Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/mZ7a2tBEzxgp1wB5Sqm9vSZKo84.roa
File: mZ7a2tBEzxgp1wB5Sqm9vSZKo84.roa (raw, json)
Hash identifier: 09UQjegx7QBXevrCkWMorSsK36Hb293k+OUlB4vOTsM=
Subject key identifier: 99:9E:DA:DA:D0:44:CF:18:29:D7:00:79:4A:A9:BD:BD:26:4A:A3:CE
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF98A410FC95091D9FC80816F9FB7D1
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/mZ7a2tBEzxgp1wB5Sqm9vSZKo84.roa
Signing time: Mon 02 Jan 2023 00:55:02 +0000
ROA not before: Mon 02 Jan 2023 00:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202593
IP address blocks: 151.251.119.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:8a:41:0f:c9:50:91:d9:fc:80:81:6f:9f:b7:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=999edadad044cf1829d700794aa9bdbd264aa3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:70:93:d3:be:bc:45:58:be:73:07:ce:16:58:
d3:02:83:c6:4c:72:b1:a5:e3:85:e2:91:d6:55:22:
27:e3:c6:f6:5e:50:51:f2:86:04:de:94:fa:66:e7:
55:ae:6b:cc:fd:59:07:14:ef:da:6a:61:74:92:eb:
8b:e6:a1:54:3a:a2:b4:db:df:4a:ce:00:81:6c:09:
c8:55:46:f9:1b:07:37:60:39:80:a1:47:ce:b2:97:
cd:76:b8:a7:a2:0b:59:12:a8:f1:d0:85:33:70:10:
82:ed:d0:af:e5:af:ad:20:ee:88:ad:a6:5c:7e:bd:
2c:94:7e:df:aa:3d:45:1f:e8:03:bb:c2:88:63:a0:
20:cc:ce:ad:f3:2c:52:04:f2:d4:bd:e4:fb:8f:58:
30:af:ef:bd:8f:fd:9d:44:2d:5c:99:79:ac:eb:7f:
70:89:59:20:04:cd:ce:20:09:6f:56:14:3e:52:e3:
ad:50:b3:55:d9:64:e8:99:52:05:49:8d:4e:ec:d7:
22:be:5b:f5:31:53:92:76:6a:db:06:ef:b3:ec:58:
96:5d:b4:f8:bb:69:0f:8f:3c:c2:23:c1:88:24:90:
72:1e:24:ce:24:96:0b:75:e0:d1:8c:c5:12:57:3a:
8e:d2:f1:93:3b:78:79:f0:9a:cd:74:59:32:5d:4b:
ff:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:9E:DA:DA:D0:44:CF:18:29:D7:00:79:4A:A9:BD:BD:26:4A:A3:CE
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/mZ7a2tBEzxgp1wB5Sqm9vSZKo84.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.251.119.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:f2:61:2c:00:54:a8:49:51:82:4b:75:fc:f4:aa:8c:cc:c2:
b6:95:04:18:9d:60:e1:c4:1a:f4:3f:5a:30:a6:d1:b7:b2:15:
43:aa:6b:aa:69:0a:57:6f:08:20:18:87:10:e4:67:6c:fd:1f:
a3:ad:94:bd:43:07:cf:97:81:6a:da:67:6e:dd:f1:b4:12:c2:
df:ba:37:c8:95:d6:36:a1:19:99:31:d4:6e:27:2b:ca:6a:bc:
9f:e2:c3:6e:c9:65:cd:4e:2a:4d:39:6d:e7:32:92:60:87:cf:
3f:12:bd:80:ec:2f:87:2d:8f:4d:69:53:27:84:ba:4e:7a:fc:
38:64:b2:53:b0:8e:bf:c5:aa:e2:69:a6:4a:61:18:70:44:51:
94:86:e4:73:65:96:a4:c5:33:92:68:23:aa:af:8a:49:a2:d4:
46:10:42:e8:9e:6a:03:9a:bf:fd:38:48:6f:12:a0:1a:12:41:
14:89:2e:92:82:a2:95:89:e7:15:65:40:b8:86:42:95:7e:ed:
f9:b8:c9:5a:b7:fe:86:8b:01:00:ef:08:4f:e5:11:a0:66:3f:
4e:e6:3f:e3:17:4d:b0:c8:4f:48:38:b4:c7:ec:34:11:c0:aa:
43:62:3c:29:18:19:f1:df:8f:92:60:14:4e:6c:21:9a:ef:c5:
60:15:ef:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org