Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/I4D61eZh1RCXIdsEere3HuhHfcs.roa
File: I4D61eZh1RCXIdsEere3HuhHfcs.roa (raw, json)
Hash identifier: V6jufxeSOsO/6FEG795zdPA7PtfJLEfiPYlYGcLlFqQ=
Subject key identifier: 23:80:FA:D5:E6:61:D5:10:97:21:DB:04:7A:B7:B7:1E:E8:47:7D:CB
Certificate issuer: /CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Certificate serial: 018963D7C3B2A65CC937905F3C093296244B
Authority key identifier: C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/I4D61eZh1RCXIdsEere3HuhHfcs.roa
Signing time: Mon 17 Jul 2023 12:33:51 +0000
ROA not before: Mon 17 Jul 2023 12:33:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204572
IP address blocks: 185.246.144.0/22 maxlen: 22
2a0d:8580::/32 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:63:d7:c3:b2:a6:5c:c9:37:90:5f:3c:09:32:96:24:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c54dd882852cc4586b1fee34c0501d5db7d60f0b
Validity
Not Before: Jul 17 12:33:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2380fad5e661d5109721db047ab7b71ee8477dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:75:b0:a3:19:4b:20:08:86:88:61:ca:b9:08:
08:61:c5:81:7b:c6:11:bd:20:24:40:58:2b:59:98:
61:dc:68:62:ae:bc:73:64:51:1d:c9:34:46:3c:07:
e9:7c:74:1b:2a:e8:5c:dc:27:e7:ca:b1:96:c8:ba:
82:be:4a:e4:9e:be:52:a5:f8:d1:c6:53:f2:92:e8:
2e:95:e3:a1:41:66:d9:06:22:3a:f9:ed:7b:e0:7c:
6b:81:df:dd:ed:0a:54:46:4f:b3:df:7c:35:8e:67:
29:65:f5:09:f5:bb:ae:98:aa:e4:a9:f3:08:0c:19:
b8:89:e1:9e:21:b8:6a:67:da:38:bc:a6:9e:e7:2e:
cf:91:07:d8:74:0b:3b:4e:af:25:e4:b2:1a:94:49:
ae:33:1e:da:3e:ca:d0:a3:b0:7b:9f:64:45:a8:a5:
73:a6:15:96:08:f9:0e:21:21:ff:e6:70:3f:e6:88:
48:4f:86:7e:07:7e:e9:65:58:d1:9f:d2:fb:5e:7e:
f0:04:c8:22:88:e0:7e:0c:28:de:48:bb:12:fa:48:
1e:00:05:5e:bd:37:d6:9d:ab:68:09:04:d1:e1:28:
66:66:71:06:e3:14:49:81:60:d1:87:50:85:54:27:
55:fc:23:7e:1f:92:b8:38:22:af:47:0c:26:ad:48:
c2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:80:FA:D5:E6:61:D5:10:97:21:DB:04:7A:B7:B7:1E:E8:47:7D:CB
X509v3 Authority Key Identifier:
keyid:C5:4D:D8:82:85:2C:C4:58:6B:1F:EE:34:C0:50:1D:5D:B7:D6:0F:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xU3YgoUsxFhrH-40wFAdXbfWDws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/I4D61eZh1RCXIdsEere3HuhHfcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/64879b-6c68-4597-9fab-6fbe293171fe/1/xU3YgoUsxFhrH-40wFAdXbfWDws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.246.144.0/22
IPv6:
2a0d:8580::/32
Signature Algorithm: sha256WithRSAEncryption
1b:73:03:c0:1a:02:3f:14:af:a1:0e:a9:b9:ef:54:11:27:b7:
74:03:93:c9:17:a2:93:54:e3:e5:ec:8a:78:02:9d:eb:c2:af:
35:be:ff:2e:e9:c4:22:50:ec:7f:18:dc:67:dd:0b:a2:73:7a:
d1:82:bf:62:0c:4f:ec:d7:bc:bc:2f:00:19:00:c9:4b:f8:de:
d0:a9:46:34:e4:66:0a:1f:a1:8b:ce:25:81:27:ae:c3:e5:5f:
4d:f1:63:f5:5a:44:70:18:80:10:3b:b6:1c:b7:de:78:51:db:
48:94:96:93:51:c8:7a:06:a3:64:11:9b:13:4d:1e:f0:0f:7f:
be:46:09:bf:fb:66:9b:07:28:55:ab:82:d1:8d:43:3a:a1:3b:
ff:8d:51:96:a1:d5:04:4b:55:02:ca:48:e6:ad:67:33:85:b1:
ae:48:c4:9d:ba:8c:bb:cb:9f:fe:6b:9a:d7:a6:be:c0:c3:fd:
2b:94:ae:55:4c:2c:2c:40:25:30:fd:fc:10:9d:22:b2:6a:7f:
33:b6:bf:c6:c8:de:c9:2a:59:b3:86:9e:5a:cc:1b:78:c4:9b:
51:12:1a:4d:ab:8d:fa:ea:02:09:d0:f0:28:79:e1:8f:f6:7c:
de:1e:c0:ab:e4:96:5e:f7:96:d9:57:5d:09:46:dd:15:cc:25:
73:8f:40:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:57 2024 by rpki-client on console.sobornost.net