Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/6g2RhowubDoaA9cUPWgD5x99rWc.roa
File: 6g2RhowubDoaA9cUPWgD5x99rWc.roa (raw, json)
Hash identifier: MJxnmPb71bURGas33GarzdUDi1kuaDyaNrni82qAbw4=
Subject key identifier: EA:0D:91:86:8C:2E:6C:3A:1A:03:D7:14:3D:68:03:E7:1F:7D:AD:67
Certificate issuer: /CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Certificate serial: 01856D81B050EE0E032494EB6278236982BC
Authority key identifier: 55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/6g2RhowubDoaA9cUPWgD5x99rWc.roa
Signing time: Sun 01 Jan 2023 13:24:53 +0000
ROA not before: Sun 01 Jan 2023 13:24:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211458
IP address blocks: 185.23.110.0/24 maxlen: 24
2a10:df40::/29 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:b0:50:ee:0e:03:24:94:eb:62:78:23:69:82:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Validity
Not Before: Jan 1 13:24:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ea0d91868c2e6c3a1a03d7143d6803e71f7dad67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:3a:28:95:de:30:40:c8:30:45:de:9a:b0:32:
a9:e8:39:77:20:96:6c:b0:8a:cc:2e:bd:d6:9b:2c:
a6:7b:21:1e:f9:b8:b8:2f:0d:0a:ea:f5:2a:f6:f2:
2a:fa:b2:9d:cc:8a:1e:23:ae:ec:14:00:82:3b:89:
3c:41:00:15:d5:a1:f6:48:ca:62:85:62:bf:66:b8:
4f:0d:8c:23:fb:8a:7f:10:6a:98:de:19:95:f4:fe:
7c:78:2a:96:51:1c:68:eb:b5:cd:13:df:b2:12:d4:
69:6a:3d:38:b1:f0:52:d1:a6:84:8f:7b:d5:d3:90:
24:ee:22:ee:79:c8:14:47:be:27:37:48:cd:62:80:
55:49:2d:4a:d4:7b:b4:d5:2b:e9:18:85:42:8a:d1:
af:ec:01:87:9e:9b:a1:a6:63:09:68:25:61:17:3b:
d2:58:e2:cd:45:79:9f:24:18:7c:fc:83:0a:72:3f:
94:f8:5f:de:75:e9:04:34:b2:53:07:c5:6e:47:83:
8a:af:e6:a2:21:2f:ef:35:ec:50:7d:eb:f2:3c:85:
c0:6f:69:93:3d:4b:8c:aa:20:95:84:aa:e4:24:bc:
91:85:3e:c6:4f:6b:8b:18:a1:a2:c8:da:c7:24:79:
18:c1:d5:60:ef:81:a5:62:43:20:4e:62:19:19:e6:
89:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:0D:91:86:8C:2E:6C:3A:1A:03:D7:14:3D:68:03:E7:1F:7D:AD:67
X509v3 Authority Key Identifier:
keyid:55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/6g2RhowubDoaA9cUPWgD5x99rWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.110.0/24
IPv6:
2a10:df40::/29
Signature Algorithm: sha256WithRSAEncryption
9d:a6:4e:15:ca:38:fc:38:e9:ee:d8:e4:fe:30:c3:89:4b:b9:
ad:82:ee:1d:74:bd:ed:15:b0:c1:c0:2f:5d:0c:18:63:80:5d:
48:da:61:64:de:7f:e6:db:8c:2b:3b:5c:2f:89:af:75:8d:dc:
7d:93:a1:c1:98:cf:a0:0b:9a:ea:16:67:95:af:78:98:38:ea:
b7:82:f5:92:7b:e7:87:84:c6:2d:bc:62:5b:5c:e5:18:e1:d0:
94:eb:94:1a:ad:d8:bf:25:d2:4b:b7:86:09:d3:ed:3b:47:54:
21:d6:05:f2:12:bc:ba:2d:44:76:69:0c:30:19:3e:ea:31:5f:
66:42:68:2f:25:0a:0b:b5:d4:d6:cc:87:91:73:17:3a:60:fe:
20:70:95:d9:cc:88:97:83:43:82:9e:e4:45:c3:19:2e:c6:31:
7d:2f:36:57:a8:a5:b2:39:5f:5a:b0:bc:25:cd:bc:1b:4a:75:
2a:2c:b8:bd:60:82:9a:53:11:e2:a7:19:19:85:5b:52:09:a3:
42:07:13:e2:ea:88:6d:65:77:77:33:72:3f:7a:f3:d0:f1:6c:
25:96:85:89:c7:9b:db:b6:06:75:2a:24:fb:80:48:f9:c6:82:
70:1b:38:5d:ab:c8:c9:bb:6a:39:a1:29:7c:4e:bb:63:a0:08:
e9:29:d5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:10:30 2024 by rpki-client on console.sobornost.net