Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/lHaAXpodmISp8jAE6l27jpvDjr0.roa
File: lHaAXpodmISp8jAE6l27jpvDjr0.roa (raw, json)
Hash identifier: UNak9G7FLaG7cagaF98FrWoiGVz80/LJWS4d6L1a+2s=
Subject key identifier: 94:76:80:5E:9A:1D:98:84:A9:F2:30:04:EA:5D:BB:8E:9B:C3:8E:BD
Certificate issuer: /CN=2f08df165d497d7a9b99e0e71f15ba07d184615a
Certificate serial: 0188F82C0F3080AC46011A343B51B7C25756
Authority key identifier: 2F:08:DF:16:5D:49:7D:7A:9B:99:E0:E7:1F:15:BA:07:D1:84:61:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LwjfFl1JfXqbmeDnHxW6B9GEYVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/lHaAXpodmISp8jAE6l27jpvDjr0.roa
Signing time: Mon 26 Jun 2023 14:46:57 +0000
ROA not before: Mon 26 Jun 2023 14:46:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 193.36.179.0/24 maxlen: 24
193.36.185.0/24 maxlen: 24
193.36.187.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f8:2c:0f:30:80:ac:46:01:1a:34:3b:51:b7:c2:57:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f08df165d497d7a9b99e0e71f15ba07d184615a
Validity
Not Before: Jun 26 14:46:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9476805e9a1d9884a9f23004ea5dbb8e9bc38ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:62:8f:be:e6:24:aa:64:7b:de:7a:24:58:b2:
c3:dd:49:44:6a:4f:af:9d:8d:d9:98:7e:55:39:15:
e7:4d:f9:48:92:ab:59:39:52:df:85:27:46:a9:a1:
ef:0b:6a:52:81:59:35:c4:02:fb:29:de:d3:b4:40:
01:88:fe:8b:06:d1:63:dd:93:d7:b5:9e:d4:db:9f:
a5:b6:fb:b5:81:e2:69:96:4b:8c:03:06:b5:f3:f5:
fa:49:fe:cf:f9:59:0c:4e:30:0c:1e:c5:4c:9b:22:
24:b0:b6:3d:24:ac:4a:1e:fc:e9:d0:22:a8:6a:1c:
57:36:1c:ae:9d:5a:f0:00:1f:3f:fe:1a:28:42:fe:
1c:1e:60:b6:b0:5a:ef:25:2c:ca:f4:3c:c3:be:fd:
81:1b:67:57:e0:be:9e:19:83:fb:6c:8c:9a:15:b4:
86:80:84:a0:71:0e:e3:09:77:98:30:bd:15:4b:a6:
e6:c5:6a:70:48:38:b1:1b:b2:c2:22:0e:69:6a:69:
ea:9e:64:22:b4:cf:d4:d7:fc:f7:d5:1b:c2:ea:b3:
57:53:f4:82:0a:e9:3a:7b:18:ac:2a:a7:09:2d:69:
bf:1a:34:64:99:a6:e3:f3:2e:e9:3c:4a:34:9c:ca:
c7:b5:d2:ca:76:a3:c0:fc:6e:de:5c:2d:4b:f0:df:
52:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:76:80:5E:9A:1D:98:84:A9:F2:30:04:EA:5D:BB:8E:9B:C3:8E:BD
X509v3 Authority Key Identifier:
keyid:2F:08:DF:16:5D:49:7D:7A:9B:99:E0:E7:1F:15:BA:07:D1:84:61:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LwjfFl1JfXqbmeDnHxW6B9GEYVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/lHaAXpodmISp8jAE6l27jpvDjr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8d0360-fbc2-46eb-9ac2-cac3e42ae03f/1/LwjfFl1JfXqbmeDnHxW6B9GEYVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.179.0/24
193.36.185.0/24
193.36.187.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e6:bc:cf:98:28:04:51:c4:79:49:9e:2b:96:f7:75:98:ba:
f5:38:08:55:d1:77:3f:cb:74:e8:c2:ed:5a:c6:1b:ea:56:90:
fa:c7:55:71:76:5d:cf:95:43:f3:73:58:47:6c:52:6f:79:eb:
85:af:bf:09:8c:54:f2:b0:a5:15:c4:7a:f6:38:bb:fe:b8:22:
49:fc:c9:14:c9:32:39:62:08:d1:17:f8:7b:c4:3d:a3:ad:84:
64:af:76:cc:9b:7a:c2:4e:b7:ca:55:00:17:bc:66:da:c9:7e:
6d:96:83:4b:2f:5f:48:59:3a:8b:b5:7f:c6:3c:d0:2c:7e:ea:
1f:b8:51:fb:a3:82:64:45:53:43:24:d6:a3:27:50:6f:a4:49:
69:87:7e:da:35:18:64:f8:50:59:6f:c3:08:00:85:de:ce:73:
39:a7:50:f6:76:7c:61:0f:eb:c3:23:e7:6e:c1:70:a3:be:5c:
d1:ac:be:95:ef:46:ca:0e:75:ca:47:b7:5c:53:13:39:2f:23:
1c:07:df:3d:52:c2:15:81:13:69:9c:e4:a7:2a:39:5a:4a:fc:
a1:6d:ca:fa:01:a0:ec:1a:17:e0:42:6c:e6:76:01:d7:dd:a4:
85:40:32:0a:f3:2b:ce:6c:d5:7a:bf:50:ec:ce:7d:8f:05:04:
de:3c:1b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 07:05:06 2024 by rpki-client on console.sobornost.net