Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/7zplToKBBx4occXgGovQdG2zxvk.roa
File: 7zplToKBBx4occXgGovQdG2zxvk.roa (raw, json)
Hash identifier: LKK8UySdR5zwBysj8P7qZd2ilOX9Sko+pD0sU7YuAZI=
Subject key identifier: EF:3A:65:4E:82:81:07:1E:28:71:C5:E0:1A:8B:D0:74:6D:B3:C6:F9
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01856C8A5E177D9E0C466D9A56D7054AEDC1
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/7zplToKBBx4occXgGovQdG2zxvk.roa
Signing time: Sun 01 Jan 2023 08:54:45 +0000
ROA not before: Sun 01 Jan 2023 08:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 87.248.132.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:5e:17:7d:9e:0c:46:6d:9a:56:d7:05:4a:ed:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 1 08:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ef3a654e8281071e2871c5e01a8bd0746db3c6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b2:08:51:8a:61:4e:63:c0:b8:06:c6:35:20:
c0:a3:ea:fc:da:47:ef:f2:fc:f3:3d:69:12:9c:d7:
b3:a0:38:53:58:dd:ed:f7:ad:15:71:a8:6f:56:7c:
d9:a2:a3:9c:4b:7e:a4:f5:a1:bc:70:16:a7:1d:f4:
66:08:69:79:ef:6c:2d:e0:1f:dd:94:de:63:2f:d0:
78:9b:1d:fc:3c:a1:fe:80:8e:21:40:71:e3:af:2d:
e8:96:0b:6a:d2:e3:d4:ff:e4:62:a4:a9:7f:8e:a4:
30:c2:fc:6c:5d:51:f3:4d:f1:d0:5e:7e:45:01:90:
a0:62:86:0c:cb:97:e3:bd:8c:be:02:11:5b:18:d4:
9f:05:bf:0f:71:93:d1:fe:81:1a:e8:c2:b3:1b:2e:
2d:63:1c:37:8f:89:f3:f5:9a:e1:f1:48:fd:64:e2:
84:00:0e:8d:c4:42:37:3e:61:7f:1d:cb:4c:fa:7b:
54:5b:12:a1:1e:46:ee:60:76:09:bf:3e:da:6c:5f:
f6:2f:56:5b:0a:bb:f0:a7:74:41:c7:39:06:bd:57:
23:0f:15:a2:f8:df:3c:16:43:73:03:fa:6a:48:7a:
88:58:c4:39:a1:14:e5:2f:8c:0c:96:30:3e:14:d0:
7d:8a:81:82:86:8d:98:96:c7:31:0b:ac:db:8f:50:
a9:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:3A:65:4E:82:81:07:1E:28:71:C5:E0:1A:8B:D0:74:6D:B3:C6:F9
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/7zplToKBBx4occXgGovQdG2zxvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.132.0/24
Signature Algorithm: sha256WithRSAEncryption
18:08:29:40:84:63:59:56:16:4e:6d:e8:de:83:5b:09:91:49:
26:f1:0e:4f:fa:a7:60:db:6e:f6:14:91:fb:a9:df:51:fa:e3:
65:eb:c3:0c:01:b1:4e:f8:5d:7c:93:4d:f4:ec:99:02:9e:c2:
21:17:31:b2:7e:d7:68:25:9a:00:68:3e:1c:9f:27:61:4b:75:
8c:c1:52:e5:bc:c4:ad:6b:f3:6c:18:3b:aa:d0:8e:94:21:17:
b5:57:14:bd:fc:a2:c8:a0:9b:2b:2b:54:34:00:e2:65:7e:48:
53:3d:f5:55:56:6f:a6:3d:ca:4e:4c:da:e8:89:9b:ba:d4:f5:
73:31:a9:04:71:f2:72:ac:09:67:ad:25:5d:03:55:fa:3d:f5:
52:8e:8a:f2:86:02:36:60:c2:44:98:f0:2d:83:a8:0b:8f:01:
26:75:02:2c:93:13:2c:e4:09:da:f8:c4:6c:50:b6:76:e1:5d:
5e:68:91:3a:ca:8b:27:bd:33:f3:9a:90:9b:45:f0:19:ab:ee:
72:96:cf:f0:2c:d0:81:29:db:a9:59:89:5b:6a:3d:13:8c:b5:
df:c7:ff:fe:00:82:66:36:1d:3b:d8:f6:9f:7a:65:c5:68:38:
4f:c9:36:4f:6e:af:54:64:27:b9:1e:1f:70:7a:f8:08:fe:ab:
49:98:47:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:35 2024 by rpki-client on console-fra.rpki-client.org