Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/RlMHe2ZkAehKcb_LZCGj2NzDjDA.roa
File: RlMHe2ZkAehKcb_LZCGj2NzDjDA.roa (raw, json)
Hash identifier: rtZCm7lFXlG0n8/4HSHAtJXYBVyOaXYab0LKL2u0F68=
Subject key identifier: 46:53:07:7B:66:64:01:E8:4A:71:BF:CB:64:21:A3:D8:DC:C3:8C:30
Certificate issuer: /CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Certificate serial: 01875ADE2B3441108ED4AC5EF1193924E900
Authority key identifier: EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/RlMHe2ZkAehKcb_LZCGj2NzDjDA.roa
Signing time: Fri 07 Apr 2023 08:38:42 +0000
ROA not before: Fri 07 Apr 2023 08:38:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30860
IP address blocks: 185.255.120.0/24 maxlen: 24
185.255.122.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5a:de:2b:34:41:10:8e:d4:ac:5e:f1:19:39:24:e9:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef738909f94d9968436bb4e09a2d47cc7901733c
Validity
Not Before: Apr 7 08:38:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4653077b666401e84a71bfcb6421a3d8dcc38c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2e:cd:8d:91:5f:f9:b7:d0:13:e8:cf:a4:4c:
4d:74:2e:7b:08:76:f9:90:ae:54:97:68:fb:27:a6:
b9:87:73:22:8f:90:79:0f:98:7a:16:cf:c8:38:cd:
60:ab:22:0d:8f:6e:61:77:be:db:fd:36:e4:b9:db:
df:cc:df:7c:ae:f6:17:f0:9a:01:63:cd:90:4b:d7:
e0:92:57:10:cc:dd:71:85:41:07:e1:94:98:16:7a:
17:d9:2d:96:e9:8a:da:17:62:1c:34:f8:43:8d:0a:
95:b9:5a:a9:10:62:e4:1f:a6:19:37:c8:d9:f0:f7:
5b:ee:02:94:be:6a:5f:f4:da:5a:08:5b:3d:05:b9:
b7:34:53:76:f1:2c:62:1f:a1:f4:84:3e:aa:3b:70:
8b:bc:cf:28:dd:67:58:f4:d5:6e:bb:84:b1:03:73:
5d:e4:f0:36:f3:8a:06:e7:d7:95:8a:0c:28:cf:9e:
63:cd:33:3d:c0:18:21:33:ca:3f:0a:11:b2:61:bc:
f7:31:df:91:95:d8:e2:2f:da:89:b8:66:60:7f:b5:
4d:36:16:b0:9b:57:c2:22:e9:46:1d:50:2c:b3:72:
97:62:97:df:eb:3e:01:73:f6:c1:18:5b:93:d3:41:
36:ec:40:20:0b:55:ae:63:d1:03:c6:32:71:92:8d:
84:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:53:07:7B:66:64:01:E8:4A:71:BF:CB:64:21:A3:D8:DC:C3:8C:30
X509v3 Authority Key Identifier:
keyid:EF:73:89:09:F9:4D:99:68:43:6B:B4:E0:9A:2D:47:CC:79:01:73:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/73OJCflNmWhDa7Tgmi1HzHkBczw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/RlMHe2ZkAehKcb_LZCGj2NzDjDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/29a016-f614-4bc3-9362-5ee30989b6eb/1/73OJCflNmWhDa7Tgmi1HzHkBczw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.255.120.0/24
185.255.122.0/24
Signature Algorithm: sha256WithRSAEncryption
23:e3:0d:a1:db:e3:d9:82:c8:6f:ee:ed:18:c1:e4:f6:2f:64:
7f:aa:98:1b:1c:33:46:35:d9:9a:6f:40:08:13:39:d1:e5:04:
06:e9:9e:95:0e:36:46:53:b5:5d:5c:37:2d:00:51:89:f4:05:
b0:03:81:da:d0:64:a9:28:52:18:39:a4:ac:a1:04:3f:6e:0c:
af:c6:41:5a:63:fe:32:64:ab:1d:50:45:39:7c:da:55:f3:2e:
c9:12:58:fc:a4:39:06:9b:66:28:bc:8b:e5:d6:b9:7e:84:97:
85:46:2b:b1:2a:16:f2:26:f5:cb:99:ad:32:cd:f9:9c:7d:11:
79:a2:ee:3d:e5:f5:a8:97:0c:d3:80:95:e4:83:96:4c:6c:ba:
71:e0:6a:be:03:c3:14:c5:b6:14:7f:e4:35:4d:1a:ed:97:26:
84:14:0f:c5:b5:5b:13:e9:11:7d:73:0f:90:fb:cf:d0:fd:a5:
70:4f:53:8e:b7:a2:d4:2a:a3:f3:79:5a:17:30:97:a3:cd:b8:
07:7c:f5:a2:cc:2c:20:f0:b7:78:69:f3:7a:ad:58:06:68:ee:
d5:58:0c:9c:a3:c7:2d:00:7b:b5:99:32:99:29:fe:8c:46:08:
37:fd:5a:30:27:39:68:00:0c:c6:fc:4c:b8:ac:a1:d8:35:dd:
f6:b5:8a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:14:22 2024 by rpki-client on console.sobornost.net