Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/3-WyjCzKG4Wuo2N2eGNvQL7oWzE.roa
File: 3-WyjCzKG4Wuo2N2eGNvQL7oWzE.roa (raw, json)
Hash identifier: +1V60KaSCZavHO7UPodlGmBbXjr20dMHYaSKxOm6uSE=
Subject key identifier: DF:E5:B2:8C:2C:CA:1B:85:AE:A3:63:76:78:63:6F:40:BE:E8:5B:31
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F025063A13C757559E6355D0BC7FA6B
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/3-WyjCzKG4Wuo2N2eGNvQL7oWzE.roa
Signing time: Sun 01 Jan 2023 20:25:00 +0000
ROA not before: Sun 01 Jan 2023 20:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205472
IP address blocks: 85.254.31.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:50:63:a1:3c:75:75:59:e6:35:5d:0b:c7:fa:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dfe5b28c2cca1b85aea3637678636f40bee85b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:3a:d3:06:9b:5b:37:29:2b:9b:73:56:f5:54:
66:ec:23:a4:43:43:82:9a:39:f2:60:fb:58:ae:be:
46:2e:a1:29:9f:95:32:5e:01:29:f2:f5:55:d1:15:
8e:a0:90:86:50:85:d9:1c:4b:6b:a9:a9:df:f6:34:
c0:0a:46:29:ef:8b:bc:97:d2:4e:0a:ac:a0:37:5e:
67:01:d7:2c:b2:26:1d:25:22:36:e2:a3:23:0d:dd:
de:4e:3f:f5:8b:e0:db:7d:a0:f3:ad:fa:de:3c:da:
64:09:8b:60:1a:bb:4d:c4:c9:75:2f:60:29:01:73:
85:69:c3:5b:a1:ef:0f:e4:54:57:6a:e2:1f:d7:5c:
5e:98:1d:33:15:22:41:a6:4f:64:9a:69:c9:4c:76:
bb:df:12:eb:bb:29:55:e8:3e:44:2b:4a:c3:10:db:
c0:c4:e7:b5:fe:23:68:45:ed:ae:ae:ad:63:0a:aa:
df:5e:23:8b:ab:3d:42:f6:8d:f9:5a:2e:c1:fd:68:
73:d3:ef:e6:63:e0:b3:66:34:e2:d7:e2:1e:9b:51:
99:31:bf:92:01:32:b8:b2:d3:0f:af:f8:0b:45:7e:
46:62:47:81:31:3b:1b:86:66:d2:55:4e:4f:8c:1e:
a8:88:12:80:4f:79:9c:8c:09:04:f5:d3:1d:1c:ed:
48:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E5:B2:8C:2C:CA:1B:85:AE:A3:63:76:78:63:6F:40:BE:E8:5B:31
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/3-WyjCzKG4Wuo2N2eGNvQL7oWzE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.31.0/24
Signature Algorithm: sha256WithRSAEncryption
87:04:51:86:25:ad:e4:31:a5:94:bb:40:b3:79:06:d4:18:e1:
41:c3:09:cc:1f:d1:5c:1d:ce:56:32:bc:00:4a:05:68:76:d1:
19:cf:0b:1d:55:b0:38:a7:40:a3:88:3c:d4:c4:45:30:aa:3f:
04:9a:13:ba:d0:66:e4:29:a9:b2:bd:f2:86:70:52:00:fa:95:
40:b7:bf:29:61:06:9a:f6:32:70:8a:94:e0:bd:c4:28:43:20:
50:52:15:5f:4a:5c:10:91:c6:c3:9f:c5:99:40:65:bf:9a:b2:
0c:e6:0c:67:03:c4:11:b5:39:9e:f7:cf:19:51:ed:8b:41:f9:
11:a8:09:22:f9:b9:a8:a9:4e:25:a8:b6:d5:f8:69:18:d7:e3:
45:e9:f3:2b:5a:13:8a:19:f2:1f:27:73:83:08:45:32:3d:28:
f1:39:3a:ef:3b:4e:32:1c:43:67:f9:7c:12:0a:bd:d2:26:a4:
b0:df:63:df:9f:ae:f3:53:d0:96:74:8f:50:88:5f:78:72:21:
f8:04:21:94:c3:88:42:d2:ce:06:eb:8f:61:92:da:37:10:3f:
d5:24:45:03:e4:b5:ad:6b:45:9d:65:f9:2b:a6:bc:fc:e1:88:
2d:56:c1:5d:40:51:bd:28:4e:02:fe:87:57:7e:b2:16:53:83:
40:19:8d:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org