Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/V1LhpbLOiq2qLT_WgdjeMIgYQXc.roa
File: V1LhpbLOiq2qLT_WgdjeMIgYQXc.roa (raw, json)
Hash identifier: jN0Q1Dzxp9rqcRQrhJkoQKJMJ5WHUgjPrFJT/Mv68Js=
Subject key identifier: 57:52:E1:A5:B2:CE:8A:AD:AA:2D:3F:D6:81:D8:DE:30:88:18:41:77
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 01857067218666AACA0CDD1964820A97543D
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/V1LhpbLOiq2qLT_WgdjeMIgYQXc.roa
Signing time: Mon 02 Jan 2023 02:54:45 +0000
ROA not before: Mon 02 Jan 2023 02:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 17447
IP address blocks: 94.137.78.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:21:86:66:aa:ca:0c:dd:19:64:82:0a:97:54:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 2 02:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5752e1a5b2ce8aadaa2d3fd681d8de3088184177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:51:85:37:b4:e6:d7:d6:ce:70:6e:8f:17:a0:
0c:22:8a:9e:ff:38:42:aa:cb:4e:df:9c:23:16:0a:
8b:12:a7:6a:f1:fd:ab:71:71:a0:08:ac:67:e9:dd:
e1:a9:fc:27:7d:f3:94:98:45:ef:f1:f8:b0:58:dd:
f6:de:b7:b9:11:27:50:7e:03:ea:42:9a:2c:52:a4:
a1:cc:4e:32:c2:8a:0b:62:5a:30:41:ab:6a:56:b1:
7d:b4:53:bc:12:c0:4f:13:43:a7:2d:23:ef:a8:15:
5b:40:28:de:db:f4:04:f3:51:d7:68:1c:26:bd:bd:
ba:1d:9f:04:04:eb:59:b7:6b:7b:6b:84:b9:96:c6:
71:83:08:38:20:cd:37:69:7a:93:1c:1c:69:07:56:
7f:19:ef:9d:cc:bc:62:bc:f4:c8:25:b3:e6:60:cf:
2c:b8:0f:11:b8:9e:53:72:76:cc:e0:e5:0c:44:b3:
9e:19:a7:dc:32:c8:2d:fa:d0:f0:01:df:98:87:84:
21:16:68:49:eb:1c:b9:34:ce:f2:e7:03:e9:93:83:
9d:ba:ce:aa:4e:ce:fe:95:2d:6e:44:41:23:89:3b:
06:8c:d8:5f:05:2e:d8:d9:75:4a:e5:84:75:21:4e:
f4:9e:a9:65:f1:56:40:00:8a:c6:e6:26:a8:43:14:
0d:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:52:E1:A5:B2:CE:8A:AD:AA:2D:3F:D6:81:D8:DE:30:88:18:41:77
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/V1LhpbLOiq2qLT_WgdjeMIgYQXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.78.0/24
Signature Algorithm: sha256WithRSAEncryption
41:c7:62:9d:c9:12:ef:91:3f:76:e2:e0:dc:a4:7e:4c:9b:dc:
6c:fd:10:f3:2a:6f:64:b3:42:83:94:34:cd:9e:89:b0:28:35:
66:80:6a:bd:3c:b5:9e:ae:ea:c1:88:59:f1:04:3d:f4:82:9b:
a9:ac:9e:b4:27:13:95:9d:d5:e7:6a:74:24:b4:dd:fb:bb:8e:
8c:b4:bb:3d:41:08:33:b1:e7:82:c1:56:eb:23:0b:b9:f3:5c:
4e:43:f0:01:8b:09:6b:19:07:64:68:18:7a:46:9a:a8:a9:52:
ee:9f:7e:a0:0a:64:91:81:18:18:d7:86:dc:52:a7:69:b8:bf:
fb:f2:27:b6:3e:66:df:43:2a:17:26:1b:7d:78:fb:d6:5f:e0:
93:92:f5:5e:a6:2b:c0:02:ba:f9:17:e9:87:d6:0b:e0:bd:c5:
d9:27:71:b6:3b:a5:bc:47:c2:9e:ff:07:bf:e3:90:91:03:72:
a8:4f:71:83:46:df:34:4b:3f:4e:18:48:f9:fa:84:2e:91:73:
8e:f3:21:c2:3f:89:36:71:63:da:63:78:2a:e8:57:c8:49:4c:
bd:c9:a0:af:d4:42:84:bd:d8:94:80:1b:94:3b:dd:71:ed:1b:
58:02:86:6d:1a:25:17:b3:42:f6:8d:c7:90:4e:5b:2c:16:7c:
8b:ab:06:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org