Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/L1R_7w_wakUJ0oiVqQDhEXO8naw.roa
File: L1R_7w_wakUJ0oiVqQDhEXO8naw.roa (raw, json)
Hash identifier: k8fpw2yNo+cXVnPVdJTuDC7fW983hT0oVvlGZtaLz0A=
Subject key identifier: 2F:54:7F:EF:0F:F0:6A:45:09:D2:88:95:A9:00:E1:11:73:BC:9D:AC
Certificate issuer: /CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Certificate serial: 01856FC2613795EDF3AFCE6834E147DD8EF7
Authority key identifier: 3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/L1R_7w_wakUJ0oiVqQDhEXO8naw.roa
Signing time: Sun 01 Jan 2023 23:54:47 +0000
ROA not before: Sun 01 Jan 2023 23:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3301
IP address blocks: 194.246.6.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:c2:61:37:95:ed:f3:af:ce:68:34:e1:47:dd:8e:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ee6cecffd9b8bba18d474e7b3993e0a1d14dbb3
Validity
Not Before: Jan 1 23:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2f547fef0ff06a4509d28895a900e11173bc9dac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:58:97:60:65:1e:de:89:c5:30:72:a5:91:1b:
d6:d7:f5:8b:a5:92:4b:16:d3:99:99:61:2b:f1:26:
bb:74:53:4e:1e:12:3a:89:4a:a9:fd:4e:37:dd:70:
8a:b3:fa:f4:f3:67:39:9c:10:bd:8c:c3:16:1c:98:
3d:75:e2:11:a5:6d:34:66:f9:46:9a:7b:85:b4:e8:
1d:b5:31:55:5c:96:5d:21:f8:e6:2e:23:5e:e4:d2:
20:59:cc:09:69:88:bd:67:76:39:3b:2c:a1:d6:99:
55:70:6f:65:36:92:eb:61:e8:54:43:e1:ae:6e:c3:
c0:1d:4c:c1:93:c6:1a:4c:87:8c:48:ef:4b:6e:fa:
48:fa:60:ee:c4:bf:fb:72:31:6d:7e:f4:d3:2e:d6:
9c:f5:e0:5c:32:f8:4f:94:79:5b:57:7c:c8:c9:86:
dd:06:94:4f:e7:29:6d:02:59:3a:97:74:cc:7c:89:
90:4a:26:bc:dc:7e:aa:d4:f9:fd:40:cc:f5:09:00:
d6:7b:53:f4:1e:25:ef:06:80:a3:18:d1:f1:4d:7d:
0c:1c:d0:74:67:b5:94:5f:93:31:a6:5b:f9:5f:74:
7e:79:8c:4d:6a:1c:17:94:43:f4:18:b0:36:f5:4c:
d7:fd:1a:39:4b:52:6b:ef:c6:51:22:44:c4:0b:c6:
66:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:54:7F:EF:0F:F0:6A:45:09:D2:88:95:A9:00:E1:11:73:BC:9D:AC
X509v3 Authority Key Identifier:
keyid:3E:E6:CE:CF:FD:9B:8B:BA:18:D4:74:E7:B3:99:3E:0A:1D:14:DB:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PubOz_2bi7oY1HTns5k-Ch0U27M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/L1R_7w_wakUJ0oiVqQDhEXO8naw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e61caa-2500-4388-a9fa-7324913975d5/1/PubOz_2bi7oY1HTns5k-Ch0U27M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.6.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ac:14:9d:80:f9:4f:16:6a:70:82:2a:7e:ce:07:6f:6e:43:
de:53:b9:15:9c:87:f0:6d:2e:33:c4:6c:64:b4:3d:a3:35:31:
f3:3f:3b:00:3e:dc:27:51:25:24:eb:3b:c1:c1:a8:29:c2:90:
98:d3:c7:0c:aa:54:28:fa:3f:a5:09:ec:d7:23:c9:c1:02:b4:
a8:07:3e:95:ad:8b:ca:c6:64:1c:bd:68:b3:a6:06:4d:e7:73:
cd:69:5c:e1:7e:42:c4:92:16:e9:60:b6:63:97:6f:47:54:d2:
d1:72:b8:ef:f8:b8:b0:ce:74:2d:d5:a6:29:12:21:7a:87:d5:
31:b6:f7:ba:b9:19:6c:3e:bf:4e:98:87:ee:89:ad:22:c2:c9:
a9:b7:2f:fd:90:44:a4:d1:aa:e6:0f:5e:b2:82:af:f3:84:84:
5e:c5:bf:8e:06:95:7a:65:dd:ea:89:cf:59:0e:7d:62:07:17:
2d:64:d3:17:76:e7:ca:bc:7a:94:0c:b0:bb:32:e9:17:8c:d4:
4a:2c:04:d9:88:5f:64:7f:7a:30:75:dc:b7:74:92:78:c2:ea:
d5:c6:30:97:87:13:5f:38:8d:fa:6a:a1:60:28:f8:c5:93:a1:
ea:fa:ad:10:7b:13:c2:8f:d3:28:3d:c9:cb:5d:49:9d:8b:0d:
d2:f3:f1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 18:02:09 2024 by rpki-client on console.sobornost.net