Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gQgmPvJaQ9-yhAwllhCsXjzw8lY.roa
File: gQgmPvJaQ9-yhAwllhCsXjzw8lY.roa (raw, json)
Hash identifier: aH7uBMeDwGjbu53JftcBgdmk2xZ+R7GZ9dlJTp6EaDg=
Subject key identifier: 81:08:26:3E:F2:5A:43:DF:B2:84:0C:25:96:10:AC:5E:3C:F0:F2:56
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01856D81FD76CA1D4A59219DDD198D358FC6
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gQgmPvJaQ9-yhAwllhCsXjzw8lY.roa
Signing time: Sun 01 Jan 2023 13:25:13 +0000
ROA not before: Sun 01 Jan 2023 13:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199759
IP address blocks: 87.120.143.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:fd:76:ca:1d:4a:59:21:9d:dd:19:8d:35:8f:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 13:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8108263ef25a43dfb2840c259610ac5e3cf0f256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:00:90:1e:a1:74:61:23:d0:b2:a5:2e:c2:7f:
84:4b:ec:04:f6:aa:71:6d:0d:ac:df:fd:71:42:6b:
24:27:e4:62:59:02:fc:dd:30:fe:26:34:78:70:db:
fe:ad:1b:24:80:3f:d3:6b:61:5b:bb:ba:f6:a2:de:
40:d4:ad:4f:56:3f:a3:a0:58:24:df:42:a6:ae:08:
15:0c:9b:d3:2e:cc:2b:d8:c3:ab:72:01:eb:de:7a:
1f:ee:f1:b5:4d:4f:72:78:96:5f:c8:ac:dc:66:fc:
c5:0d:8e:f2:13:f3:aa:93:eb:49:99:d4:ef:4d:0d:
24:58:1d:ae:97:a4:b1:41:0a:14:94:bb:13:0d:49:
34:54:6e:b4:cf:29:bc:71:b2:3d:3c:ce:f8:bc:6a:
fc:dd:92:33:c0:e4:8b:6a:af:66:c0:e5:4e:d6:a7:
10:8a:82:3b:ef:98:df:6c:89:df:40:8c:8f:fb:fe:
27:9a:d6:32:61:17:e0:e3:d7:bb:98:e5:b2:91:cd:
6b:ad:2d:39:01:d2:91:e7:b7:76:26:c9:9c:46:f4:
61:0d:ec:74:9b:87:94:ba:8b:f4:c7:07:2c:20:26:
20:68:b1:ec:88:d0:45:1b:80:70:ea:fd:7a:e5:25:
cb:b8:f0:e6:c1:dd:39:f3:f8:e3:19:81:68:9d:74:
58:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:08:26:3E:F2:5A:43:DF:B2:84:0C:25:96:10:AC:5E:3C:F0:F2:56
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/gQgmPvJaQ9-yhAwllhCsXjzw8lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.143.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:86:41:2d:0e:a4:75:4f:19:44:c2:91:17:ae:77:0d:2b:72:
71:5d:c0:0f:13:8f:8a:4d:bf:57:f6:86:03:25:7b:f3:8b:76:
2a:4e:b2:8d:38:af:f8:4c:01:56:de:ca:85:4e:25:9f:90:fa:
28:a1:13:7a:39:a4:f8:1d:de:7a:5b:28:f6:4a:26:79:43:0d:
60:0f:f9:59:59:3a:86:64:9a:2f:db:ef:01:39:4a:35:54:4d:
f6:44:80:b3:75:90:f7:09:f5:24:c7:fe:77:4a:02:5c:84:91:
60:ac:95:be:18:f7:b0:9f:4b:a7:01:b5:ba:40:fc:44:6e:e9:
58:cb:69:ef:46:0b:a2:bc:70:75:9c:a4:1b:6e:26:b0:e4:5f:
c1:f7:3c:19:29:13:49:19:c7:a9:89:e9:d1:45:86:2f:de:bc:
2b:12:60:56:fc:e3:cd:ce:7a:c4:6c:6a:8c:a1:a7:bf:7a:ee:
e1:5d:b8:cd:bd:d5:b3:ff:1a:2d:4d:d9:34:46:e1:7b:65:8b:
7b:6f:aa:6c:4c:06:2b:dc:47:c1:66:84:1a:33:d5:26:91:e5:
57:55:4c:60:fc:40:42:12:d6:5a:99:35:ac:b3:eb:42:18:53:
ea:30:08:c1:b5:d1:ae:31:a5:43:ce:36:33:b3:1c:30:0d:f3:
f1:4e:17:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 09:18:48 2024 by rpki-client on console-fra.rpki-client.org