Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/t7IGl1jW21K81YquqmyCXjrZALc.roa
File: t7IGl1jW21K81YquqmyCXjrZALc.roa (raw, json)
Hash identifier: ++tt/0Pk9DG89x9sMc0gpnMkW4+V09PjdIHwF9MGB2Y=
Subject key identifier: B7:B2:06:97:58:D6:DB:52:BC:D5:8A:AE:AA:6C:82:5E:3A:D9:00:B7
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 01856FF98144071F95AD701734A8BC2554FA
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/t7IGl1jW21K81YquqmyCXjrZALc.roa
Signing time: Mon 02 Jan 2023 00:55:00 +0000
ROA not before: Mon 02 Jan 2023 00:55:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198868
IP address blocks: 84.242.130.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:81:44:07:1f:95:ad:70:17:34:a8:bc:25:54:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 00:55:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b7b2069758d6db52bcd58aaeaa6c825e3ad900b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a2:21:1e:2c:6b:fb:b7:ab:4f:f4:3e:4f:d8:
25:22:6b:78:32:d5:03:06:e8:d9:82:6b:2b:0d:72:
7c:20:57:bf:d2:21:c7:11:87:94:1b:2a:4e:09:38:
5d:23:20:b2:6c:4a:42:bb:3f:bf:1f:c2:69:7d:47:
2a:fc:1a:c8:36:8c:b8:41:d5:58:46:c4:dc:3b:8b:
e2:3c:3c:34:02:2a:9b:c9:b5:ca:36:53:52:ed:4a:
0a:bb:f5:a8:20:f4:ed:0a:c0:98:c5:46:2a:17:da:
e4:ab:8b:7b:01:e5:1d:18:45:58:d7:98:d3:88:d0:
9a:3b:da:e6:6f:27:a7:30:c0:c5:55:15:b1:d0:52:
50:25:e7:88:a9:bc:d6:21:a3:e7:dc:d2:6d:06:cc:
17:07:c0:b8:b8:7e:ad:51:42:0d:e1:7a:a1:c0:24:
2a:71:fc:23:ff:c1:7e:e2:85:97:51:22:08:b4:21:
82:8b:e0:63:41:26:35:ab:21:4c:42:43:db:fe:19:
9f:80:52:5d:bf:ab:ab:13:ba:e7:58:7f:86:37:dc:
04:54:63:c1:2e:44:22:4e:02:7b:8b:70:a0:63:99:
7a:28:24:4e:91:47:c8:af:70:f4:e1:10:d2:f6:84:
51:37:6b:a8:0a:b6:a8:84:ea:c4:e1:04:2c:ae:b4:
43:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:B2:06:97:58:D6:DB:52:BC:D5:8A:AE:AA:6C:82:5E:3A:D9:00:B7
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/t7IGl1jW21K81YquqmyCXjrZALc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.242.130.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:a4:a1:ef:54:37:db:e0:35:d7:08:37:45:8c:78:c8:21:59:
ae:ae:b6:d3:71:93:3d:08:b6:34:e7:c7:10:26:a1:71:5a:ce:
07:8d:1d:99:75:1e:04:3e:87:d2:cb:90:01:8d:d7:f3:15:9f:
8a:c5:1d:57:20:dc:f6:db:40:e1:ea:0d:9d:f4:f8:0d:41:a0:
b0:a8:38:ae:4c:c1:f4:07:21:f7:5e:67:0e:1b:1a:36:d7:eb:
61:3d:14:2f:1d:62:f8:98:a7:12:e6:6f:29:0d:c9:62:ab:36:
87:4c:01:9b:b4:eb:b7:3c:8a:4e:4d:9c:f8:3b:aa:f1:e6:0c:
99:8d:ca:46:63:87:65:ae:2a:a1:57:e0:2d:7b:3a:3c:55:d1:
4e:71:72:40:d0:5b:23:13:0e:7f:c2:16:e2:40:17:77:22:34:
bc:f2:8e:8d:2d:17:51:66:a0:c8:17:02:0f:f6:63:fe:72:93:
b4:21:55:39:5e:84:9e:78:6c:a5:dd:f2:aa:d4:12:5d:f8:40:
4b:91:2d:76:5d:b3:bc:d2:f8:9c:43:28:30:49:7a:5b:26:e3:
ae:83:ea:33:a1:8d:db:62:8e:9c:a7:a9:57:a5:f9:fc:4c:8b:
96:8e:55:d0:be:37:48:b0:44:b6:ad:52:4f:b3:97:f0:39:7b:
2c:4c:5e:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:27:01 2024 by rpki-client on console-fra.rpki-client.org