Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/18fGoTpYDh9HnG7Hg-xqVIw0j7o.roa
File: 18fGoTpYDh9HnG7Hg-xqVIw0j7o.roa (raw, json)
Hash identifier: R5WKUcr+5tLtoRvBQkwJnP5vxDdR9P9jJ2Km/iasTng=
Subject key identifier: D7:C7:C6:A1:3A:58:0E:1F:47:9C:6E:C7:83:EC:6A:54:8C:34:8F:BA
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81F2C5690284A18C362BFB8922E584
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/18fGoTpYDh9HnG7Hg-xqVIw0j7o.roa
Signing time: Sun 01 Jan 2023 13:25:10 +0000
ROA not before: Sun 01 Jan 2023 13:25:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51801
IP address blocks: 87.121.122.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:f2:c5:69:02:84:a1:8c:36:2b:fb:89:22:e5:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d7c7c6a13a580e1f479c6ec783ec6a548c348fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fc:13:04:40:74:f9:a6:9e:d9:c6:15:1c:76:
1d:44:4c:66:9c:1f:46:14:72:4c:d7:31:1f:7e:9e:
0a:d8:bb:04:fe:ca:59:88:d1:0e:c8:3b:83:48:51:
a9:5a:57:56:0e:16:d1:1e:be:f6:a5:3a:fa:b9:ac:
11:ef:66:71:c3:72:43:ea:4b:55:0a:c8:11:6c:66:
18:aa:d8:3c:63:da:f2:25:de:64:c7:fe:e6:65:ac:
91:92:aa:f5:ed:ab:01:f8:5f:bd:e1:ef:7e:91:f4:
71:e1:90:d9:a1:6d:d2:ad:a2:f7:68:a1:e0:ea:14:
22:57:9f:42:82:68:fd:8e:3b:d1:68:ee:1d:40:68:
05:15:69:e2:ea:93:b3:56:af:76:ee:65:0f:9c:28:
58:96:f9:1c:67:89:4b:22:83:26:b0:85:54:10:dc:
87:c7:85:e4:77:22:73:14:d6:6f:7f:5a:16:f0:c5:
f4:35:20:3b:fb:f7:01:d2:d4:09:aa:45:61:00:fc:
34:0d:00:af:36:04:6e:23:bd:14:87:f3:43:4b:41:
fb:94:96:5c:6b:c3:02:64:94:ed:48:bf:4e:22:96:
2d:e8:88:f6:bf:8e:1e:4f:7c:03:82:76:e0:66:8b:
1d:06:1c:7c:fd:9d:44:ec:5a:58:71:4a:4b:e0:1a:
38:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:C7:C6:A1:3A:58:0E:1F:47:9C:6E:C7:83:EC:6A:54:8C:34:8F:BA
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/18fGoTpYDh9HnG7Hg-xqVIw0j7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.122.0/23
Signature Algorithm: sha256WithRSAEncryption
8a:ba:92:56:76:6a:35:0a:76:c8:a4:87:65:88:4f:de:cc:76:
33:73:a3:8c:26:43:c6:8f:78:84:15:0f:dd:30:37:0c:85:37:
c3:74:f4:2f:ff:90:22:11:1f:fb:85:7c:3e:22:57:4f:22:50:
ce:d1:54:f5:98:cf:6f:e3:a3:3c:21:cf:6b:a1:d4:ca:91:f6:
4a:74:9c:a0:99:a3:ea:a0:7f:90:cc:01:73:7c:06:c5:01:66:
c5:e9:c8:3b:17:12:53:0f:9c:fc:ee:f2:a0:3b:6b:67:a0:d8:
bf:35:cc:7d:58:7b:4a:e0:17:7c:d3:e1:af:51:4d:7b:fe:6e:
58:ea:b5:83:94:3a:82:a7:1e:52:79:4e:19:73:27:4a:3f:d7:
31:91:f4:14:ce:ab:02:0c:bb:42:0f:22:47:ff:15:c8:38:90:
e5:8a:24:dc:96:11:9e:60:54:21:b4:f6:94:4b:9c:a0:ed:11:
f4:03:e4:ef:1f:be:9d:9e:59:ff:f4:af:21:db:a7:bb:48:c5:
4b:10:e5:5d:91:1e:18:2c:1e:65:cf:16:64:d5:0a:91:33:bd:
09:f1:be:77:18:e6:ca:20:e9:5a:b4:82:25:3d:64:90:f0:11:
a9:73:a0:fd:d6:2a:30:21:1f:e4:49:86:83:42:92:43:4e:49:
21:64:a9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:08 2024 by rpki-client on console-ams.rpki-client.org