e1:9e:3a:15:42:c2:18:58:8c:8a:6a:a9:
a5:30:f0:67:4d:9a:c9:78:d0:fd:fd:14:e6:07:6c:
a7:01:e2:b3:6c:31:c7:4d:10:8b:b9:6a:5c:ff:c7:
9f:83:54:70:ac:bd:38:a3:15:e6:4b:91:6e:b5:3c:
61:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:43:D5:88:31:5B:C3:CA:2F:E7:93:86:A3:3C:1B:DD:58:F6:03:F9
X509v3 Authority Key Identifier:
keyid:5E:6C:64:FC:20:CE:1D:97:2F:5E:34:74:31:90:48:A2:AC:65:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/1-kPViDFbw8ov55OGozwb3Vj2A_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f09788-9869-4f12-9f1e-ac4de169adce/1/Xmxk_CDOHZcvXjR0MZBIoqxlbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.208.0/22
Signature Algorithm: sha256WithRSAEncryption
59:96:bb:14:6f:e1:35:09:0c:91:55:ac:07:60:c2:84:18:89:
50:e8:5b:e8:23:91:51:ae:0c:78:74:94:31:98:67:4b:9f:a4:
a6:38:dd:92:95:63:a9:18:a8:86:79:83:97:5c:eb:41:22:f0:
29:08:fc:0c:65:be:69:9e:99:46:33:c5:e7:69:db:ee:ef:26:
13:a1:67:67:08:c3:6a:61:44:86:ed:d2:19:27:45:3e:af:0c:
00:ef:73:57:fd:7f:05:84:d6:29:34:92:97:bc:a9:5c:c2:cd:
9a:d5:97:eb:b8:bf:00:43:a9:c3:11:04:f5:1c:7c:74:8e:4c:
85:65:6d:d8:42:b0:3d:60:a0:0e:73:6b:28:83:87:bd:d4:6b:
67:59:88:47:6f:65:a8:8a:06:bb:7f:f8:59:8f:75:3c:7e:37:
b1:4c:66:aa:b3:5c:27:32:93:d2:df:24:de:08:09:9e:ba:89:
35:3d:6e:72:dd:f0:af:aa:f4:39:a0:b0:53:7a:f1:a2:b1:f8:
28:bc:81:cb:7b:87:aa:99:c6:64:e3:11:7f:4d:4e:04:9f:f2:
75:3e:22:81:3a:c2:4f:d6:9c:cf:1f:ec:68:74:e2:a5:7a:28:
cf:6f:28:b4:99:9d:08:46:48:a1:41:c4:9d:81:5f:54:bb:7b:
4f:de:12:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:54 2024 by rpki-client on console.sobornost.net