Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/R6K8Rgz70LVQRlPHa6MqclM5kSM.roa
File: R6K8Rgz70LVQRlPHa6MqclM5kSM.roa (raw, json)
Hash identifier: 8J+iNDajxBxzj1tgs8+GY+pemZTf8R1mmkykAP9KA7M=
Subject key identifier: 47:A2:BC:46:0C:FB:D0:B5:50:46:53:C7:6B:A3:2A:72:53:39:91:23
Certificate issuer: /CN=5140b5cb5986084126f68d6032316d3b1b57696e
Certificate serial: 018572B3FB068019F315A7130C3FB91D556B
Authority key identifier: 51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/R6K8Rgz70LVQRlPHa6MqclM5kSM.roa
Signing time: Mon 02 Jan 2023 13:37:55 +0000
ROA not before: Mon 02 Jan 2023 13:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199462
IP address blocks: 185.101.78.0/24 maxlen: 24
185.101.77.0/24 maxlen: 24
185.101.76.0/24 maxlen: 24
185.101.79.0/24 maxlen: 24
2a06:1b87:300::/48 maxlen: 48
2a06:1b87:500::/48 maxlen: 48
2a06:1b87:400::/48 maxlen: 48
2a06:1b87::/32 maxlen: 32
2001:67c:11bc::/48 maxlen: 48
2a06:1b80::/29 maxlen: 29
2a06:1b80::/32 maxlen: 32
2a06:1b86::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b3:fb:06:80:19:f3:15:a7:13:0c:3f:b9:1d:55:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5140b5cb5986084126f68d6032316d3b1b57696e
Validity
Not Before: Jan 2 13:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47a2bc460cfbd0b5504653c76ba32a7253399123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:2d:c1:77:6c:23:96:b3:3b:ba:ef:de:cb:
d7:d4:67:78:37:0c:5d:ee:4b:cc:01:1b:b1:c6:1c:
c9:c2:ea:80:53:1e:67:20:2d:30:2e:2a:6e:d8:0f:
0f:cc:e7:2b:fd:fd:a6:31:b7:e7:60:9f:21:42:44:
45:19:9d:57:e5:65:05:41:78:99:a1:e1:05:55:79:
ae:ea:b9:51:c3:7d:f0:30:0a:0d:c2:7a:94:f2:d8:
ac:42:44:28:7f:da:c5:8c:a9:2c:9c:8f:9d:44:f3:
00:d3:06:7f:69:97:42:6e:12:b5:7b:93:3b:f9:0e:
f4:c3:15:b9:ab:03:2d:a9:be:0e:dd:4d:ff:cd:6e:
17:7a:9e:31:74:27:68:7c:0a:e4:7f:46:04:3f:4e:
d9:5e:8a:c2:f2:94:2c:74:cd:de:26:a4:55:47:fb:
a7:4c:62:fa:16:14:9f:88:64:57:0d:b4:4a:c2:8b:
9c:8f:a0:60:d2:8d:7b:3c:48:cc:4c:b9:70:1d:92:
6d:8b:ec:ad:0f:bb:52:24:a8:d8:62:2d:00:c2:a9:
08:36:5a:80:1d:4c:e1:43:71:7d:fc:72:9d:e1:57:
62:ca:0d:aa:5a:4f:97:25:df:0b:b2:3f:6a:86:92:
a3:0d:ff:cc:e3:7d:65:6f:43:0b:17:d1:a7:16:87:
37:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:A2:BC:46:0C:FB:D0:B5:50:46:53:C7:6B:A3:2A:72:53:39:91:23
X509v3 Authority Key Identifier:
keyid:51:40:B5:CB:59:86:08:41:26:F6:8D:60:32:31:6D:3B:1B:57:69:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UUC1y1mGCEEm9o1gMjFtOxtXaW4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/R6K8Rgz70LVQRlPHa6MqclM5kSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/d19f2d-9659-48b1-b1e8-de13a552df63/1/UUC1y1mGCEEm9o1gMjFtOxtXaW4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.101.76.0/22
IPv6:
2001:67c:11bc::/48
2a06:1b80::/29
Signature Algorithm: sha256WithRSAEncryption
0d:52:f8:7d:f6:62:49:6a:8a:55:54:bc:a9:76:0c:7b:40:29:
91:65:be:74:b2:95:fa:a7:e0:bc:43:f4:06:aa:a1:87:53:b3:
c4:6b:89:82:9e:a0:08:67:66:85:be:67:2b:5c:c3:20:d8:c7:
31:03:7e:fb:ea:6d:b7:17:c6:80:5a:08:61:3a:74:ed:55:b8:
e9:15:84:e4:ca:e2:f5:42:f1:18:3e:a7:61:82:0f:8c:85:a3:
0c:a9:5d:3a:44:1f:a8:b3:18:11:4c:6c:f3:c6:97:17:d6:c1:
b8:ab:5e:59:ce:46:60:59:8f:8b:5b:0c:e1:75:ff:c9:77:d8:
51:99:05:53:7f:a3:72:26:4d:c3:ed:67:33:34:a9:73:c7:74:
1f:40:e3:f1:82:0a:78:38:58:dc:97:8f:1b:e7:3a:0f:be:8e:
9c:a7:58:59:d5:32:ce:4d:6e:2d:68:28:cb:34:67:85:04:50:
2a:62:68:26:f2:6f:50:80:df:3b:69:7f:15:c7:16:f3:f0:57:
f3:47:61:9f:a6:0f:2d:f0:c9:b1:84:5e:fa:d7:99:37:0d:ac:
ef:76:5e:12:4c:4d:e3:2f:4a:48:92:1a:f3:68:57:17:32:a0:
1f:ac:1d:5c:b0:20:9a:1d:72:40:c4:51:69:2a:d0:bf:1c:80:
dc:fc:7e:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:01 2023 by rpki-client on console.sobornost.net