Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/lCQ7UHRuORA-piDQqzo9sfYUs5I.roa
File: lCQ7UHRuORA-piDQqzo9sfYUs5I.roa (raw, json)
Hash identifier: i4Do9lZG46cgcFfamHQfh6OG6gKG+AhJJz6rRgjNsz4=
Subject key identifier: 94:24:3B:50:74:6E:39:10:3E:A6:20:D0:AB:3A:3D:B1:F6:14:B3:92
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018B46854648D9B66DDBF9E373CDF12B08BD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/lCQ7UHRuORA-piDQqzo9sfYUs5I.roa
Signing time: Thu 19 Oct 2023 06:00:21 +0000
ROA not before: Thu 19 Oct 2023 06:00:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60528
IP address blocks: 87.120.33.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:46:85:46:48:d9:b6:6d:db:f9:e3:73:cd:f1:2b:08:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Oct 19 06:00:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=94243b50746e39103ea620d0ab3a3db1f614b392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d6:5e:f9:94:5b:09:e0:e3:a8:9a:d5:3b:f4:
e1:02:f5:df:42:23:87:70:f3:ea:c5:14:16:1e:43:
03:51:c9:18:20:8f:5b:2e:cf:9f:d8:67:53:48:b2:
55:24:fe:34:64:ec:98:e5:4f:98:ec:35:87:e2:30:
65:a3:57:49:ab:47:39:bc:cd:54:01:82:38:98:53:
cc:11:ee:c9:70:b7:5d:80:51:ed:09:fb:f0:ec:52:
16:78:c2:5d:e6:0c:30:45:82:e1:00:89:06:ea:00:
de:7a:30:d2:23:1c:c5:6b:47:2a:61:1c:16:a0:4d:
00:09:c6:c2:a7:02:ad:d3:a2:8f:55:fd:c8:78:db:
2d:7d:4e:4d:82:ee:79:51:4b:fb:f2:7a:e4:92:8e:
7c:16:3c:0d:3a:d3:52:56:22:db:01:ad:e4:29:97:
be:b7:04:b3:ac:10:c1:a1:7c:d0:36:0e:88:61:96:
95:77:47:c6:f3:fa:bf:55:16:31:ad:c1:cf:95:1c:
8f:6e:3f:68:aa:f9:ad:9a:47:f1:e1:b8:68:c1:16:
86:6f:48:26:18:41:b6:31:de:6e:49:f7:88:fe:6c:
20:67:44:4b:16:2a:8b:39:a8:3f:e9:b9:6f:4c:94:
bf:41:73:f1:ba:b1:ea:95:4d:f3:10:7a:58:b8:f9:
39:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:24:3B:50:74:6E:39:10:3E:A6:20:D0:AB:3A:3D:B1:F6:14:B3:92
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/lCQ7UHRuORA-piDQqzo9sfYUs5I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.120.33.0/24
Signature Algorithm: sha256WithRSAEncryption
20:6c:1a:48:9d:42:bf:8c:9f:33:57:cd:f2:a6:a6:31:65:eb:
8e:e3:e9:3e:89:40:14:34:66:7e:ee:2f:e5:9e:49:a4:4b:4c:
e7:1b:3c:a8:5b:61:fd:bc:32:e5:e6:ad:f6:91:9a:e7:bf:42:
52:6a:15:60:6c:7e:75:72:b0:f0:54:46:b2:f5:7a:b5:99:29:
ce:9e:52:1d:00:5b:ee:3a:56:9e:8a:4b:a3:db:6d:7c:5e:85:
16:0c:09:9d:24:e7:a9:18:fb:dc:9e:03:17:62:01:5f:7a:2d:
e8:61:f0:50:86:a5:25:8d:f2:3f:a2:3c:81:b5:cd:3a:67:54:
39:74:cc:ee:4d:cf:a7:52:36:bc:c8:2d:fc:1c:15:b4:58:7c:
8f:79:e8:ba:3a:10:78:d5:97:0c:ec:dd:8f:48:18:ef:1a:54:
c8:ac:bc:99:14:0e:58:0f:d2:f8:33:2e:3e:ac:99:f9:a7:d7:
83:ad:76:f8:0d:29:74:24:ee:ea:35:06:c6:55:12:0c:e0:c2:
94:83:3d:86:3e:eb:f9:29:36:24:09:fe:7c:63:af:ae:4a:40:
bd:3c:bb:3a:01:e0:be:97:f9:67:94:9d:0c:72:97:c6:4d:1c:
a9:45:80:af:9d:18:15:e8:4d:32:5b:44:19:5f:af:36:56:0d:
a5:f8:b1:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 10:07:45 2023 by rpki-client on console-ams.rpki-client.org