Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/dZx6Zy8REGxe2T-n46898E-PPgk.roa
File: dZx6Zy8REGxe2T-n46898E-PPgk.roa (raw, json)
Hash identifier: DqQowra7zsgRYxpnW/eNH8VfnlPbshwRSBEmj7JX/pQ=
Subject key identifier: 75:9C:7A:67:2F:11:10:6C:5E:D9:3F:A7:E3:AF:3D:F0:4F:8F:3E:09
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 0187760E007AFE15D2FD2847457D53B8D4A8
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/dZx6Zy8REGxe2T-n46898E-PPgk.roa
Signing time: Wed 12 Apr 2023 15:20:41 +0000
ROA not before: Wed 12 Apr 2023 15:20:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 94.143.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:76:0e:00:7a:fe:15:d2:fd:28:47:45:7d:53:b8:d4:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Apr 12 15:20:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=759c7a672f11106c5ed93fa7e3af3df04f8f3e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a7:e8:42:ae:61:9f:ba:be:27:07:d5:5d:40:
ea:6c:12:45:2f:b1:e6:67:e2:54:9f:d6:1d:d6:e6:
f9:6e:29:63:61:59:1c:22:da:fd:26:73:00:ed:23:
05:c7:62:b1:68:11:91:61:99:9e:33:cb:73:9a:73:
90:67:07:c0:7e:eb:bf:6e:ac:01:01:e4:6c:71:61:
68:ef:25:95:ec:59:0d:b2:b6:74:d6:5e:a5:2d:a4:
8b:8a:b4:04:a8:c3:5f:46:aa:e8:a8:17:64:e1:01:
dc:f1:ef:18:8a:c2:cb:17:3f:7e:2b:97:3e:f6:f8:
76:ad:7d:9b:0e:8f:79:98:77:51:e0:9b:9a:d6:10:
88:1c:f0:34:ca:ae:b2:95:33:c1:57:9a:b1:5b:0a:
e0:cf:0d:ec:87:ef:24:15:33:d4:d4:25:f1:a0:81:
f7:42:ad:42:26:2b:6b:d7:77:72:b4:32:0d:2c:96:
26:07:ed:25:44:bd:13:e5:01:dd:13:b3:bb:b1:dc:
4c:58:d2:1f:50:79:41:e0:45:fd:33:16:8b:4b:6a:
09:c9:26:be:ce:0f:9e:eb:5d:0d:bb:8e:bd:42:e1:
8d:cc:30:12:e2:14:50:d6:db:56:20:83:25:86:5e:
ea:40:74:e9:27:b1:4b:22:08:4b:72:d1:9f:55:1e:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:9C:7A:67:2F:11:10:6C:5E:D9:3F:A7:E3:AF:3D:F0:4F:8F:3E:09
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/dZx6Zy8REGxe2T-n46898E-PPgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
74:f6:7e:c8:33:a0:2a:97:7f:d2:91:6c:02:28:db:35:e1:18:
f9:e8:8d:99:4f:f5:74:52:0b:bd:f0:36:e5:5f:b6:2f:a3:87:
c3:03:e3:21:7c:53:06:d5:d5:6b:48:9c:2c:ba:81:9b:1a:27:
79:7e:52:54:54:5c:66:fe:8c:72:c3:a8:dd:a5:b1:fa:f2:a5:
dd:8d:d6:ba:f7:31:78:6a:2a:d7:2c:22:00:57:51:b0:6d:93:
68:78:09:b7:b3:40:6d:53:f4:69:34:d5:96:5e:5d:cb:4c:da:
87:d6:e9:6a:ae:05:83:9e:21:e2:92:35:1b:a4:f7:ac:97:e7:
23:26:6e:0d:0a:61:9d:02:59:26:94:92:8a:e6:a2:f3:93:80:
e1:11:16:e7:76:72:d8:e7:0a:b6:1a:ea:48:a0:dd:14:bf:28:
2d:83:be:47:01:b2:1e:af:bf:18:45:48:62:a9:5d:0b:23:a7:
22:c7:dd:02:55:ce:14:29:04:13:fe:f4:dc:68:86:37:1b:db:
f4:45:e7:00:0d:87:cb:6e:0e:92:32:a8:6f:be:d5:31:00:3a:
9e:5b:b6:7a:3e:35:07:b0:ec:fa:1a:4f:60:bc:9f:9c:dd:ed:
34:91:ea:04:a3:c8:e9:c1:56:ae:b2:ad:24:6d:21:3e:2f:66:
5d:78:86:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org