Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/4zQmnXbeB0_7RdgsV1d-4cc6Xms.roa
File: 4zQmnXbeB0_7RdgsV1d-4cc6Xms.roa (raw, json)
Hash identifier: /DGva343mdjsLMujvt4o+wr0473P41Qf/3dYPRWWybU=
Subject key identifier: E3:34:26:9D:76:DE:07:4F:FB:45:D8:2C:57:57:7E:E1:C7:3A:5E:6B
Certificate issuer: /CN=84920213cb230bfe51121ce5fb4dece28018bed0
Certificate serial: 01856FD53B4A18CE0B211D0DB4C761085218
Authority key identifier: 84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/4zQmnXbeB0_7RdgsV1d-4cc6Xms.roa
Signing time: Mon 02 Jan 2023 00:15:23 +0000
ROA not before: Mon 02 Jan 2023 00:15:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 185.140.70.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:3b:4a:18:ce:0b:21:1d:0d:b4:c7:61:08:52:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84920213cb230bfe51121ce5fb4dece28018bed0
Validity
Not Before: Jan 2 00:15:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e334269d76de074ffb45d82c57577ee1c73a5e6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ed:c5:bc:11:aa:eb:86:ee:9c:c9:f2:b6:7c:
c6:a4:5c:57:40:97:c3:5a:0b:1d:63:ab:44:c3:04:
1e:6a:21:b6:dc:39:14:bd:cd:56:31:f3:25:48:cd:
7d:20:b2:d5:1f:7c:62:f9:f1:e8:c0:3c:4e:d7:13:
27:8e:20:62:44:65:fd:56:70:6f:2a:89:1b:ef:a7:
ac:1c:be:8e:94:b7:8f:42:ad:13:4a:c2:60:5c:b7:
0f:1b:57:0b:ee:8a:65:06:80:c3:f0:c1:e5:6d:07:
5b:c9:cd:3b:87:23:7b:ce:df:8a:d8:2a:6b:64:62:
fe:f5:ef:dc:85:3c:4d:c5:19:d3:9e:fd:cb:46:6b:
2b:1b:97:01:6f:a7:72:ae:c6:da:c3:03:06:52:6e:
53:da:db:4c:0b:67:1d:0d:dd:86:e0:cf:85:7d:08:
9a:cd:b1:ca:ce:0d:26:e5:4e:f1:6a:11:44:7a:2b:
d0:be:6a:be:d6:80:d2:e6:46:bc:a8:86:3c:bf:0b:
c5:70:f6:b2:8d:b3:d1:76:ce:b5:84:11:94:f9:0f:
d2:c4:d0:ba:97:2c:85:bb:af:a0:1a:b3:c4:c8:a8:
80:83:67:f0:c3:80:08:55:8e:2a:d5:4c:62:21:59:
01:37:d6:87:98:a3:9e:3b:5a:27:c9:c3:91:5f:39:
0a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:34:26:9D:76:DE:07:4F:FB:45:D8:2C:57:57:7E:E1:C7:3A:5E:6B
X509v3 Authority Key Identifier:
keyid:84:92:02:13:CB:23:0B:FE:51:12:1C:E5:FB:4D:EC:E2:80:18:BE:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hJICE8sjC_5REhzl-03s4oAYvtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/4zQmnXbeB0_7RdgsV1d-4cc6Xms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/a8a09c-0f84-4a89-8a16-b04b4d043f9f/1/hJICE8sjC_5REhzl-03s4oAYvtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.70.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:29:5e:05:aa:f3:db:f1:fd:f6:8e:da:8a:a2:ae:79:bc:51:
87:51:44:e8:bc:9b:97:7d:a1:5e:13:cb:96:99:6f:53:5e:58:
aa:77:57:ca:41:ba:d8:8e:cc:7a:39:93:2f:27:a4:1e:b6:c2:
3a:d3:67:41:c8:76:90:97:37:b1:b3:e1:92:b9:bc:a4:1e:16:
bb:8c:fa:d9:c5:55:ab:fe:b9:d7:c0:0b:1a:58:d5:5f:de:1d:
56:45:e0:49:71:c2:2d:7d:96:be:4b:f9:74:10:76:45:f6:8d:
9d:ea:91:65:3d:08:68:9d:d2:2f:9a:d5:84:9b:52:0f:20:3a:
68:e9:52:59:29:6f:68:c6:de:84:92:bd:1b:65:0c:32:d5:61:
7b:ff:4d:ac:91:6a:55:ce:d8:a5:ab:9e:c5:b8:37:5b:6a:1a:
f9:40:4e:76:89:3b:cf:80:a2:21:d2:52:bb:a4:e6:77:c7:47:
84:47:ff:19:1f:3f:7a:ca:9e:02:e5:2d:05:ce:3b:03:6c:36:
fb:fd:dc:e9:1e:2d:b2:c1:43:3f:dd:74:bf:ab:a6:27:a1:25:
68:7f:35:ba:f5:86:5a:e4:31:af:81:d5:12:56:26:13:3a:ae:
6c:8a:76:80:20:58:67:02:a4:33:10:7a:66:df:bf:15:0f:78:
86:70:11:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:24 2024 by rpki-client on console.sobornost.net