Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/dIEhxqZdnhj8XjibhUNtqNGolXE.roa
File: dIEhxqZdnhj8XjibhUNtqNGolXE.roa (raw, json)
Hash identifier: T6vx49gDVHpS50MnNy5zfruspHo+OcLhw85zBCPiqpA=
Subject key identifier: 74:81:21:C6:A6:5D:9E:18:FC:5E:38:9B:85:43:6D:A8:D1:A8:95:71
Certificate issuer: /CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Certificate serial: 0188FB7A0275BE1C98E1B3A0C2E346576121
Authority key identifier: 50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/dIEhxqZdnhj8XjibhUNtqNGolXE.roa
Signing time: Tue 27 Jun 2023 06:10:57 +0000
ROA not before: Tue 27 Jun 2023 06:10:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34370
IP address blocks: 185.164.78.0/24 maxlen: 24
185.164.76.0/24 maxlen: 24
185.164.77.0/24 maxlen: 24
185.164.79.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fb:7a:02:75:be:1c:98:e1:b3:a0:c2:e3:46:57:61:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509bc63e68c90932b4fc28997fc3bf78de3b3743
Validity
Not Before: Jun 27 06:10:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=748121c6a65d9e18fc5e389b85436da8d1a89571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ff:ee:4e:3e:60:c6:7e:78:d5:05:cb:4b:f8:
79:16:ea:93:ba:64:a5:b6:33:90:06:87:bd:86:07:
60:94:fa:bc:57:b2:9f:15:48:70:50:fa:68:b4:84:
de:7c:8d:5c:78:82:dd:cd:84:33:af:15:8a:23:64:
2f:d8:63:69:7c:b5:6f:78:1b:05:46:2f:16:06:3c:
6d:58:63:fc:78:21:76:e8:3e:49:e6:bf:63:89:53:
f8:0b:ea:fb:00:dc:0e:c8:07:fd:ed:b3:e6:28:a8:
be:89:14:b7:4c:6c:5c:83:a8:62:72:ab:7f:fe:d9:
b6:4d:70:bc:01:3d:32:60:31:33:63:ed:63:38:53:
ef:1b:74:df:00:78:9c:29:9e:2a:f6:28:10:94:85:
65:a1:3b:ad:c0:7d:fe:09:8e:b1:36:9e:88:bd:6a:
50:2e:03:1b:88:61:fb:ab:2d:5a:ba:ec:10:8f:cd:
4d:5e:21:7a:da:68:b8:64:83:65:d8:b9:9a:4d:e2:
0b:3b:6f:ed:20:70:ca:37:22:10:45:fd:ae:36:f0:
07:a2:d3:8b:75:6e:93:1f:00:e8:8b:91:0b:35:7c:
ec:a3:e2:a3:ca:d0:f2:87:f8:85:44:d0:eb:ee:5b:
52:e8:9c:98:ba:5a:e4:00:54:10:97:0c:83:7b:0b:
bd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:81:21:C6:A6:5D:9E:18:FC:5E:38:9B:85:43:6D:A8:D1:A8:95:71
X509v3 Authority Key Identifier:
keyid:50:9B:C6:3E:68:C9:09:32:B4:FC:28:99:7F:C3:BF:78:DE:3B:37:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJvGPmjJCTK0_CiZf8O_eN47N0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/dIEhxqZdnhj8XjibhUNtqNGolXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/34c5b2-b6e3-4b23-a609-16ed3cd0c72a/1/UJvGPmjJCTK0_CiZf8O_eN47N0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.164.76.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:8d:f8:84:0e:2d:9b:81:92:ec:36:1d:c7:a9:71:d8:84:3a:
02:99:e8:b5:b5:a8:0e:0d:d2:03:58:d5:a7:04:1a:dd:f8:8b:
10:c4:a3:a2:68:e3:0f:69:ca:31:8b:9d:e7:69:d0:ec:ec:da:
92:0a:41:bb:03:6a:22:6c:e9:7a:f4:f0:bd:e5:36:50:d4:3e:
2b:35:28:a9:17:d7:4e:18:ff:62:b6:a6:6c:94:57:9c:4f:65:
9a:70:f8:9e:6e:c2:85:f4:c2:ea:af:63:fa:3c:bd:73:05:b2:
f8:e8:79:09:c1:8b:6b:99:27:92:01:13:aa:79:8b:54:87:f6:
70:c9:c3:42:8d:b8:5b:65:6e:15:a3:d2:92:ec:0a:ec:ee:16:
cc:d9:9e:43:ff:19:d6:2a:dc:4a:a4:0f:da:93:42:dc:3c:b7:
b7:60:07:70:8c:00:7d:b5:52:65:fe:05:08:57:a2:be:1f:c8:
be:7d:a9:42:c3:fa:c8:f2:84:ae:bf:3b:87:35:b6:46:54:85:
9b:8b:f9:ba:af:63:79:7b:aa:8e:05:23:e6:ff:5f:d5:41:c8:
4f:ae:e1:ea:60:64:5d:83:82:bb:0e:a6:e3:f5:26:a7:44:51:
05:6e:7d:5e:94:ab:c5:e4:8e:02:fa:61:c4:e4:37:21:db:f1:
c7:21:e6:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:07 2023 by rpki-client on console.sobornost.net