Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/c7aa2a-090c-4f77-9d69-a74e4a887804/1/e7s757RD0bMDrVraGqo-tDAs0_g.roa
File: e7s757RD0bMDrVraGqo-tDAs0_g.roa (raw, json)
Hash identifier: khAY6LI+aqgQazq45SJeKyztchDvCGBDjedx87xNy4A=
Subject key identifier: 7B:BB:3B:E7:B4:43:D1:B3:03:AD:5A:DA:1A:AA:3E:B4:30:2C:D3:F8
Certificate issuer: /CN=d36bfd928bccb42ad9c468a552ab7393fdd87095
Certificate serial: 018B14189FC2E206AA8290BFE751EA5B44A9
Authority key identifier: D3:6B:FD:92:8B:CC:B4:2A:D9:C4:68:A5:52:AB:73:93:FD:D8:70:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02v9kovMtCrZxGilUqtzk_3YcJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/c7aa2a-090c-4f77-9d69-a74e4a887804/1/e7s757RD0bMDrVraGqo-tDAs0_g.roa
Signing time: Mon 09 Oct 2023 11:00:39 +0000
ROA not before: Mon 09 Oct 2023 11:00:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29519
IP address blocks: 212.25.208.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:14:18:9f:c2:e2:06:aa:82:90:bf:e7:51:ea:5b:44:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d36bfd928bccb42ad9c468a552ab7393fdd87095
Validity
Not Before: Oct 9 11:00:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7bbb3be7b443d1b303ad5ada1aaa3eb4302cd3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:cf:09:74:21:ca:08:eb:e8:77:67:95:7b:
dd:6b:7c:2d:e5:09:87:8d:4a:9d:54:6c:06:a2:9f:
78:29:48:4f:39:39:23:e3:16:f3:47:e9:e7:26:51:
46:4d:ea:57:c5:3d:af:04:f1:1c:13:d1:77:6a:ca:
0e:41:f5:cf:fa:80:5a:2b:83:43:a8:1f:24:6b:c0:
ab:b8:2c:d0:1d:a4:ff:c9:2d:0d:e9:f0:a2:66:99:
d9:ef:5b:65:9d:e3:6d:1b:76:ac:ae:53:41:f3:6b:
ea:99:de:c5:3d:ea:0c:96:84:57:9c:69:96:3a:e0:
4e:9d:5c:f0:cd:ff:70:7b:a0:07:84:51:20:25:54:
f9:51:81:18:36:57:ee:47:77:b2:6b:71:d9:a9:9b:
78:90:f1:a5:14:d4:2d:bf:f2:f0:4a:ad:ea:e0:77:
21:92:41:f7:ab:5a:21:0f:5c:8a:8b:9e:ba:1f:8d:
99:02:8c:c9:a4:dd:cc:e7:00:d8:7e:8a:28:7e:1e:
ec:47:d6:4d:6f:77:83:6b:e9:11:9e:b9:d0:46:7d:
f3:36:38:2d:ca:e0:40:e7:ec:c7:b8:e7:31:a5:1c:
95:2b:7c:ff:13:d0:21:2b:30:46:0b:7d:ea:02:b6:
05:cf:4e:aa:3d:61:72:f4:2b:36:ad:34:ea:b7:b3:
fc:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:BB:3B:E7:B4:43:D1:B3:03:AD:5A:DA:1A:AA:3E:B4:30:2C:D3:F8
X509v3 Authority Key Identifier:
keyid:D3:6B:FD:92:8B:CC:B4:2A:D9:C4:68:A5:52:AB:73:93:FD:D8:70:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02v9kovMtCrZxGilUqtzk_3YcJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/c7aa2a-090c-4f77-9d69-a74e4a887804/1/e7s757RD0bMDrVraGqo-tDAs0_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/c7aa2a-090c-4f77-9d69-a74e4a887804/1/02v9kovMtCrZxGilUqtzk_3YcJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.25.208.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:7e:93:d1:41:ab:75:4c:b0:67:17:55:51:65:1f:29:0a:10:
b9:73:08:c7:cb:0d:40:d7:ee:6d:4b:32:e2:fc:79:52:08:b7:
3e:86:34:f1:fd:db:66:e1:ed:79:1d:b0:76:61:fe:4e:fe:23:
a0:e6:87:9f:32:42:d6:88:31:6c:92:d8:1c:42:be:c9:6c:a9:
62:01:cd:01:10:02:a2:a8:45:ad:6a:8f:ce:20:70:51:d7:8c:
18:9e:92:a5:b3:c6:01:fa:01:b2:26:99:6d:5a:ed:9f:2e:2f:
58:d7:f7:a9:cf:e4:37:ea:e8:35:0c:35:8e:ad:2c:f9:24:14:
bd:a1:f1:1d:dc:66:b6:2c:bc:b8:7c:29:10:57:74:4e:30:ae:
d1:cb:0c:08:3d:2c:38:42:1f:48:07:28:ac:4f:e6:e2:48:44:
cc:ce:2b:80:f7:6e:b0:58:d9:a9:de:29:72:4f:5a:5d:6b:70:
e5:52:1d:64:67:c7:7b:4f:dc:dc:6d:34:cd:ee:6c:40:da:50:
9f:62:85:5c:8b:dd:80:45:70:2c:75:f1:b3:56:f8:a4:26:35:
0a:82:40:ad:25:13:5e:fa:73:ec:eb:83:7e:8d:4e:da:22:5c:
b6:00:38:7a:33:4a:0f:f0:be:0a:40:5b:0b:66:24:73:6e:ef:
7e:4f:92:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 6 15:45:01 2023 by rpki-client on console-fra.rpki-client.org