Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/h72NCYEYiuCo1Vy5YmNMxoykBNQ.roa
File: h72NCYEYiuCo1Vy5YmNMxoykBNQ.roa (raw, json)
Hash identifier: qz/a6ZvvUbOHKaC2qOVkDGSvwzuoObobd7kx7rZ6/50=
Subject key identifier: 87:BD:8D:09:81:18:8A:E0:A8:D5:5C:B9:62:63:4C:C6:8C:A4:04:D4
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018C90D049190CCFAE14DAA1B9D20FBF55FC
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/h72NCYEYiuCo1Vy5YmNMxoykBNQ.roa
Signing time: Fri 22 Dec 2023 09:16:58 +0000
ROA not before: Fri 22 Dec 2023 09:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210542
IP address blocks: 79.110.48.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:90:d0:49:19:0c:cf:ae:14:da:a1:b9:d2:0f:bf:55:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 22 09:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=87bd8d0981188ae0a8d55cb962634cc68ca404d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b3:4b:d0:88:46:3c:3a:67:6a:10:50:34:86:
b1:e1:09:db:9d:b5:17:de:11:49:31:e5:ea:2d:6b:
26:e2:67:b7:2e:76:47:b0:e2:bc:63:98:10:5f:6a:
8d:61:51:cc:10:84:9d:7e:cd:cf:62:9b:d4:e2:c3:
1b:09:b8:6c:54:41:25:6d:5a:e7:d8:39:39:69:cd:
a7:d1:21:9d:e0:24:fd:f9:10:71:16:6b:1e:78:c4:
60:8c:13:c0:70:0b:c9:c0:bf:fa:d4:0c:58:ca:3a:
c6:c5:8e:63:22:c2:50:f5:86:0a:f9:fa:b4:3b:50:
b9:22:96:aa:1e:82:4d:63:05:76:38:cf:ae:0e:5b:
f6:d4:ad:e7:5a:92:51:a2:7d:e3:ff:df:de:64:6b:
f8:6e:ae:73:79:99:78:bf:2e:f0:8c:0e:8d:62:29:
d3:95:71:93:3c:0e:a6:d8:41:08:4d:87:2b:97:f8:
2d:55:e7:00:fe:ed:c7:26:54:37:10:db:99:8b:ad:
c6:6e:c4:c5:3b:05:a2:36:1d:d3:87:e8:eb:87:8f:
68:59:a6:74:99:8d:21:99:53:dc:20:a6:72:c4:ec:
7f:43:e6:bf:70:33:eb:3a:d5:39:66:04:d6:fe:c3:
c4:98:1a:8c:6f:f4:7e:2c:bb:f1:8a:07:42:ee:00:
ec:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:BD:8D:09:81:18:8A:E0:A8:D5:5C:B9:62:63:4C:C6:8C:A4:04:D4
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/h72NCYEYiuCo1Vy5YmNMxoykBNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.48.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e5:8d:68:2b:8a:2f:1d:bd:74:a7:1c:b2:39:c6:ef:da:0b:
58:38:72:56:81:6b:3a:6b:e3:a6:d6:c1:9b:e0:da:91:67:a3:
00:6f:11:6b:1e:79:eb:05:ba:9b:d0:a8:9c:21:38:2d:86:da:
74:ea:82:09:09:c8:b8:c4:33:39:59:0d:77:b9:22:fc:f3:8e:
73:1b:bf:4a:82:1b:90:85:b8:14:ae:82:7c:3c:ce:b3:6c:7d:
9b:bd:0c:d9:17:d0:dc:66:c6:6a:dd:a0:c3:8e:c1:3d:6d:e0:
45:64:dc:70:1a:d8:12:ae:05:fd:93:46:ed:a3:13:e2:79:1d:
6b:b0:de:7d:2c:fb:34:b3:02:27:31:f7:25:74:97:66:6f:7f:
77:cf:80:c2:d4:22:76:f4:b1:b7:58:24:8e:d1:aa:a7:9e:af:
11:77:3d:f0:c3:c0:28:81:12:a4:cc:f0:66:62:53:73:b0:52:
b2:1b:84:2a:2c:6d:75:41:65:55:7f:70:94:81:c9:0a:17:72:
4d:ff:36:8c:0e:75:b5:40:31:3f:0d:3d:c0:9e:f1:5c:a4:d2:
d6:59:07:95:6b:65:aa:51:bb:c9:6c:d4:71:df:02:a1:cc:b0:
8e:4d:80:8e:39:eb:20:fc:6a:42:89:cf:07:ef:47:26:4b:0c:
70:75:4f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 08:59:12 2024 by rpki-client on console-ams.rpki-client.org