Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/d7zRfr03l4LsXNG8MC1LPiY5y0s.roa
File: d7zRfr03l4LsXNG8MC1LPiY5y0s.roa (raw, json)
Hash identifier: 5P8y1A2vqfKVn2qA9dylWi8lWv9FIaWCrpxMpAZwBoA=
Subject key identifier: 77:BC:D1:7E:BD:37:97:82:EC:5C:D1:BC:30:2D:4B:3E:26:39:CB:4B
Certificate issuer: /CN=1b982883e1dfbf4633e08c0b58c85e89ffc32101
Certificate serial: 018B0FD38B9136906EC6BB4E71E04CA105DE
Authority key identifier: 1B:98:28:83:E1:DF:BF:46:33:E0:8C:0B:58:C8:5E:89:FF:C3:21:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/d7zRfr03l4LsXNG8MC1LPiY5y0s.roa
Signing time: Sun 08 Oct 2023 15:06:43 +0000
ROA not before: Sun 08 Oct 2023 15:06:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61424
IP address blocks: 185.48.248.0/23 maxlen: 23
2a04:b540::/36 maxlen: 36
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0f:d3:8b:91:36:90:6e:c6:bb:4e:71:e0:4c:a1:05:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b982883e1dfbf4633e08c0b58c85e89ffc32101
Validity
Not Before: Oct 8 15:06:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77bcd17ebd379782ec5cd1bc302d4b3e2639cb4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:21:83:8a:e6:fc:42:df:9e:8e:e2:86:90:fb:
24:9a:1e:72:6f:a8:dc:fa:87:d7:ca:91:7f:bf:a8:
89:d5:a0:b0:34:aa:c6:c1:ad:f2:8d:52:f0:98:b6:
43:ce:bf:00:11:94:8d:9c:3c:40:64:af:3e:af:17:
f2:3c:32:a4:e5:7f:57:46:f0:ce:ef:38:e9:13:ff:
55:c4:7d:38:55:8e:a0:d4:bb:7f:3a:79:8c:10:e5:
aa:78:c6:15:89:af:53:88:9b:ca:14:9d:55:d8:85:
4f:9f:4e:d4:6e:30:58:4f:03:3a:81:f2:da:4e:21:
15:78:aa:77:f1:94:fa:10:5b:2a:9d:41:97:28:40:
ab:1c:c8:ed:22:a3:01:a3:e4:50:cb:03:c3:ce:ca:
07:12:bd:77:1f:52:de:70:22:c7:e5:2e:a4:5f:b7:
58:3a:c8:27:35:82:3e:90:c2:3c:16:6e:66:0e:4b:
8d:c7:45:6d:da:da:77:f8:c8:35:57:a4:19:a9:af:
a7:32:32:56:6a:68:38:4b:e9:d4:84:cf:1f:cc:e9:
c1:fd:72:95:05:d1:d9:81:65:dd:08:f6:67:22:2d:
e1:85:c6:14:dc:38:fd:e2:3e:3f:6b:84:24:1b:ec:
39:a8:02:16:92:15:a8:63:f7:b9:06:5b:39:5c:fb:
2b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BC:D1:7E:BD:37:97:82:EC:5C:D1:BC:30:2D:4B:3E:26:39:CB:4B
X509v3 Authority Key Identifier:
keyid:1B:98:28:83:E1:DF:BF:46:33:E0:8C:0B:58:C8:5E:89:FF:C3:21:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G5gog-Hfv0Yz4IwLWMheif_DIQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/d7zRfr03l4LsXNG8MC1LPiY5y0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/57860a-dd5e-46e8-9ecb-d078eec82b2a/1/G5gog-Hfv0Yz4IwLWMheif_DIQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.48.248.0/23
IPv6:
2a04:b540::/36
Signature Algorithm: sha256WithRSAEncryption
5c:5c:fa:1d:dc:55:a0:69:90:aa:1b:04:f7:11:b9:6a:16:32:
9f:77:00:81:62:72:fc:d2:57:d8:d8:e1:49:90:79:ce:61:7b:
70:e0:60:96:b8:bb:98:b4:cd:e2:25:17:20:7a:a9:3e:ea:76:
e1:3e:da:ca:d8:ad:05:0c:7d:cd:3c:85:37:ad:c5:c2:98:3b:
51:1f:c6:27:2e:23:09:ec:3c:07:98:f9:5b:55:1a:89:94:7d:
5c:8c:0b:34:fc:5e:ac:12:9f:51:25:a1:6b:0f:22:85:5c:b8:
2e:e6:1e:f6:cc:76:35:5c:be:6f:72:9b:4e:61:fc:a1:cc:48:
26:7e:e1:d6:17:d8:b8:93:f4:fb:2c:8f:d7:88:57:61:2d:f9:
d2:c3:08:e0:8e:8d:8c:ab:8b:7a:23:8b:ff:99:2e:35:be:b8:
d9:be:09:56:61:1c:20:9b:99:e5:f0:89:fa:e6:0e:21:af:38:
79:72:f9:55:2d:41:df:da:67:96:8c:fe:f4:9c:33:8c:da:27:
b7:e1:d3:c8:a4:a4:b3:0b:1e:93:91:92:02:f2:75:fc:0f:8a:
40:8d:de:b9:f2:e6:ec:e6:07:82:60:30:06:7b:9e:ae:c1:9c:
63:74:c5:7d:0a:74:c2:70:66:41:26:9e:fb:e9:21:3b:6a:8c:
8b:f7:49:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:22 2024 by rpki-client on console-ams.rpki-client.org