Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-4eNqkZzAMUc8fos2wlzt0SZPZA.roa
File: 1-4eNqkZzAMUc8fos2wlzt0SZPZA.roa (raw, json)
Hash identifier: olowIPS8ZgZyt/AtIzXnoBckJzar2EJ5AF8tr/KMiwk=
Subject key identifier: FB:87:8D:AA:46:73:00:C5:1C:F1:FA:2C:DB:09:73:B7:44:99:3D:90
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D82106682C5DAF66DDB2D0417AD4033
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-4eNqkZzAMUc8fos2wlzt0SZPZA.roa
Signing time: Sun 01 Jan 2023 13:25:18 +0000
ROA not before: Sun 01 Jan 2023 13:25:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209524
IP address blocks: 87.120.105.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:82:10:66:82:c5:da:f6:6d:db:2d:04:17:ad:40:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb878daa467300c51cf1fa2cdb0973b744993d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:22:32:82:4c:42:eb:44:38:b0:a7:5d:bb:53:
a3:c7:d7:b9:07:31:cc:7b:37:38:a8:71:dd:66:8d:
94:e4:00:b0:ab:97:87:19:3a:19:9a:23:4d:0b:cf:
ac:cb:21:1d:95:bd:ba:e7:f7:01:9a:78:4a:a3:87:
8e:65:07:c7:6d:8d:16:c7:07:31:47:62:61:c6:28:
9f:76:08:96:9e:8e:17:9b:cb:c1:ed:85:97:05:c4:
2f:f1:bd:53:1b:c6:b1:07:5d:2c:34:e5:81:8b:e6:
28:34:61:01:af:59:32:e0:57:ad:67:a2:3b:15:50:
06:90:60:81:56:cd:71:52:4b:39:d1:d6:00:51:59:
b0:b8:04:40:5e:c1:bb:2d:c1:66:ba:c7:8e:d9:c5:
1b:b9:2d:21:48:05:fa:48:0b:39:af:be:1d:65:a2:
b5:56:26:fc:8c:85:80:06:ce:9a:00:e4:f8:cd:be:
80:a8:08:28:bb:b5:a6:63:67:6b:73:4c:82:6e:38:
a8:d8:bc:33:dc:1a:0c:42:2c:1b:3e:42:e3:db:d6:
31:ca:13:5d:5e:ce:37:cd:bd:03:5c:19:ac:9d:8b:
ab:86:61:82:15:f6:56:1c:46:ee:34:24:75:fd:35:
7e:44:4c:4e:4a:73:bf:cf:9c:8a:a6:82:44:45:cc:
54:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:87:8D:AA:46:73:00:C5:1C:F1:FA:2C:DB:09:73:B7:44:99:3D:90
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-4eNqkZzAMUc8fos2wlzt0SZPZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.105.0/24
Signature Algorithm: sha256WithRSAEncryption
52:81:bd:2a:48:4c:74:56:72:22:1e:87:af:c6:48:55:34:b9:
88:f4:49:c5:56:20:4c:a3:a8:a6:ad:17:1d:56:04:c1:99:6e:
e2:3e:75:bb:63:cb:6a:0a:26:e0:4c:9d:fd:47:e7:6e:ee:e3:
1a:92:db:3f:63:cf:21:81:95:5e:c4:3e:af:d9:e9:42:e3:8d:
29:10:cd:25:37:1e:e4:63:80:71:7e:50:c8:62:7f:f0:42:a7:
94:c6:bc:93:60:ef:46:17:ae:43:dc:d3:5d:6e:cb:f4:32:f5:
c1:be:d0:f3:55:59:0d:43:28:5d:4c:b0:c4:18:22:98:e6:54:
93:de:3c:4a:ce:6d:1d:6d:db:98:a7:08:e6:95:13:59:0c:33:
93:e1:06:b8:93:65:6e:1e:cd:74:3d:ef:82:2f:31:30:b2:07:
17:fe:c0:8c:25:b9:0b:f1:3a:f4:f8:2b:c0:0e:4e:4f:f3:af:
9a:45:2f:f9:29:3b:57:71:3c:05:df:4e:77:2a:0d:63:c3:d4:
ca:a3:36:8e:8c:c2:8d:ab:7f:17:8a:95:40:ed:72:55:98:14:
d0:3e:0e:6e:fb:da:5f:50:89:44:b7:97:83:79:0d:ba:e8:8a:
65:c8:d4:76:87:df:29:15:05:78:73:6a:14:6c:f1:57:34:f5:
26:be:ab:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:46 2024 by rpki-client on console-fra.rpki-client.org