Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/ecdb70-5e6d-4d4a-bc27-9e90f02c9313/1/RjYxgQTPbKLa1PVrZ6oQfuMRcTg.roa
File: RjYxgQTPbKLa1PVrZ6oQfuMRcTg.roa (raw, json)
Hash identifier: pbPBbXlodl56cHz0RwjaxmSJharyzSoIAs4az3qK2/0=
Subject key identifier: 46:36:31:81:04:CF:6C:A2:DA:D4:F5:6B:67:AA:10:7E:E3:11:71:38
Certificate issuer: /CN=b264bd0c3c02a4cbc2cf74a9367e3cd530798726
Certificate serial: 0186B8DC25BD190F1D5BA2E055942396F10D
Authority key identifier: B2:64:BD:0C:3C:02:A4:CB:C2:CF:74:A9:36:7E:3C:D5:30:79:87:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/smS9DDwCpMvCz3SpNn481TB5hyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/ecdb70-5e6d-4d4a-bc27-9e90f02c9313/1/RjYxgQTPbKLa1PVrZ6oQfuMRcTg.roa
Signing time: Mon 06 Mar 2023 21:38:00 +0000
ROA not before: Mon 06 Mar 2023 21:38:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 185.147.126.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:b8:dc:25:bd:19:0f:1d:5b:a2:e0:55:94:23:96:f1:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b264bd0c3c02a4cbc2cf74a9367e3cd530798726
Validity
Not Before: Mar 6 21:38:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4636318104cf6ca2dad4f56b67aa107ee3117138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:19:52:7c:87:23:1d:11:21:f2:fe:1e:6e:87:
f5:36:91:b5:32:8b:50:d8:80:4c:83:2a:6c:4d:73:
97:b2:1a:48:59:85:3d:ae:9d:b3:17:e8:a5:d4:7e:
50:17:e3:91:36:26:71:45:9f:09:34:3f:b7:eb:13:
28:83:4b:e8:48:f9:f5:37:5c:cf:3d:c4:7c:9f:d7:
04:02:54:16:63:67:fa:be:9f:38:0a:e2:d4:d6:37:
78:e7:35:3f:9a:0d:40:49:fa:c1:c2:7c:27:45:f2:
21:dd:40:07:b6:4e:57:93:88:cf:38:cf:00:40:75:
0c:69:a6:58:df:b3:98:d9:6e:68:c1:68:6d:60:d8:
da:cb:03:93:d1:81:fa:5f:c5:75:d4:97:02:80:a4:
a2:42:03:c9:9a:00:eb:39:81:87:a8:34:31:e1:4e:
c6:ef:6a:7c:be:0b:ee:e3:26:43:65:2d:bb:78:45:
e9:04:df:5b:46:d9:da:11:a0:0b:b0:2c:17:17:5c:
94:74:d2:ff:8d:a6:45:32:bd:f1:99:a4:93:1c:5c:
31:b2:e3:12:63:fd:56:83:6a:de:3e:93:d0:45:84:
3e:0a:05:68:65:94:71:dc:c3:00:e1:10:a8:0d:42:
fb:fe:80:bf:a3:56:07:87:88:00:4b:7c:f5:b0:9b:
ed:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:36:31:81:04:CF:6C:A2:DA:D4:F5:6B:67:AA:10:7E:E3:11:71:38
X509v3 Authority Key Identifier:
keyid:B2:64:BD:0C:3C:02:A4:CB:C2:CF:74:A9:36:7E:3C:D5:30:79:87:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/smS9DDwCpMvCz3SpNn481TB5hyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ecdb70-5e6d-4d4a-bc27-9e90f02c9313/1/RjYxgQTPbKLa1PVrZ6oQfuMRcTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/ecdb70-5e6d-4d4a-bc27-9e90f02c9313/1/smS9DDwCpMvCz3SpNn481TB5hyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.126.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:2e:8c:2b:90:92:fb:a3:72:ba:bf:4f:99:9f:57:df:52:b0:
7b:3a:8d:2e:3f:1d:fd:d5:69:62:83:d1:51:85:a6:33:ee:37:
a2:e8:b8:43:0e:aa:85:c8:bb:5b:a0:f1:10:e0:30:ee:d9:02:
94:73:94:49:2b:76:58:bb:75:70:76:7c:c3:b8:1d:70:bd:b3:
57:34:a4:4f:f6:0f:e7:b0:09:3e:62:b0:43:46:1b:95:bd:bd:
4a:c2:78:d5:94:35:e6:21:cc:c9:fd:3a:c7:79:97:32:40:2a:
8d:0b:d1:2b:94:30:4b:db:64:3e:a8:0c:8d:7d:73:52:09:39:
a3:ef:b2:b0:8e:27:19:01:94:72:0d:8c:f2:65:c1:d4:b6:44:
b4:a6:58:3a:15:74:d9:61:29:53:d7:9b:14:a8:52:b0:b5:d5:
ba:bf:65:c9:31:73:56:76:7c:16:c7:e6:64:f6:81:6a:3a:e7:
b8:dd:72:4f:29:ec:8f:16:c5:b3:bd:94:9a:7f:51:d1:60:52:
70:10:8f:15:29:2f:03:d2:98:8c:1b:ef:f1:fe:82:bb:c2:04:
a8:2a:59:ca:53:3e:c1:ba:08:de:de:78:f6:d0:d1:76:09:f2:
ab:ab:23:ac:06:28:dd:82:9a:a0:7a:b0:ad:1b:8a:5c:93:bd:
7e:41:33:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:14:58 2024 by rpki-client on console.sobornost.net