Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/drY58Tyxf4tyDqErUMNaJS_zUQg.roa
File: drY58Tyxf4tyDqErUMNaJS_zUQg.roa (raw, json)
Hash identifier: UIIBCMZ7iJMc+djFqiHGTLqBDf9PUSxHIxUXuEYXRww=
Subject key identifier: 76:B6:39:F1:3C:B1:7F:8B:72:0E:A1:2B:50:C3:5A:25:2F:F3:51:08
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF98E7F18CED81834E983CFC796CFA7
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/drY58Tyxf4tyDqErUMNaJS_zUQg.roa
Signing time: Mon 02 Jan 2023 00:55:04 +0000
ROA not before: Mon 02 Jan 2023 00:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209736
IP address blocks: 78.83.140.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:8e:7f:18:ce:d8:18:34:e9:83:cf:c7:96:cf:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76b639f13cb17f8b720ea12b50c35a252ff35108
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:b3:71:10:07:fc:b4:03:51:cd:e1:c0:a9:
bf:04:90:d0:7f:6c:3b:85:bf:5d:d8:3b:cb:7b:25:
4c:19:3e:8b:49:1d:4f:d3:c7:be:86:85:08:8b:ee:
05:35:7c:71:18:fd:7b:5a:92:34:7c:75:dd:e7:1f:
1c:4a:08:d7:77:ee:2d:c2:db:57:6e:a6:0f:21:7c:
79:6b:a7:13:18:47:75:fa:31:13:7b:04:5a:25:65:
6f:fc:ed:53:44:bb:7a:3e:dc:50:3e:b5:c9:17:4e:
fe:bd:c1:cf:f2:54:ff:2d:da:ef:b2:50:48:08:e4:
9f:51:c9:0b:bd:58:f1:26:5b:25:f8:e1:aa:80:00:
ee:c7:00:10:3a:df:81:34:2e:cf:53:2e:a3:77:3e:
8f:4e:6a:01:3e:d7:54:ff:3a:e1:ee:c8:45:87:7f:
28:9f:49:12:aa:b0:8f:5d:f0:9c:fd:c5:1b:2e:6b:
d5:e1:3c:c2:65:e8:c7:b0:03:9a:85:04:ed:45:f6:
39:75:93:1d:2a:8b:b2:55:15:49:e5:a5:2b:47:f6:
c1:82:bc:30:24:c8:14:d1:d3:23:81:db:34:cf:b0:
38:5d:ea:0b:1d:b3:ca:aa:ab:79:35:02:f7:f0:a5:
19:d8:46:9e:6a:59:9a:3c:0b:96:14:ad:b8:ac:c2:
96:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B6:39:F1:3C:B1:7F:8B:72:0E:A1:2B:50:C3:5A:25:2F:F3:51:08
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/drY58Tyxf4tyDqErUMNaJS_zUQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.83.140.0/24
Signature Algorithm: sha256WithRSAEncryption
17:9d:5b:b5:8f:c7:dd:76:23:51:4a:61:ee:69:28:7c:d8:bd:
6b:e5:bd:97:8c:4f:17:f4:11:e0:3e:ca:ce:27:bf:87:43:0d:
c9:aa:ae:6f:a1:af:6e:03:1e:34:26:58:50:35:93:fb:0b:03:
0f:c2:64:96:be:c1:53:1d:13:5c:8f:0a:4f:30:45:eb:db:2b:
ab:6c:43:61:17:f8:c5:6e:20:88:cd:81:51:13:ca:69:bc:70:
1d:73:5f:24:87:fd:5c:6c:8a:7f:2e:b1:52:d8:89:6a:95:bc:
ea:86:b5:6a:a3:58:d7:24:ac:39:db:f2:ff:48:7c:9a:39:dd:
e9:61:56:0f:64:11:30:3f:b7:81:1d:bf:6c:2c:6c:c3:07:43:
81:d2:46:e7:57:a6:d5:b0:74:a1:6d:22:7d:26:4c:18:32:8b:
77:ad:be:4b:c2:f3:5a:cb:47:27:0d:ac:4e:e2:a5:45:17:f8:
bf:2d:9d:e7:76:65:c9:41:a0:4c:b9:92:00:33:f4:77:30:3a:
e9:e5:f5:2e:1c:16:4f:5e:c1:51:c5:70:36:b7:1a:c0:cf:6a:
fb:72:93:6f:f7:cc:7a:a7:b5:c4:27:7b:33:2e:0f:3a:c3:9a:
ec:d8:fa:5f:27:f6:58:78:f2:b0:7d:63:75:42:9a:eb:76:eb:
3f:00:a2:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org