Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/3aba7e-1d50-472f-8db7-6912192134e9/1/k2NCr64tLODf0_uVILXhkhBdQl0.roa
File: k2NCr64tLODf0_uVILXhkhBdQl0.roa (raw, json)
Hash identifier: fHzN3eqCDObOYScHZWR1brJT+rlyup91TquNR41zPis=
Subject key identifier: 93:63:42:AF:AE:2D:2C:E0:DF:D3:FB:95:20:B5:E1:92:10:5D:42:5D
Certificate issuer: /CN=752b0d72bf0743bf2cdc78ba1f53e9a988f9af1e
Certificate serial: 0186EF8AF727006953C35389E9A7B7BCAD45
Authority key identifier: 75:2B:0D:72:BF:07:43:BF:2C:DC:78:BA:1F:53:E9:A9:88:F9:AF:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dSsNcr8HQ78s3Hi6H1PpqYj5rx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/3aba7e-1d50-472f-8db7-6912192134e9/1/k2NCr64tLODf0_uVILXhkhBdQl0.roa
Signing time: Fri 17 Mar 2023 12:28:27 +0000
ROA not before: Fri 17 Mar 2023 12:28:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48708
IP address blocks: 185.202.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:ef:8a:f7:27:00:69:53:c3:53:89:e9:a7:b7:bc:ad:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=752b0d72bf0743bf2cdc78ba1f53e9a988f9af1e
Validity
Not Before: Mar 17 12:28:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=936342afae2d2ce0dfd3fb9520b5e192105d425d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5a:1b:8a:8b:8c:d4:63:1c:f1:d4:bf:2b:25:
1b:f6:90:41:60:df:44:6f:30:83:ed:a0:9d:71:7d:
10:91:a1:f3:7b:03:7f:2f:f5:4a:24:05:04:c7:3e:
07:c0:10:49:33:cb:77:31:98:92:14:8c:42:18:96:
0d:c2:36:02:31:7b:f5:0d:06:00:ea:7c:5a:a3:22:
83:4d:9d:1f:69:dc:c5:c6:c1:82:d4:e5:19:ca:e9:
7a:5b:22:ff:6a:55:d5:01:dd:62:ea:19:35:7d:c8:
58:77:94:f3:fd:65:80:ff:f5:7e:9d:5c:ec:c0:6c:
18:6f:6a:ed:c4:8e:7e:06:9f:88:4c:3a:91:11:34:
df:3e:33:b9:89:6e:a2:91:60:17:f3:93:7e:b7:38:
6b:48:df:9b:43:d7:7e:44:47:d1:0b:11:f3:a4:3d:
d0:cc:e3:ce:39:04:0c:52:7b:ed:9b:1d:a8:04:91:
d4:d3:ac:78:f6:23:e4:b0:7c:6d:99:c5:f3:62:1b:
22:ee:ff:c3:9b:05:48:32:d7:9d:52:a3:c7:aa:91:
67:c4:ca:e8:3d:d0:88:9a:95:4e:c0:a0:cb:37:de:
30:af:82:97:7c:2a:e2:60:74:a8:00:9e:3b:50:de:
95:eb:62:c2:63:2e:ef:00:91:b2:2d:a4:20:71:ad:
7c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:63:42:AF:AE:2D:2C:E0:DF:D3:FB:95:20:B5:E1:92:10:5D:42:5D
X509v3 Authority Key Identifier:
keyid:75:2B:0D:72:BF:07:43:BF:2C:DC:78:BA:1F:53:E9:A9:88:F9:AF:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dSsNcr8HQ78s3Hi6H1PpqYj5rx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/3aba7e-1d50-472f-8db7-6912192134e9/1/k2NCr64tLODf0_uVILXhkhBdQl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/3aba7e-1d50-472f-8db7-6912192134e9/1/dSsNcr8HQ78s3Hi6H1PpqYj5rx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.79.0/24
Signature Algorithm: sha256WithRSAEncryption
80:10:6c:16:68:69:28:6c:ea:0c:06:20:e3:51:a5:1c:a8:ac:
61:ea:fa:0f:b2:a1:46:f6:96:da:8b:8b:f7:fe:f9:b2:fb:3e:
c7:02:32:b0:52:40:84:0a:ec:4d:b7:ab:3e:d4:2d:37:84:ab:
f1:26:12:2e:2c:7f:d8:b0:20:ed:a6:20:51:5f:d1:16:eb:2c:
99:c7:3b:4f:39:84:cf:a0:2c:37:f3:15:df:68:ca:a0:a0:92:
e2:90:be:d1:00:a1:3b:85:53:f5:7d:c2:50:18:d2:0b:f0:cd:
3e:15:66:2d:33:53:11:c5:40:57:f2:da:cd:70:fa:81:e9:5e:
ac:d8:5f:40:5c:e4:91:13:62:16:38:41:b7:08:32:74:d3:ee:
59:e6:50:01:26:e7:82:a1:88:61:ef:e7:e2:8b:7c:6c:fd:32:
f8:7d:f6:c3:e7:9c:8b:9e:25:d1:23:e7:49:65:b1:d5:77:3f:
9c:d1:1c:56:f6:cd:99:98:78:f4:ea:d5:be:e6:31:92:9f:84:
03:b7:68:58:bc:ab:a8:f9:76:32:4e:96:12:8b:12:82:06:99:
04:81:0d:83:17:7f:1c:12:ef:20:ac:9d:2a:f9:aa:c5:d2:91:
26:97:bc:41:82:8b:ad:38:22:44:91:e2:ac:32:da:c6:21:d6:
5d:c1:e6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:47 2024 by rpki-client on console-fra.rpki-client.org