Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/Iyjsolqhd5gtjzEdtq4rSa7_M7c.roa
File: Iyjsolqhd5gtjzEdtq4rSa7_M7c.roa (raw, json)
Hash identifier: SImFjfQaSc8INMufFZ9He0m5JBspTJt0mGTv8avVAjk=
Subject key identifier: 23:28:EC:A2:5A:A1:77:98:2D:8F:31:1D:B6:AE:2B:49:AE:FF:33:B7
Certificate issuer: /CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Certificate serial: 018572280B534AF5978C2ECE3138F11849AB
Authority key identifier: 23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/Iyjsolqhd5gtjzEdtq4rSa7_M7c.roa
Signing time: Mon 02 Jan 2023 11:05:05 +0000
ROA not before: Mon 02 Jan 2023 11:05:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8595
IP address blocks: 82.194.242.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:28:0b:53:4a:f5:97:8c:2e:ce:31:38:f1:18:49:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23e3d92bfe16619ca500c03267effa9aa7ca0c47
Validity
Not Before: Jan 2 11:05:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2328eca25aa177982d8f311db6ae2b49aeff33b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:f0:89:70:09:d9:4e:cf:bf:98:5a:f9:8c:3b:
f8:8d:b6:ee:04:30:e8:5d:47:21:9a:b7:47:09:90:
d2:bd:c1:7e:f3:4e:b2:9a:a4:2e:b0:53:f4:15:e8:
01:d4:ba:ba:90:7d:90:e5:13:4d:51:b5:19:54:ed:
91:6f:57:1e:80:ef:41:23:b2:d0:06:1b:d7:5e:e2:
2a:e7:b8:ee:0e:73:55:af:c3:b3:e1:64:6e:e8:c4:
ac:42:b8:24:1e:17:fe:4c:a2:3d:a5:23:c9:11:fc:
ce:20:f8:f0:98:45:ea:8d:2a:44:f1:2a:8d:93:cc:
dc:cd:d5:88:ff:0d:a2:e9:be:d5:20:96:d8:d8:aa:
24:97:a1:3e:32:2c:e6:1d:ac:4a:f5:a6:e4:8f:4f:
04:0d:8b:24:02:7d:bc:3e:87:c4:6d:82:59:7e:72:
6e:0a:cf:c2:d4:e8:32:6a:d3:7f:4d:3a:fe:88:04:
52:5c:5d:18:5f:19:7f:fc:22:a9:b8:0e:96:ad:28:
50:cf:b3:a1:7e:aa:dd:29:b0:fd:9f:d1:73:60:f1:
75:23:b6:8e:dc:ee:18:91:ef:63:c3:3e:0d:4d:ff:
cf:57:7c:cd:2c:86:77:05:64:50:a3:74:7f:c8:19:
5c:61:83:c3:55:8d:da:3a:f4:85:b6:ac:5b:05:a3:
87:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:28:EC:A2:5A:A1:77:98:2D:8F:31:1D:B6:AE:2B:49:AE:FF:33:B7
X509v3 Authority Key Identifier:
keyid:23:E3:D9:2B:FE:16:61:9C:A5:00:C0:32:67:EF:FA:9A:A7:CA:0C:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I-PZK_4WYZylAMAyZ-_6mqfKDEc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/Iyjsolqhd5gtjzEdtq4rSa7_M7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/9c2c90-c7d4-48b7-9baf-f1bf0c33a908/1/I-PZK_4WYZylAMAyZ-_6mqfKDEc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.194.242.0/23
Signature Algorithm: sha256WithRSAEncryption
02:b6:fe:6c:fe:8a:f0:b8:36:dc:a2:8f:ab:76:f3:56:ea:e0:
3e:e3:cb:14:e9:40:1a:c5:73:42:64:ee:7f:06:86:33:1b:29:
2d:f2:7e:45:48:e1:16:80:c1:eb:04:18:82:25:ad:fb:2b:a1:
c9:17:74:d3:7c:6c:de:30:2e:b3:43:7c:97:70:e6:97:20:5c:
da:41:13:bd:30:b2:04:39:d5:d6:2b:2d:c0:d2:59:1b:27:93:
90:5a:74:f5:42:f6:9b:a1:02:6a:84:05:8b:0d:2d:fd:bf:71:
c9:33:21:25:a3:07:49:04:17:0a:8e:04:f9:af:99:8b:c4:6e:
0b:f7:d4:2a:a1:2f:4d:bf:97:46:c2:fc:a6:5e:c6:59:19:76:
e6:9e:63:50:fe:b7:1b:e0:55:d6:5f:37:0f:c0:e1:2b:10:17:
16:7c:f0:e4:4d:2c:ca:ac:9c:65:d0:c4:cd:42:e4:ee:08:0e:
00:10:0c:f0:26:48:90:4a:a1:fb:75:bd:64:88:80:eb:f8:4c:
5e:02:ad:1c:ec:24:12:b0:7a:f0:4e:fb:2e:0b:f2:c0:bf:3d:
da:2b:1f:41:b4:2a:d5:11:bb:42:5e:94:3b:f3:56:b7:2a:c7:
fc:8f:c0:d0:30:07:b2:0c:33:d3:18:44:97:f5:af:52:ef:ed:
ef:73:8c:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:26 2024 by rpki-client on console-fra.rpki-client.org