Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/37f56e-a221-4e00-8e14-79d6f53c7a2e/1/ei7-jRkDc2gn-8X0bCcRQTE6upg.roa
File: ei7-jRkDc2gn-8X0bCcRQTE6upg.roa (raw, json)
Hash identifier: TrxMX9rfXG63d9AVBARdPuPI+V+F6Ea0TOrDyfNoRwM=
Subject key identifier: 7A:2E:FE:8D:19:03:73:68:27:FB:C5:F4:6C:27:11:41:31:3A:BA:98
Certificate issuer: /CN=132e1e484fca8e9528df6ac1483056c88786771d
Certificate serial: 0189F49EB20216A7A2615361915020C148CE
Authority key identifier: 13:2E:1E:48:4F:CA:8E:95:28:DF:6A:C1:48:30:56:C8:87:86:77:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ey4eSE_KjpUo32rBSDBWyIeGdx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/37f56e-a221-4e00-8e14-79d6f53c7a2e/1/ei7-jRkDc2gn-8X0bCcRQTE6upg.roa
Signing time: Mon 14 Aug 2023 15:16:28 +0000
ROA not before: Mon 14 Aug 2023 15:16:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62153
IP address blocks: 195.85.249.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:9e:b2:02:16:a7:a2:61:53:61:91:50:20:c1:48:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=132e1e484fca8e9528df6ac1483056c88786771d
Validity
Not Before: Aug 14 15:16:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a2efe8d1903736827fbc5f46c271141313aba98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:08:1c:33:f5:58:7f:5c:9a:9f:66:d4:54:4a:
93:92:d9:9a:8c:5d:3e:77:dc:84:4c:a3:34:0f:96:
95:7b:9a:dc:56:3d:9e:3e:c2:f3:7e:e4:ed:ea:3b:
95:b7:b1:0e:84:b8:8d:81:39:59:69:9e:90:9d:5c:
09:5f:72:1a:32:d7:4c:cf:11:59:f4:e9:17:2f:49:
5c:e6:33:6e:62:70:af:51:a4:3f:bc:c8:7a:9b:83:
37:62:fa:be:77:22:f3:f6:e7:29:09:99:6b:00:ab:
b9:19:6e:55:f4:2b:de:1a:fe:57:20:95:d0:dd:7e:
1b:a3:ed:b6:64:46:e5:45:bd:32:94:91:fa:3e:e0:
5e:8e:dc:1d:61:7a:88:98:b1:6d:91:fa:f9:c2:a6:
e9:a4:41:dd:7f:e5:0e:07:95:9b:2f:ec:73:af:58:
6a:0e:70:5e:a4:26:92:1f:6d:72:c5:cc:48:bc:69:
b2:a7:f2:c1:67:c2:01:f1:a7:f3:43:47:05:b3:37:
13:13:81:ae:72:db:81:48:70:61:64:16:8c:d2:17:
38:77:4e:bb:ab:ca:3d:4c:0b:f5:32:92:3a:0f:c6:
05:23:5d:fc:df:6b:5a:84:32:26:42:b0:a6:01:a7:
f8:02:dc:51:69:67:c5:be:f4:5d:6f:e7:ca:4d:2b:
f4:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:2E:FE:8D:19:03:73:68:27:FB:C5:F4:6C:27:11:41:31:3A:BA:98
X509v3 Authority Key Identifier:
keyid:13:2E:1E:48:4F:CA:8E:95:28:DF:6A:C1:48:30:56:C8:87:86:77:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ey4eSE_KjpUo32rBSDBWyIeGdx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/37f56e-a221-4e00-8e14-79d6f53c7a2e/1/ei7-jRkDc2gn-8X0bCcRQTE6upg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/37f56e-a221-4e00-8e14-79d6f53c7a2e/1/Ey4eSE_KjpUo32rBSDBWyIeGdx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.249.0/24
Signature Algorithm: sha256WithRSAEncryption
02:5d:eb:5b:2a:b9:18:02:d3:5c:ed:a4:43:66:cc:90:31:d7:
9b:ed:a9:82:47:70:f4:81:1f:d9:07:0c:fb:3d:86:a4:5a:7c:
54:45:06:3e:85:67:4a:11:a0:a8:53:f2:04:df:89:46:c3:c6:
6c:79:29:1b:98:c7:10:2f:ed:dd:05:71:9a:70:b7:6c:ab:5d:
91:4e:42:df:ff:aa:8e:80:f4:d1:68:a2:cf:6c:5e:6f:fe:65:
e4:89:01:31:98:06:de:d9:28:62:97:6c:2d:5e:08:04:f2:56:
2c:9a:54:a6:b2:94:38:52:bc:30:a8:dc:5e:43:f2:2e:16:3c:
f0:f0:70:7f:61:e9:19:ac:40:3e:a0:fe:79:bd:c0:36:60:6b:
cb:f8:fb:e7:1b:7c:67:ef:38:3e:6c:87:89:af:e2:cf:c8:3f:
23:19:8a:fc:a1:43:70:81:b7:9b:be:7b:de:d0:96:32:fe:21:
ec:0a:a5:bb:1a:dd:70:5d:da:3a:af:79:ea:08:9a:35:cb:21:
d5:08:a8:d0:c1:95:8e:8e:be:16:0c:64:c2:94:44:38:cb:95:
f2:f0:a3:3b:75:2f:ab:eb:b5:b7:5d:b5:63:34:64:33:02:07:
b0:04:88:ce:19:2c:cd:d1:64:07:8a:f3:4d:4b:8e:86:85:03:
b3:96:85:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:14:23 2024 by rpki-client on console-fra.rpki-client.org