Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/v1559qkGmE7rPQqR6Hd4XsCU2Yk.roa
File: v1559qkGmE7rPQqR6Hd4XsCU2Yk.roa (raw, json)
Hash identifier: 1vU4AP0H9kgqbooLC4uSvWK+H63VUjCSr5lOywF1138=
Subject key identifier: BF:5E:79:F6:A9:06:98:4E:EB:3D:0A:91:E8:77:78:5E:C0:94:D9:89
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018595177BF0688CB0AB073A603BC5E506AD
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/v1559qkGmE7rPQqR6Hd4XsCU2Yk.roa
Signing time: Mon 09 Jan 2023 05:53:42 +0000
ROA not before: Mon 09 Jan 2023 05:53:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213370
IP address blocks: 194.48.251.0/24 maxlen: 24
171.22.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:17:7b:f0:68:8c:b0:ab:07:3a:60:3b:c5:e5:06:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 9 05:53:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf5e79f6a906984eeb3d0a91e877785ec094d989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:47:72:dc:7e:83:d7:39:72:74:56:a1:d3:12:
08:7e:c7:54:be:e1:ca:3b:4b:71:a3:cf:73:9b:45:
e5:c9:16:f7:08:4d:47:a6:c7:2b:38:e5:ee:62:37:
4e:77:37:a6:03:84:4b:a9:0f:c8:65:fe:1b:51:f0:
69:1d:a7:90:35:a1:09:f0:59:f6:15:cf:1a:0e:c8:
0c:86:67:71:84:f2:17:29:83:ea:1f:b0:67:d7:6b:
97:75:2a:48:80:49:56:87:e3:52:2a:f5:65:b6:cb:
89:c8:93:f4:79:1f:be:f3:00:62:9c:12:c4:0c:64:
a0:93:6e:95:2c:c4:86:94:a3:48:89:11:c4:95:6e:
f3:35:14:6c:ca:f3:6c:97:0c:aa:66:d3:f9:e9:29:
d2:93:fd:70:be:4f:c3:41:bd:3c:74:29:73:bc:5d:
f8:e9:9f:15:85:74:dd:ef:1f:42:04:dd:a2:92:6b:
e0:42:8d:66:ca:58:e9:b4:6c:5d:98:cc:b8:9e:7d:
72:ca:65:1f:19:40:79:be:30:1c:35:7d:ad:5f:72:
b8:f2:e8:f5:7a:9e:93:c8:43:50:5e:4c:87:dd:93:
56:75:c4:3b:f7:17:b2:53:9b:1c:41:a5:1d:08:23:
a0:cf:03:5f:51:21:26:89:cc:49:ef:87:30:04:75:
82:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:5E:79:F6:A9:06:98:4E:EB:3D:0A:91:E8:77:78:5E:C0:94:D9:89
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/v1559qkGmE7rPQqR6Hd4XsCU2Yk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
171.22.16.0/24
194.48.251.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:c4:14:87:4f:dd:15:dd:3d:2f:3c:bd:57:3d:8b:3b:f7:d0:
5c:c7:79:70:a1:2d:57:66:62:cc:3e:ef:52:3d:ba:08:7f:18:
e5:b1:e6:fe:df:98:cc:d4:a9:d9:68:52:d5:83:99:97:31:70:
cf:da:35:19:e6:6d:7f:69:76:62:e2:3c:fd:e1:44:5e:04:d5:
e2:84:f5:29:50:62:74:2d:52:dd:02:43:90:a4:69:b3:64:d9:
8c:16:96:27:84:3f:b3:fa:52:eb:4c:76:e6:f5:af:85:6a:40:
1a:b7:2d:a2:06:57:85:e3:15:61:b7:01:dc:7e:53:d0:63:e5:
ea:39:e3:3b:17:29:60:7b:f7:c2:0d:86:bf:35:b9:48:85:95:
c4:bd:b5:1c:25:42:78:3b:c0:67:ee:54:b3:a1:21:1d:b5:a5:
7d:49:be:40:65:56:25:6e:5f:61:4d:f4:99:8e:32:60:ba:b6:
89:53:a4:ce:62:aa:ac:af:78:48:c6:4c:7f:82:a2:26:7a:c2:
a1:c3:31:89:be:a1:24:22:71:03:f6:cd:c8:18:f6:31:d5:f0:
39:8c:2c:be:4d:e1:b0:17:55:a5:70:df:26:7e:2d:ae:1b:46:
da:81:9f:f4:79:51:38:d4:6c:46:0b:e8:f4:a4:3d:9a:5d:4d:
3a:75:8e:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:50 2023 by rpki-client on console-fra.rpki-client.org