Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/laU6SlvUQjUyC314z-3ahU2-KJE.roa
File: laU6SlvUQjUyC314z-3ahU2-KJE.roa (raw, json)
Hash identifier: JPVBA7x+uI7eLKGQKHp/wDGQ8oqpENbScY4h2enjmlg=
Subject key identifier: 95:A5:3A:4A:5B:D4:42:35:32:0B:7D:78:CF:ED:DA:85:4D:BE:28:91
Certificate issuer: /CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae
Certificate serial: 01856D016C96D6B208857B87F70282C3905C
Authority key identifier: F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/laU6SlvUQjUyC314z-3ahU2-KJE.roa
Signing time: Sun 01 Jan 2023 11:04:47 +0000
ROA not before: Sun 01 Jan 2023 11:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57152
IP address blocks: 185.70.84.0/22 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:6c:96:d6:b2:08:85:7b:87:f7:02:82:c3:90:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7bed33ff01e8e09dc4fedcd01139c0e77854aae
Validity
Not Before: Jan 1 11:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95a53a4a5bd44235320b7d78cfedda854dbe2891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:ed:5c:fe:eb:12:0d:d0:96:c8:e6:39:f2:
bc:b9:42:6e:ce:c1:f8:14:48:26:fd:19:5b:ff:11:
11:ec:0f:8f:29:61:c6:95:70:29:54:3d:39:90:fa:
49:b5:79:10:2a:2b:e0:0c:fb:59:bc:e2:29:c8:2f:
ba:95:05:16:2b:98:9b:68:d1:73:ae:6f:20:26:2a:
2b:d5:b4:76:04:50:85:1f:50:45:68:28:88:08:e5:
88:f6:9c:53:23:cf:c3:36:22:0a:73:b0:cc:22:65:
50:a8:ad:10:2c:98:6f:74:5e:d9:1c:9d:c5:3a:77:
78:30:e1:c9:3d:e3:7f:97:e3:e7:9a:b6:d7:51:6d:
d7:a7:58:99:0d:27:7d:f2:87:17:2b:ec:06:68:e9:
d2:58:17:16:b4:2e:81:cb:02:0a:76:93:a1:24:03:
97:53:eb:c9:d5:12:13:7e:43:bb:38:0e:55:24:00:
03:40:e7:05:bd:9f:79:99:76:06:ca:06:98:9f:2a:
8a:26:9e:40:9f:d5:6e:0e:38:a3:64:15:45:84:3a:
8c:3c:62:5b:2b:90:a9:6d:5c:2d:2f:53:54:1c:50:
36:7b:64:5c:25:ff:f3:03:a2:f4:30:63:e1:41:db:
8a:6e:76:e0:30:c7:b0:47:b6:e6:f5:3b:0e:a7:18:
22:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:A5:3A:4A:5B:D4:42:35:32:0B:7D:78:CF:ED:DA:85:4D:BE:28:91
X509v3 Authority Key Identifier:
keyid:F7:BE:D3:3F:F0:1E:8E:09:DC:4F:ED:CD:01:13:9C:0E:77:85:4A:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/977TP_AejgncT-3NAROcDneFSq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/laU6SlvUQjUyC314z-3ahU2-KJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5a6d01-a375-4e11-871e-99e6141de7f1/1/977TP_AejgncT-3NAROcDneFSq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.70.84.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:7e:61:87:1e:cc:9b:a1:06:9a:7e:f1:d0:05:10:a8:0e:b9:
74:ff:4b:55:bb:91:90:b3:56:e9:99:60:0d:33:d7:9d:71:59:
9a:56:87:3d:58:fe:ed:ef:78:3d:a8:33:46:b5:cd:92:17:89:
2c:2e:e4:80:41:7a:56:16:c4:a9:b0:ea:c7:3f:e2:e0:46:7f:
95:7c:d4:dc:53:e8:24:85:cd:a0:b8:30:95:20:6f:e4:0d:25:
11:c2:53:35:e4:9d:8d:e4:1e:13:07:fb:c5:ee:96:20:f6:36:
b2:8e:b1:1a:19:7a:52:d9:bf:1a:38:b4:9e:dc:44:fe:a1:66:
16:b5:7d:95:0e:0e:db:99:af:1f:e1:b3:d2:ad:62:7a:55:28:
85:96:d6:8c:2a:f4:6c:6b:c8:54:7c:2e:41:78:da:bc:08:f4:
e4:0a:7c:07:ae:9e:6c:d0:44:61:f8:86:68:27:de:3a:6a:7c:
5d:05:76:b6:ec:30:86:db:b4:a3:0e:0d:80:3c:97:fb:70:e6:
d3:f5:9c:a8:4d:5e:9b:0a:ae:c0:a0:f8:f3:bb:2d:fb:80:f0:
75:4f:46:40:3f:b5:f1:b1:4a:8c:89:77:c2:b1:46:11:52:e5:
9f:29:1b:f1:04:87:4c:bc:bb:5a:d1:98:70:5a:cb:1c:50:5c:
eb:9a:74:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:53:42 2024 by rpki-client on console-ams.rpki-client.org