Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/onsB6s-T2ZTZsKT2brX_A1rzky0.roa
File: onsB6s-T2ZTZsKT2brX_A1rzky0.roa (raw, json)
Hash identifier: IBaK2ZQbSZqBU0ar/4TgzFy2N8LDJd7CpoFZKTV2t1o=
Subject key identifier: A2:7B:01:EA:CF:93:D9:94:D9:B0:A4:F6:6E:B5:FF:03:5A:F3:93:2D
Certificate issuer: /CN=1792582aa0b18d6073592f121a6e563fec424672
Certificate serial: 018B8CCC3921D1AAE7158A6DA50F8158D649
Authority key identifier: 17:92:58:2A:A0:B1:8D:60:73:59:2F:12:1A:6E:56:3F:EC:42:46:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F5JYKqCxjWBzWS8SGm5WP-xCRnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/onsB6s-T2ZTZsKT2brX_A1rzky0.roa
Signing time: Wed 01 Nov 2023 21:31:16 +0000
ROA not before: Wed 01 Nov 2023 21:31:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51631
IP address blocks: 185.94.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:8c:cc:39:21:d1:aa:e7:15:8a:6d:a5:0f:81:58:d6:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1792582aa0b18d6073592f121a6e563fec424672
Validity
Not Before: Nov 1 21:31:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a27b01eacf93d994d9b0a4f66eb5ff035af3932d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8c:6d:32:92:0c:eb:52:ce:d6:1b:61:ec:ca:
d4:ea:76:3f:ce:28:55:e2:26:7d:1a:76:67:1f:37:
15:31:dc:51:5a:79:02:43:da:b0:2b:3c:52:c6:26:
7c:08:f4:b0:41:3b:ec:54:e3:ff:e3:e4:63:39:c0:
b2:c7:92:70:56:15:d8:4a:1f:bf:e2:fd:f0:b4:5f:
8d:00:c9:79:9f:f6:2e:ef:3b:20:c1:1b:68:0a:9f:
a1:25:48:30:39:41:fe:d2:b7:ab:c7:61:7c:5a:51:
13:92:c3:35:09:80:2c:65:cc:d2:57:b3:02:6d:e1:
d4:95:63:63:ce:14:cb:34:dd:69:5d:3a:72:9c:7d:
c1:3c:26:78:c6:ba:9f:ea:74:d8:e3:65:71:23:6d:
c4:63:8b:7f:ab:00:e6:c6:91:ad:8a:b1:53:f8:f6:
40:85:b6:de:48:32:d0:97:71:61:8b:39:9f:17:f9:
1d:71:95:9d:99:a4:0a:8b:7e:d2:66:c4:f8:bd:81:
f2:07:d6:78:89:0a:10:4c:42:62:91:40:2f:83:9b:
dc:90:6e:c1:ac:cc:21:9a:6d:9f:8b:b1:86:46:ac:
ac:dd:4b:42:4a:eb:35:86:59:91:56:0c:dc:da:43:
05:d0:75:37:92:a8:fd:8e:92:a8:23:2f:1a:68:f3:
ba:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:7B:01:EA:CF:93:D9:94:D9:B0:A4:F6:6E:B5:FF:03:5A:F3:93:2D
X509v3 Authority Key Identifier:
keyid:17:92:58:2A:A0:B1:8D:60:73:59:2F:12:1A:6E:56:3F:EC:42:46:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F5JYKqCxjWBzWS8SGm5WP-xCRnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/onsB6s-T2ZTZsKT2brX_A1rzky0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/2d3607-be58-4a05-9d68-e84f3b4927ad/1/F5JYKqCxjWBzWS8SGm5WP-xCRnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.94.31.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:18:79:28:f9:8d:3b:36:c4:6f:3a:63:d3:46:99:85:36:db:
d0:17:b6:33:92:f0:7b:bf:6c:4c:2c:88:5a:f3:05:9b:06:5c:
56:8a:1c:44:6b:7a:0d:01:3b:6e:25:12:64:1d:a9:1f:0f:a9:
96:33:fa:40:81:9c:90:37:d4:55:f1:ad:1f:97:51:7d:e1:21:
79:13:24:a3:29:65:8d:6b:d5:6d:e7:f4:a4:2b:13:a2:bb:5b:
42:0a:b2:3d:4d:6f:ad:88:7f:90:87:c9:b1:d5:88:52:bf:bc:
8d:c3:9b:4b:01:98:4b:ee:c4:ef:54:b1:27:80:9e:ac:8e:89:
ac:ec:03:09:d8:22:75:09:06:af:ce:76:fb:e4:7c:71:97:74:
f9:05:ef:9d:08:a7:4c:17:95:09:45:96:30:be:c1:35:ed:ed:
87:ed:4c:1e:ce:f8:8c:6b:bf:9a:8d:ba:b1:17:f1:18:f5:0f:
2d:c7:51:67:49:55:2a:7c:51:a9:98:7b:2c:de:50:52:94:b7:
56:02:6a:c9:9a:0f:48:2e:42:a0:b0:c0:de:ac:0f:af:a4:ac:
41:8a:86:ef:65:d0:89:b2:83:e6:13:7a:cf:4e:d7:c2:a0:fe:
ff:3b:51:a0:29:15:82:cc:54:6c:c6:eb:24:04:28:dc:ac:b6:
a1:ab:13:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:29 2023 by rpki-client on console.sobornost.net