Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/PCjUUT7PT1dr3yHlfuz0HY79gVc.roa
File: PCjUUT7PT1dr3yHlfuz0HY79gVc.roa (raw, json)
Hash identifier: Sd97pb67XBPfCnubMd6GF/gShjeCFR9XNWEwxXmuNGk=
Subject key identifier: 3C:28:D4:51:3E:CF:4F:57:6B:DF:21:E5:7E:EC:F4:1D:8E:FD:81:57
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 0185A6BBD097320C2FF1F6E63EE0EBB09DB8
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/PCjUUT7PT1dr3yHlfuz0HY79gVc.roa
Signing time: Thu 12 Jan 2023 16:06:44 +0000
ROA not before: Thu 12 Jan 2023 16:06:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 31727
IP address blocks: 185.207.132.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:bb:d0:97:32:0c:2f:f1:f6:e6:3e:e0:eb:b0:9d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Jan 12 16:06:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c28d4513ecf4f576bdf21e57eecf41d8efd8157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:fb:0e:ad:e8:ab:b9:50:b9:4b:97:a4:ce:b4:
59:8e:76:5d:55:7f:71:f1:71:b2:a0:3c:0d:97:f3:
f1:6f:c2:7e:f4:b8:ed:55:11:53:0b:ff:8a:35:38:
a0:db:27:5b:f8:d2:67:15:40:a8:02:ee:ad:4a:2f:
74:fb:c8:36:f5:d4:4b:29:80:17:74:a5:5e:f5:67:
0a:aa:16:9c:78:3f:a6:07:85:75:89:7d:89:24:0d:
06:ed:42:a6:92:84:6e:18:ab:58:c2:ad:60:47:f0:
6d:13:ea:78:9b:c7:f5:4d:94:76:31:92:96:fe:47:
f8:69:39:6a:a9:c4:6b:d8:70:40:41:52:29:f8:90:
88:6c:7c:fb:9d:6e:0a:ee:a2:8f:1c:09:64:b0:c2:
a1:08:72:ce:75:d0:da:4e:91:5c:7f:54:d6:77:03:
d0:82:dd:51:da:0c:af:94:c6:d4:39:9d:e6:3b:5b:
11:d3:a9:6c:d2:68:8f:a2:16:17:d9:1e:69:0c:40:
eb:c7:af:73:5e:44:18:71:34:4a:eb:ca:ae:09:00:
8a:e0:4a:af:11:23:02:97:2b:3f:13:b7:8f:22:6a:
31:84:04:0d:53:b1:ae:06:94:cd:d4:de:b3:bc:e4:
a0:e3:1e:13:7d:d6:33:ab:7d:bd:ea:3d:55:24:7a:
f9:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:28:D4:51:3E:CF:4F:57:6B:DF:21:E5:7E:EC:F4:1D:8E:FD:81:57
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/PCjUUT7PT1dr3yHlfuz0HY79gVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.132.0/22
Signature Algorithm: sha256WithRSAEncryption
29:08:04:47:aa:87:f2:ed:8f:9d:23:a1:c5:86:77:cb:82:51:
81:ae:bf:1c:ab:0c:45:6b:55:8e:db:12:c8:32:9d:d0:03:34:
ff:ce:04:db:07:42:0c:a2:c6:02:4e:89:08:82:80:21:28:a2:
67:6d:84:d8:5e:9c:78:58:e7:6c:f2:7b:d7:c9:e5:94:50:45:
84:73:1f:c5:0d:7e:3b:06:de:1a:d0:d5:a6:74:96:f2:e4:d9:
7b:de:29:fb:dc:c6:32:21:39:91:0a:43:4a:14:b5:e1:88:75:
68:fe:6a:6f:de:ce:da:b1:c6:1d:a1:88:ff:30:33:90:f6:f0:
8e:73:d8:bc:14:b4:da:a3:00:02:ef:56:9c:8a:ec:bd:a5:88:
08:a4:91:c0:93:6b:bc:da:c3:65:1a:00:c8:e6:94:87:3e:fd:
f9:59:e3:cf:0f:de:58:63:7c:dc:7e:f6:c0:53:62:47:fe:1c:
a6:f4:fb:d8:9e:53:5e:7c:a0:c2:36:a5:14:34:9d:2c:07:ef:
de:db:a8:20:08:f1:f0:fc:c9:54:b8:fa:ba:be:68:f2:c0:96:
38:8b:cc:39:a9:e9:be:4a:da:f7:a6:e3:c7:a9:c1:70:1b:9c:
39:44:96:f4:c7:b9:cb:55:48:ab:79:3e:d6:6e:14:29:8b:0f:
22:f0:9c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net