Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/329d41-f4ad-413c-bc07-38953f9ad057/1/m-odKElQuIzYnnJLte3wbsoc5rc.roa
File: m-odKElQuIzYnnJLte3wbsoc5rc.roa (raw, json)
Hash identifier: Qj/8AntiZeK/aOpaSe9SP/4U6QHjBSr7bYHok7biRdw=
Subject key identifier: 9B:EA:1D:28:49:50:B8:8C:D8:9E:72:4B:B5:ED:F0:6E:CA:1C:E6:B7
Certificate issuer: /CN=c30d03e64676e720a4ff55179e196fec6591886b
Certificate serial: 018FCEFF9764A8662DE4C836258C76765D5F
Authority key identifier: C3:0D:03:E6:46:76:E7:20:A4:FF:55:17:9E:19:6F:EC:65:91:88:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ww0D5kZ25yCk_1UXnhlv7GWRiGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/329d41-f4ad-413c-bc07-38953f9ad057/1/m-odKElQuIzYnnJLte3wbsoc5rc.roa
Signing time: Fri 31 May 2024 14:13:27 +0000
ROA not before: Fri 31 May 2024 14:13:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50840
IP address blocks: 185.41.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 14:31:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ce:ff:97:64:a8:66:2d:e4:c8:36:25:8c:76:76:5d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c30d03e64676e720a4ff55179e196fec6591886b
Validity
Not Before: May 31 14:13:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9bea1d284950b88cd89e724bb5edf06eca1ce6b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:57:80:ec:ce:26:26:d6:9b:55:93:46:b0:e2:
5f:36:98:25:73:1a:98:33:04:52:62:a2:6f:84:25:
9b:cf:b6:10:c6:82:c5:2a:42:76:95:2f:95:91:3f:
aa:21:4a:d2:43:da:c8:39:a6:de:53:16:4b:32:c3:
9e:39:9a:8e:ec:92:45:a0:0e:ee:78:b0:78:ee:c6:
5e:b4:95:f6:4b:d9:5f:30:a3:e0:05:ff:e1:c0:df:
f5:0a:15:7d:c1:f8:bd:9b:85:1d:8c:9b:c2:0e:41:
c6:90:d0:4a:13:69:99:f4:88:63:e1:36:32:b2:5e:
26:c4:06:8d:16:30:85:f8:55:67:8d:9b:03:34:2a:
eb:40:ba:0b:43:89:af:51:02:8c:c3:51:0a:dc:e9:
f7:0a:4f:a1:8d:d7:1a:52:c3:29:7b:8c:58:e2:86:
9c:6b:a0:55:c0:b2:ac:32:d3:6f:1e:a2:89:b2:cc:
e8:14:ea:55:3e:9a:cd:2c:6c:89:02:4e:f5:39:b2:
07:9c:21:f2:8e:cb:33:e2:ed:ec:97:b1:62:fa:72:
a6:59:6e:c7:5b:fb:d2:fa:6f:a4:e3:bd:29:6e:87:
cb:18:29:47:a2:ed:12:1e:95:45:fa:1f:be:75:70:
b4:65:e8:30:8c:85:8f:76:7b:bf:eb:78:ff:65:83:
5c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:EA:1D:28:49:50:B8:8C:D8:9E:72:4B:B5:ED:F0:6E:CA:1C:E6:B7
X509v3 Authority Key Identifier:
keyid:C3:0D:03:E6:46:76:E7:20:A4:FF:55:17:9E:19:6F:EC:65:91:88:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ww0D5kZ25yCk_1UXnhlv7GWRiGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/329d41-f4ad-413c-bc07-38953f9ad057/1/m-odKElQuIzYnnJLte3wbsoc5rc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/329d41-f4ad-413c-bc07-38953f9ad057/1/ww0D5kZ25yCk_1UXnhlv7GWRiGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.41.70.0/24
Signature Algorithm: sha256WithRSAEncryption
28:15:c3:41:bd:44:96:03:63:6f:6d:0f:d5:b1:a0:a7:a4:1e:
85:02:4c:f9:05:66:05:72:09:4e:c7:4c:ed:ba:e9:fc:45:82:
18:c2:b9:ce:80:a0:25:2f:b1:78:c5:74:28:c5:0f:81:10:62:
33:14:df:44:96:d0:8b:07:55:b2:df:f9:b7:c7:0e:36:c3:8d:
46:bb:4a:a2:4d:34:8f:a1:0d:25:ae:bc:f2:7d:a7:5f:e4:5d:
cb:13:5e:6d:54:6b:9e:00:3f:40:cb:3e:cc:78:4f:f9:cf:3d:
d4:ad:9b:08:81:bc:19:2b:6f:45:5c:50:b1:a7:7c:f8:76:eb:
86:03:1e:f2:3c:7f:23:68:2a:8e:a2:9e:1b:20:bb:63:c7:d3:
9e:2a:47:24:7f:e6:58:11:7e:ef:9b:fe:b0:d7:4e:0b:a3:6e:
51:cd:76:ca:98:3a:d3:01:29:bd:49:97:90:e9:ff:4f:14:1a:
5f:03:ce:5d:08:c6:c3:12:da:cf:14:8c:b6:6d:fc:77:ce:42:
61:23:1d:b9:ca:9d:6d:79:90:ec:dc:ac:a8:1b:fc:02:c9:6a:
ba:71:86:23:63:96:53:dd:d3:1d:ce:68:38:51:d7:19:8e:a0:
39:ea:8e:86:03:31:a1:1f:77:60:db:30:ee:87:51:72:cb:c4:
14:dc:f3:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 22:59:26 2024 by rpki-client on console.sobornost.net