Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/58lk2mXRu_h9z6AwZNY8cUWZe40.roa
File: 58lk2mXRu_h9z6AwZNY8cUWZe40.roa (raw, json)
Hash identifier: ygB9Tp3wRpxfV2kqINU957Gp2vxfnM5PSvLelL1mDHU=
Subject key identifier: E7:C9:64:DA:65:D1:BB:F8:7D:CF:A0:30:64:D6:3C:71:45:99:7B:8D
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0185738FE607AA39BD72772CEE9D06EAA411
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/58lk2mXRu_h9z6AwZNY8cUWZe40.roa
Signing time: Mon 02 Jan 2023 17:38:08 +0000
ROA not before: Mon 02 Jan 2023 17:38:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39458
IP address blocks: 193.34.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:8f:e6:07:aa:39:bd:72:77:2c:ee:9d:06:ea:a4:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 2 17:38:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7c964da65d1bbf87dcfa03064d63c7145997b8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:1a:57:b7:79:89:75:2a:92:1f:88:11:47:ff:
46:5a:50:77:c9:40:46:c8:74:e3:b6:64:76:78:96:
fb:cc:bb:64:28:84:d4:20:a0:1b:32:11:40:87:ed:
9b:d2:74:13:ea:cc:36:20:20:64:fb:59:f8:2f:ce:
04:5e:30:6b:49:9a:35:c3:63:ff:5e:ba:f4:09:06:
b1:21:5c:e2:db:44:e1:fa:48:41:f2:59:ba:85:28:
c0:ea:84:dc:7b:09:f1:e8:37:3c:b4:aa:b5:af:98:
bc:b9:81:68:36:27:8a:90:fe:58:e8:2a:f3:cc:7e:
61:14:e6:f0:60:de:d7:19:04:18:b1:6d:ab:4f:61:
23:35:bb:33:08:db:c1:99:ff:c2:59:9b:70:aa:68:
77:7f:23:8a:a2:da:02:98:94:be:f9:ef:de:f0:3e:
13:c4:05:ac:d1:77:a0:ca:e1:5f:6a:83:39:ca:ff:
8b:cb:88:30:fc:f8:67:ec:65:6c:83:a5:cc:21:65:
67:d6:c3:9e:86:e8:3b:a8:cf:43:3d:75:5b:74:21:
52:b0:3c:8e:2d:a8:79:5c:36:4c:e5:e2:e2:12:2e:
57:f4:51:72:3c:f5:0b:20:c9:eb:86:95:ba:16:e1:
61:f1:93:ed:6a:b3:05:17:55:c9:ed:8b:6b:8c:61:
53:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C9:64:DA:65:D1:BB:F8:7D:CF:A0:30:64:D6:3C:71:45:99:7B:8D
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/58lk2mXRu_h9z6AwZNY8cUWZe40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.78.0/24
Signature Algorithm: sha256WithRSAEncryption
42:aa:1f:5e:51:ea:d4:5b:69:88:c4:d1:5c:da:28:dd:97:8e:
10:81:5e:2a:b9:2d:db:a1:eb:e4:5f:28:ec:87:9d:c4:0d:70:
9b:0b:61:24:72:1b:fe:61:10:ee:ca:0b:c7:b8:62:60:ed:7e:
59:6d:e6:6a:77:55:ad:ce:7d:82:3f:aa:5b:3e:98:be:2b:2f:
a3:2c:34:f4:d3:ed:ae:1b:58:53:6f:d1:02:92:7a:b8:06:3a:
05:e4:10:bb:ab:8a:cd:e9:95:88:4d:63:4d:e5:ad:3b:70:2c:
d6:dd:3c:7c:a6:16:38:f9:5e:44:d3:ca:d9:7d:ca:38:3e:9b:
da:c0:d2:04:56:f3:8a:14:62:34:eb:ce:fb:af:0b:80:22:31:
78:c2:f6:70:4b:7a:8b:24:e0:68:0c:c1:f1:2f:24:ca:82:1c:
c9:10:4c:6d:78:7e:28:af:05:3b:09:e5:bb:9f:6d:61:97:0e:
97:05:4b:92:0c:5d:cd:bb:79:95:9c:e2:81:8c:fa:7b:87:ef:
eb:b0:6e:38:b1:ac:e9:24:21:f3:86:c6:c4:19:46:6a:1e:86:
5e:93:31:2d:61:e4:87:64:bc:08:ae:f0:9f:a4:02:69:6c:99:
11:15:61:d4:4f:03:3a:3d:fa:b4:47:91:bd:15:5e:76:52:3c:
65:86:eb:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:39:20 2024 by rpki-client on console-fra.rpki-client.org