Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/e9fLJNRc2p7_UuF-S495INZS1YI.roa
File: e9fLJNRc2p7_UuF-S495INZS1YI.roa (raw, json)
Hash identifier: eRlpWAnd2sHhvJItwyoFH9UNQG7uuTWOcE8hqh2QKyY=
Subject key identifier: 7B:D7:CB:24:D4:5C:DA:9E:FF:52:E1:7E:4B:8F:79:20:D6:52:D5:82
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 01856F023D174F6D86076DCE6B4598E885B6
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/e9fLJNRc2p7_UuF-S495INZS1YI.roa
Signing time: Sun 01 Jan 2023 20:24:55 +0000
ROA not before: Sun 01 Jan 2023 20:24:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34073
IP address blocks: 85.254.88.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:3d:17:4f:6d:86:07:6d:ce:6b:45:98:e8:85:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 20:24:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bd7cb24d45cda9eff52e17e4b8f7920d652d582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:d5:30:c1:23:a7:b2:fc:c6:55:41:ef:3c:26:
60:e3:68:fc:3a:6e:04:39:46:00:bc:10:1b:b9:e5:
45:17:98:90:dc:3a:d8:82:87:b3:a8:55:04:9e:f1:
78:04:ca:15:51:1a:79:f8:e1:70:e1:1c:e3:5b:ca:
4e:a1:51:2b:de:6e:56:0d:d2:92:6f:22:ac:d9:7b:
5e:b6:84:b3:3c:1f:ca:eb:dd:41:8e:1a:df:d1:f1:
7b:a3:0b:b8:86:c2:5e:ed:49:b6:e7:ba:9c:7d:c6:
8a:d3:32:98:72:a9:c9:fd:c7:d8:f7:d3:0d:46:4c:
d3:76:7a:12:d6:45:98:8c:d6:6c:b0:4a:e3:8a:91:
ff:57:c4:94:49:3b:13:8d:d1:bc:84:8e:e7:a8:45:
3a:a3:6a:6e:cc:ba:04:15:6d:88:25:61:c1:f0:af:
fc:78:00:7a:2c:bb:e5:f2:cc:8d:40:39:c7:1d:3b:
fb:20:0c:9b:7a:cf:60:18:90:7c:61:a2:40:e7:1f:
6f:fa:85:87:b5:e0:f6:99:3f:9d:94:e9:21:49:dd:
60:17:bf:20:c5:07:90:d2:a9:a5:7d:08:2a:84:2b:
b3:b6:fc:4d:78:cb:5d:c7:7e:bf:4d:76:db:86:3c:
56:e1:ca:24:51:dd:e5:19:5d:27:eb:1e:ba:44:e6:
c6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:D7:CB:24:D4:5C:DA:9E:FF:52:E1:7E:4B:8F:79:20:D6:52:D5:82
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/e9fLJNRc2p7_UuF-S495INZS1YI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.254.88.0/22
Signature Algorithm: sha256WithRSAEncryption
22:e4:ab:2b:30:70:3e:53:a2:45:ea:18:c2:b0:00:57:e9:d8:
9d:e7:32:0f:f5:04:ad:ba:47:38:c9:7b:a8:49:3e:49:6e:3c:
8f:5e:ab:47:41:c1:3e:5c:8d:fe:24:37:09:dd:4b:be:65:63:
34:3a:d9:42:ba:17:1c:38:3b:b8:67:9d:50:56:33:24:e2:ff:
2f:d2:20:83:f8:51:33:59:49:f1:0a:66:7a:3e:63:fa:f8:b6:
c6:e6:82:54:08:1f:07:35:e5:98:51:fe:7c:b3:cd:05:88:ab:
31:43:a3:fb:49:fc:17:b4:f9:38:17:7d:0c:fd:dd:64:b7:33:
9f:52:52:47:13:52:c2:af:b7:ff:ad:62:5e:4d:0c:3a:7d:cd:
2f:e2:c6:c4:7b:03:5f:92:51:d9:30:3a:ec:79:60:08:d5:bc:
40:eb:fb:7c:f5:22:c2:68:72:e9:12:00:40:99:78:1b:32:6d:
6a:30:fe:e3:43:9a:b8:2b:1f:55:6e:d4:18:2f:a3:23:9f:b0:
02:a6:0c:3e:42:b9:81:59:a0:e2:77:85:6c:07:2e:2a:ad:4c:
ca:1c:c7:49:d0:05:43:f5:b8:dd:10:e0:49:63:12:6f:e6:21:
fd:07:95:09:fc:20:34:b2:0a:d2:a1:cc:37:5f:35:c5:94:7f:
94:f0:3c:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:49:38 2024 by rpki-client on console-fra.rpki-client.org