Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/xqk0z7CvGf6ILFZ2vH4tYVtvvs8.roa
File: xqk0z7CvGf6ILFZ2vH4tYVtvvs8.roa (raw, json)
Hash identifier: Oli52s1VXg7sjHNBJKmPCeT6SMXfSffcrV2ajSbJSHQ=
Subject key identifier: C6:A9:34:CF:B0:AF:19:FE:88:2C:56:76:BC:7E:2D:61:5B:6F:BE:CF
Certificate issuer: /CN=1cbbfa49877bc5d9e4cf446950fd14279929f49a
Certificate serial: 01856F0B64D3DE79EF88E7AC318F2935D5BE
Authority key identifier: 1C:BB:FA:49:87:7B:C5:D9:E4:CF:44:69:50:FD:14:27:99:29:F4:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HLv6SYd7xdnkz0RpUP0UJ5kp9Jo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/xqk0z7CvGf6ILFZ2vH4tYVtvvs8.roa
Signing time: Sun 01 Jan 2023 20:34:55 +0000
ROA not before: Sun 01 Jan 2023 20:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1935
IP address blocks: 164.81.0.0/16 maxlen: 16
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:64:d3:de:79:ef:88:e7:ac:31:8f:29:35:d5:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cbbfa49877bc5d9e4cf446950fd14279929f49a
Validity
Not Before: Jan 1 20:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c6a934cfb0af19fe882c5676bc7e2d615b6fbecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e6:00:8b:9d:7b:b6:d6:01:5f:18:35:f1:ab:
32:47:ed:9d:e2:6a:c5:20:72:7b:b8:ef:be:f2:2e:
b8:b3:08:ea:0c:99:dc:c9:7e:f8:eb:0b:09:ce:d7:
37:e0:66:08:a9:37:96:56:50:07:a0:a4:a0:0d:22:
c2:93:7a:8f:86:26:8f:e6:76:0c:ef:ac:1d:ee:e7:
7a:38:6d:03:fd:d5:a4:4d:5b:45:2e:a7:04:13:4e:
12:5c:09:52:b7:b1:2b:45:88:2b:aa:73:31:17:97:
d7:1f:94:59:e1:0e:ab:54:21:95:79:02:27:2c:1d:
85:6b:a5:c5:04:85:0f:db:3b:2d:03:01:a3:bd:0f:
b1:c4:51:d8:36:d8:64:09:a6:27:af:75:f1:6f:0c:
01:54:c2:0a:4b:3c:21:9f:87:93:75:ba:79:de:49:
01:24:b9:7f:4e:07:99:da:d8:9b:cc:4d:9a:4f:fe:
af:db:54:6d:a6:d2:79:87:aa:d7:d0:a2:f9:c1:be:
71:81:6e:d2:6c:e5:b2:c5:b3:b7:17:f4:f3:c2:be:
18:c4:c6:b3:84:00:75:44:d3:ed:9c:3c:a4:63:a7:
e5:a1:66:dc:f1:a1:9c:ff:12:aa:86:df:a7:5a:83:
23:a6:dc:86:28:33:2d:5f:68:85:91:5f:3f:42:95:
55:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:A9:34:CF:B0:AF:19:FE:88:2C:56:76:BC:7E:2D:61:5B:6F:BE:CF
X509v3 Authority Key Identifier:
keyid:1C:BB:FA:49:87:7B:C5:D9:E4:CF:44:69:50:FD:14:27:99:29:F4:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HLv6SYd7xdnkz0RpUP0UJ5kp9Jo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/xqk0z7CvGf6ILFZ2vH4tYVtvvs8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/851cac-e1d8-4571-82a6-46bf762618e7/1/HLv6SYd7xdnkz0RpUP0UJ5kp9Jo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.81.0.0/16
Signature Algorithm: sha256WithRSAEncryption
1f:44:43:ad:b6:ad:45:e0:c1:b4:e9:02:0d:b1:68:67:eb:95:
04:f8:c1:63:6b:e1:ae:17:02:2e:90:ef:22:a6:0f:7b:a2:35:
21:ea:25:8e:7a:28:e0:9c:63:46:ee:7c:78:c0:8b:ad:33:a4:
60:b4:e8:6e:8d:7f:9d:f3:50:2d:3e:f3:be:2a:3b:44:43:b0:
5a:23:1d:b4:1d:23:af:50:42:70:73:a1:8f:2c:31:f0:31:f3:
55:26:1e:a1:67:a8:6e:f2:3f:d4:4b:9e:49:81:35:ca:0d:70:
8f:36:0b:2a:e7:66:d6:a1:18:6a:ad:0b:4a:83:fe:7b:fc:ee:
9c:6a:65:d0:b2:ec:3d:39:b4:16:bd:55:2c:49:7a:6b:7a:d4:
7f:df:77:c5:89:ef:ed:d6:f7:ac:a4:b9:2c:45:35:31:f0:5b:
97:77:8f:6f:d3:b9:db:ca:a3:18:b6:fd:ff:79:79:9e:23:98:
a6:7d:4d:e9:bd:56:48:e3:22:cd:28:a6:17:11:4d:00:9d:90:
7e:8e:16:15:1c:4a:58:04:a6:04:20:1c:d1:de:4a:3f:f1:8e:
f9:cf:75:2c:0e:50:d3:99:b1:be:04:29:59:23:e4:30:7c:03:
1b:b7:e8:18:3f:83:67:34:3f:85:24:a1:e2:17:1e:13:28:cb:
a5:78:bd:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:13:27 2024 by rpki-client on console.sobornost.net