Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/0MiAU8eL_VgN6qWoK-WkKsDehrc.roa
File: 0MiAU8eL_VgN6qWoK-WkKsDehrc.roa (raw, json)
Hash identifier: zbvlVCD2irp7CxeGRdzt/cngcRXzvO9izGGEu8YsONY=
Subject key identifier: D0:C8:80:53:C7:8B:FD:58:0D:EA:A5:A8:2B:E5:A4:2A:C0:DE:86:B7
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01856C8A53F3B81257BB25ADB08ADB4DEF24
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/0MiAU8eL_VgN6qWoK-WkKsDehrc.roa
Signing time: Sun 01 Jan 2023 08:54:42 +0000
ROA not before: Sun 01 Jan 2023 08:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 87.248.137.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:53:f3:b8:12:57:bb:25:ad:b0:8a:db:4d:ef:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 08:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0c88053c78bfd580deaa5a82be5a42ac0de86b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:dd:90:de:a7:52:5f:20:37:3d:78:8a:62:cf:
ed:57:27:25:a7:22:df:02:a2:52:83:43:0b:37:a8:
f4:07:f4:ab:14:43:e6:2c:a6:7b:fd:ec:d6:6c:44:
6f:72:52:34:17:35:2b:ca:17:70:6e:46:1c:4c:fa:
ff:38:df:a8:11:ba:60:71:49:da:76:74:40:fa:20:
fb:c4:70:24:05:55:e7:f2:80:9f:82:59:d9:12:e4:
5f:04:5b:14:b2:d5:fc:2e:31:f3:58:ad:df:d3:4b:
30:31:3b:35:a7:18:c1:7c:61:51:a7:0d:f7:e6:00:
0e:82:96:23:08:0e:12:bc:72:7d:eb:6d:7e:c3:07:
87:3a:a0:94:54:33:20:24:3e:db:29:de:0f:59:1c:
ac:17:75:c5:54:15:5f:5b:cf:30:aa:93:01:73:5c:
d3:6e:6c:ff:a4:3b:a8:ab:e7:e1:81:80:fd:70:49:
e4:59:e8:96:f7:cc:e7:aa:8a:d0:33:a5:53:0d:1e:
27:09:02:6b:35:38:c1:55:3f:0d:d0:0c:d4:5c:5f:
b7:dd:32:95:72:9b:2d:bc:c3:2d:31:aa:2d:6e:39:
e3:9c:8b:ab:91:95:8a:8d:c7:b9:3f:70:ed:60:91:
18:05:8c:c1:61:af:c0:39:a4:82:ba:56:83:e6:d9:
96:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C8:80:53:C7:8B:FD:58:0D:EA:A5:A8:2B:E5:A4:2A:C0:DE:86:B7
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/0MiAU8eL_VgN6qWoK-WkKsDehrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.137.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:e0:aa:ae:75:52:b1:cd:f8:c1:8a:b4:b7:79:b4:ff:ef:1a:
a7:19:80:f3:83:56:c1:39:59:27:44:42:e3:0a:5e:c0:6d:83:
c2:fa:14:12:42:b7:b1:9d:e8:68:c9:9c:1d:c0:3f:ef:6c:a3:
8e:c1:4f:87:e8:f6:57:29:6a:d7:57:a3:0e:5f:95:30:15:21:
7c:17:57:58:47:39:34:56:6d:2c:b0:02:06:85:5e:a3:e7:d6:
a6:fa:95:dc:47:18:b1:75:8d:47:69:63:7d:48:13:3f:b2:22:
ba:da:ab:05:89:ec:f6:4a:b9:e9:e7:00:4f:45:24:95:f1:4c:
5f:81:b9:cc:e7:40:75:01:5f:06:56:b6:ba:43:3a:bb:7e:cb:
da:f8:bb:9e:2d:4a:b5:ad:b9:3d:41:49:57:a5:d6:51:69:70:
da:bd:90:b9:77:11:2d:d7:64:59:e1:41:a3:d5:89:8b:ae:90:
99:e2:09:80:c8:b5:5f:fb:18:36:e3:6d:66:3b:93:e1:71:e9:
f9:a5:88:7e:0a:d5:fb:12:62:a7:49:39:95:00:59:09:9d:7e:
ce:9a:96:90:b4:bc:91:26:88:d8:51:f2:14:f5:d2:24:33:6c:
0d:65:75:ca:fb:ce:be:aa:d5:51:2d:1f:f6:a6:28:6b:d8:4c:
92:f9:1b:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:21 2023 by rpki-client on console-fra.rpki-client.org