Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/l9tEJ8TfAhlF4iWf0redWeKKvYs.roa
File: l9tEJ8TfAhlF4iWf0redWeKKvYs.roa (raw, json)
Hash identifier: p6USFv8NIEEbEjp38hKcDmZ8wbVOqwOI7JkvaJKEd18=
Subject key identifier: 97:DB:44:27:C4:DF:02:19:45:E2:25:9F:D2:B7:9D:59:E2:8A:BD:8B
Certificate issuer: /CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Certificate serial: 018C3520DB3D1AE78328423EFBA83CEF990F
Authority key identifier: FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/l9tEJ8TfAhlF4iWf0redWeKKvYs.roa
Signing time: Mon 04 Dec 2023 13:59:54 +0000
ROA not before: Mon 04 Dec 2023 13:59:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63023
IP address blocks: 185.240.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:35:20:db:3d:1a:e7:83:28:42:3e:fb:a8:3c:ef:99:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa2e72abf7b1728fda6aa0b0413d8854812ea361
Validity
Not Before: Dec 4 13:59:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97db4427c4df021945e2259fd2b79d59e28abd8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:21:51:07:b5:23:bd:4a:a1:44:86:85:cf:ab:
6c:d2:c1:ea:c6:b0:30:7c:7b:48:ed:dd:83:8d:af:
ef:4c:f4:25:d4:a2:a0:53:42:77:2d:1d:14:94:68:
b8:2a:4a:28:cd:80:a0:87:60:15:eb:36:28:fa:55:
a5:8a:70:c9:9c:1e:59:68:cd:a2:1a:17:d2:e4:6f:
53:04:34:17:f2:f9:b3:b1:99:09:12:f7:89:bc:2a:
83:e8:5e:e4:08:f8:f5:30:18:a2:da:4d:d6:38:f8:
24:a7:3f:49:74:d8:21:2a:fd:e2:d2:c4:32:95:d1:
e1:0f:96:74:59:d5:75:9e:64:0e:6b:6c:ff:47:22:
e2:7f:fe:53:ef:f7:7f:4b:cb:4a:59:e5:d8:f8:91:
6d:82:2e:a4:bc:fb:75:2c:ea:22:ed:2b:a6:39:b4:
d4:e6:e9:82:65:e7:c3:60:9d:db:f6:b2:b0:22:4a:
a6:e7:24:7b:f8:2f:75:a0:6b:32:e2:b4:4f:b0:c6:
ab:2a:af:59:cf:6e:04:cd:5e:3f:20:fa:fe:2d:a9:
c2:15:c0:76:2a:70:95:6e:df:7e:7c:0e:8c:90:77:
7f:50:73:8f:59:25:26:ba:e3:0c:de:2c:50:14:ce:
a4:48:64:cd:b3:0e:e7:ad:ff:2e:ea:89:4e:bd:11:
29:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:DB:44:27:C4:DF:02:19:45:E2:25:9F:D2:B7:9D:59:E2:8A:BD:8B
X509v3 Authority Key Identifier:
keyid:FA:2E:72:AB:F7:B1:72:8F:DA:6A:A0:B0:41:3D:88:54:81:2E:A3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-i5yq_exco_aaqCwQT2IVIEuo2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/l9tEJ8TfAhlF4iWf0redWeKKvYs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f61591-7ca8-4a9a-899f-a366da251a83/1/1-i5yq_exco_aaqCwQT2IVIEuo2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.161.0/24
Signature Algorithm: sha256WithRSAEncryption
31:20:7a:07:f1:3c:75:57:a0:4f:c8:9a:b5:1b:c4:d2:b8:da:
7b:96:49:91:77:c0:e6:12:e2:ff:92:50:00:c9:c3:7d:8c:ce:
57:42:f3:24:30:15:1d:6b:a6:a9:30:0b:1a:00:f7:6b:70:c0:
81:27:14:25:1a:36:5d:79:ad:66:c4:be:ec:e9:6a:af:da:46:
2b:f2:fc:77:bf:cd:0f:ad:0a:41:c7:83:a0:1c:4b:0c:04:16:
de:f1:96:6e:a6:ee:29:21:00:05:81:23:77:4b:1b:a0:93:d1:
86:f0:3a:85:b5:06:fb:93:a1:75:90:dd:59:34:ae:ae:e6:78:
16:32:9c:9d:a5:7e:b7:c9:20:1c:41:2f:13:e4:2a:7e:74:8e:
3d:97:ec:4d:2c:a7:69:b6:ec:cd:d6:18:92:ee:4f:4b:17:2a:
2a:aa:66:fa:81:c2:87:87:df:eb:71:78:63:c2:fc:83:3f:49:
6a:d7:b6:dd:c9:ac:59:d9:e1:16:c7:33:0a:6a:ba:fa:a0:f5:
94:1a:89:57:68:3b:5f:cc:a4:c8:df:b7:13:b9:ea:df:b3:c5:
32:34:32:75:51:25:8d:d6:93:e9:d9:39:82:bd:cd:ef:72:5e:
2c:b5:62:7d:3d:d9:19:82:48:e0:59:8e:8d:2d:a2:09:ba:a0:
35:21:73:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:49 2024 by rpki-client on console.sobornost.net