Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/a1FD8X16KEYezdRlHhmSKpOF5Z0.roa
File: a1FD8X16KEYezdRlHhmSKpOF5Z0.roa (raw, json)
Hash identifier: L+yErvRS8nAQYwsRXOoHMx0cKhnw9oICizyKoYKI24g=
Subject key identifier: 6B:51:43:F1:7D:7A:28:46:1E:CD:D4:65:1E:19:92:2A:93:85:E5:9D
Certificate issuer: /CN=2f2b26c552563006213cfe4814a9dc2a0fc16f43
Certificate serial: 01890444AF2D1CF39016D13EB2D429E4EF8A
Authority key identifier: 2F:2B:26:C5:52:56:30:06:21:3C:FE:48:14:A9:DC:2A:0F:C1:6F:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LysmxVJWMAYhPP5IFKncKg_Bb0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/a1FD8X16KEYezdRlHhmSKpOF5Z0.roa
Signing time: Wed 28 Jun 2023 23:09:17 +0000
ROA not before: Wed 28 Jun 2023 23:09:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8404
IP address blocks: 185.131.204.0/24 maxlen: 24
2a12:bfc0::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:04:44:af:2d:1c:f3:90:16:d1:3e:b2:d4:29:e4:ef:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2b26c552563006213cfe4814a9dc2a0fc16f43
Validity
Not Before: Jun 28 23:09:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b5143f17d7a28461ecdd4651e19922a9385e59d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:af:ee:52:64:3f:9b:ee:be:68:20:cb:92:48:
88:90:89:86:e4:ad:5b:96:87:4b:96:fe:72:00:99:
ae:e3:7d:9c:41:12:76:03:81:a5:e9:28:62:ce:f7:
45:51:9b:da:c4:38:fd:c3:97:93:b9:3e:cf:0d:04:
f6:8e:9b:b2:4a:8a:d6:5c:43:0d:4e:a7:fa:55:68:
fc:b8:c6:a6:20:cd:b1:95:94:fa:fa:25:ed:72:85:
e5:ec:31:8b:93:3b:f8:b6:90:3f:27:e9:a9:1e:e9:
68:1e:a6:30:bc:e8:38:d0:15:66:74:e3:a7:46:c5:
1c:93:9b:6d:79:97:b8:74:fe:9a:e6:cf:55:69:86:
2d:05:b4:53:5b:16:40:19:29:75:af:a4:a7:f5:bb:
62:57:4b:cc:26:3a:d3:e9:1a:1f:7f:2b:fd:1f:ca:
ec:49:3b:86:2c:1e:b9:ed:bc:78:14:7f:75:71:34:
48:85:27:a1:38:6c:3e:d4:bd:c8:75:4f:7b:7b:d1:
32:24:8d:6e:07:b6:d1:19:b7:d6:5c:81:88:9e:f2:
ae:1c:d9:ca:be:df:ec:f9:7c:fd:19:cc:34:37:9f:
e9:dd:7f:d2:d3:fd:46:92:9c:e7:78:31:f7:9f:9d:
fb:a4:5e:7a:5e:68:05:bd:c6:5c:bc:c3:5e:0f:2c:
d6:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:51:43:F1:7D:7A:28:46:1E:CD:D4:65:1E:19:92:2A:93:85:E5:9D
X509v3 Authority Key Identifier:
keyid:2F:2B:26:C5:52:56:30:06:21:3C:FE:48:14:A9:DC:2A:0F:C1:6F:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LysmxVJWMAYhPP5IFKncKg_Bb0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/a1FD8X16KEYezdRlHhmSKpOF5Z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/4cc115-af65-4913-9d69-1c35b839379b/1/LysmxVJWMAYhPP5IFKncKg_Bb0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.131.204.0/24
IPv6:
2a12:bfc0::/48
Signature Algorithm: sha256WithRSAEncryption
5a:6c:8c:6a:93:c6:36:71:7d:db:ce:2e:cb:6c:62:d6:8a:64:
e1:e5:c0:e3:92:e8:ff:a7:dd:14:0a:d0:a8:ee:e1:a2:2a:65:
9b:63:11:86:7a:db:be:e0:b6:6e:0c:62:18:75:d3:c6:88:cf:
e0:c1:d8:61:b4:a6:82:58:9b:ea:6e:fc:83:c9:ff:57:1b:de:
51:4b:80:f6:b0:d1:0f:f6:db:62:64:fa:53:b3:6e:91:d1:81:
96:d6:7c:e7:45:99:bc:70:a0:52:54:02:a3:74:60:44:61:6e:
90:b3:24:65:f5:6e:24:f2:2f:3a:b2:f1:83:72:fa:e7:70:a5:
f4:a8:c5:42:35:e1:2d:6b:5f:37:81:2e:c2:94:88:4d:bb:cd:
3a:f3:ba:68:9e:9c:07:94:51:49:83:dd:19:6f:00:94:c7:43:
be:8a:f6:17:22:29:6c:14:51:f8:62:f0:8a:77:6b:1f:25:11:
43:4b:b4:a6:31:96:ae:d2:3a:69:f0:8f:19:52:a9:02:04:f4:
af:70:8b:ef:92:7c:71:0f:b8:60:db:72:e0:ca:dc:fe:3e:32:
01:41:53:33:1f:f4:7b:6b:ad:48:6e:a0:3b:56:13:6e:f6:63:
53:fc:36:da:a8:b7:29:fb:1f:ee:b3:db:7e:5a:e6:3c:13:e7:
38:d5:e1:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:05 2023 by rpki-client on console.sobornost.net