Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/9FrrmcXGaik45ywxXwlVk0ha41g.roa
File: 9FrrmcXGaik45ywxXwlVk0ha41g.roa (raw, json)
Hash identifier: NrK08FGeRzLCjGKXpDbMzvxmTs4U4W87QtG6euT3DZA=
Subject key identifier: F4:5A:EB:99:C5:C6:6A:29:38:E7:2C:31:5F:09:55:93:48:5A:E3:58
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0188AF5E3133D5F82B10E223AAD70748322B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/9FrrmcXGaik45ywxXwlVk0ha41g.roa
Signing time: Mon 12 Jun 2023 11:29:25 +0000
ROA not before: Mon 12 Jun 2023 11:29:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211256
IP address blocks: 87.120.84.0/24 maxlen: 24
147.78.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:af:5e:31:33:d5:f8:2b:10:e2:23:aa:d7:07:48:32:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 12 11:29:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f45aeb99c5c66a2938e72c315f095593485ae358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f5:a9:66:c2:86:0c:ee:09:2e:6a:13:e4:89:
d4:e0:41:95:bf:1d:b2:3a:27:7d:e3:43:87:2e:5c:
25:3c:09:31:ff:cd:28:eb:36:08:b5:62:68:95:09:
f7:09:d2:46:63:34:00:aa:a6:cf:31:79:ea:9c:03:
a6:ac:a9:a6:15:22:58:de:a8:55:a9:c9:38:e3:80:
c2:8b:96:24:3c:f0:10:28:a0:d4:7b:7d:d7:fb:77:
cb:31:f5:54:ae:61:cd:dd:55:2f:71:2f:e6:04:c7:
91:d4:c6:12:28:15:57:84:24:24:7e:6a:79:4a:6c:
f7:13:9f:29:61:d4:df:c5:6c:89:11:c3:91:d3:aa:
c7:ac:69:a2:35:ad:d4:70:d8:45:80:ae:59:04:86:
67:38:68:5f:1d:37:34:8c:41:77:92:1a:3e:38:b4:
bd:3c:e6:12:38:e4:28:93:d7:36:b1:c7:c6:6a:5c:
f2:df:37:91:bc:b2:74:46:c9:49:d7:99:07:6a:90:
c0:b7:1e:fa:09:0e:d8:de:93:98:fd:b7:6b:d8:0e:
74:77:45:7c:b0:5d:b7:21:7d:5d:f7:8d:64:fb:d8:
2b:73:8f:bd:88:bf:51:81:18:59:b2:2b:3f:d1:4a:
db:ad:be:63:1d:87:02:8a:f5:08:10:eb:78:93:ed:
1e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5A:EB:99:C5:C6:6A:29:38:E7:2C:31:5F:09:55:93:48:5A:E3:58
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/9FrrmcXGaik45ywxXwlVk0ha41g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.84.0/24
147.78.103.0/24
Signature Algorithm: sha256WithRSAEncryption
36:45:be:57:57:36:5e:1e:46:ea:2c:e6:73:e7:a0:41:9d:02:
da:92:6a:2c:57:df:5c:7d:b5:8c:d5:77:5c:29:36:18:7d:b8:
73:31:52:57:a4:74:01:1a:5e:09:c2:6a:1c:ed:25:03:1b:43:
b6:b9:ec:2a:09:69:cd:40:8a:18:17:42:a4:a8:35:af:25:91:
4a:4f:fc:27:9b:f9:bf:7c:ae:9a:a0:c4:40:84:38:eb:97:fc:
14:4e:b5:df:e9:27:34:61:9a:cb:ff:e0:b0:9a:9e:6e:67:9c:
49:9c:20:4f:28:11:84:99:4d:57:79:c2:66:b1:59:a8:48:b5:
61:55:7d:f3:0e:a6:92:dd:0d:eb:79:d2:f2:88:79:98:62:cf:
e6:d6:06:e5:d8:40:da:e7:1c:5f:bd:3f:c3:68:23:20:a6:95:
49:34:62:32:87:03:b9:5d:ca:c3:f1:71:e4:ba:38:91:df:5d:
9d:ed:de:e5:af:25:ff:ce:9c:09:8f:0e:61:d5:79:1a:0e:b7:
f8:0c:dc:7b:ee:39:1e:20:e6:7f:06:23:9a:70:c2:6a:7c:07:
1c:83:ca:dc:1c:63:8c:70:ed:bd:e8:3c:04:d0:5c:59:22:a1:
db:de:72:c5:e7:3a:6f:83:9a:d8:aa:ca:41:e1:53:03:53:9c:
43:ef:af:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:32 2023 by rpki-client on console-ams.rpki-client.org