Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/TsmyxzWvwHugY1mmOKbqtuz4OV4.roa
File: TsmyxzWvwHugY1mmOKbqtuz4OV4.roa (raw, json)
Hash identifier: YUoLJjKwsTFGxMHmv5UX6xN7FYpuWxFDIRP2paDQlVU=
Subject key identifier: 4E:C9:B2:C7:35:AF:C0:7B:A0:63:59:A6:38:A6:EA:B6:EC:F8:39:5E
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018CAB2D8D98E1E4F9AA4B887B3B972B8AEE
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/TsmyxzWvwHugY1mmOKbqtuz4OV4.roa
Signing time: Wed 27 Dec 2023 12:08:58 +0000
ROA not before: Wed 27 Dec 2023 12:08:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 123456
IP address blocks: 87.237.165.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ab:2d:8d:98:e1:e4:f9:aa:4b:88:7b:3b:97:2b:8a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Dec 27 12:08:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ec9b2c735afc07ba06359a638a6eab6ecf8395e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e5:eb:bc:b8:6c:04:42:49:38:33:07:87:3f:
5f:d6:8e:71:c0:23:a3:72:a1:82:fb:4d:a0:30:57:
e3:f4:3c:9c:e7:37:11:b8:bf:cd:69:3f:a1:c6:7e:
94:b5:80:de:32:58:56:66:62:4f:ef:9d:56:91:e0:
57:0c:cc:65:9d:3d:8d:ab:7e:8b:00:0c:83:21:6b:
49:63:c1:17:0c:62:1d:77:ec:dc:9d:eb:22:bd:80:
c3:f8:82:e5:b8:14:a5:c9:c6:63:80:d3:7f:85:2c:
d0:de:47:65:06:2d:b5:c3:89:bc:36:65:14:2e:36:
9f:f2:af:f9:65:24:1a:2e:c0:c8:96:ac:c9:8f:60:
a3:c7:d1:4e:ba:56:54:84:0e:01:92:6f:1d:d7:3e:
93:ad:3c:98:b3:31:43:cf:5b:96:58:a6:9f:52:2c:
87:71:39:03:51:3b:61:5b:7d:8a:a0:b4:4c:fb:2a:
d9:66:94:47:0d:ef:25:ca:ca:4a:ba:ca:3c:f3:35:
5d:70:c0:25:ea:9c:f0:e7:12:b7:f6:a3:88:71:0a:
e2:21:7c:0b:8a:8f:c7:8c:b4:25:89:8f:67:8e:42:
34:bf:19:97:93:11:7f:d4:03:fd:e4:28:94:25:86:
a5:36:dd:0a:03:24:ab:14:16:5a:51:4c:e6:e3:7e:
1e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C9:B2:C7:35:AF:C0:7B:A0:63:59:A6:38:A6:EA:B6:EC:F8:39:5E
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/TsmyxzWvwHugY1mmOKbqtuz4OV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.237.165.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:76:77:53:42:83:04:45:78:16:18:cd:df:6d:c0:2f:6e:b7:
b8:af:64:66:5e:ea:e3:42:e6:31:11:6c:fb:d2:12:dd:71:11:
86:d4:97:b8:c0:56:11:d4:37:b4:8b:d1:25:be:47:35:3d:40:
48:db:50:2c:bb:a4:cd:8a:7e:c6:27:41:23:7e:0a:8e:de:1e:
a5:09:54:0e:ca:e4:b9:c8:42:dd:c1:9e:8e:cf:3d:0b:6c:b8:
fe:89:4e:ff:f6:df:09:88:2b:80:83:de:d1:28:5e:07:44:09:
33:14:b7:ea:64:8a:33:5a:9e:15:4a:cb:2c:21:83:8f:29:6f:
2a:c4:9d:42:a9:48:ce:65:3b:d7:d0:7a:3b:aa:10:d4:2d:a7:
96:22:f8:a4:4b:4e:d2:18:7b:a5:5a:64:3d:d1:36:75:e6:d3:
0b:92:fc:9d:89:05:3e:5b:61:e3:6a:b4:a9:13:fa:e7:49:aa:
37:4a:c9:9c:52:0a:9a:0a:29:32:84:73:82:f9:a1:23:d7:9d:
2d:fe:0b:a8:11:02:48:6f:c5:56:3c:cd:75:c4:3d:c9:e3:82:
66:12:c2:50:50:20:56:3d:87:56:09:b2:12:a6:86:a3:5e:fa:
86:39:a3:bb:d1:ba:6c:eb:c6:f2:8d:ab:8e:53:a1:22:37:7d:
f0:e3:9d:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:20 2024 by rpki-client on console-fra.rpki-client.org