Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/D_hlUkBITDbmE0mBfTrAIgVDUVg.roa
File: D_hlUkBITDbmE0mBfTrAIgVDUVg.roa (raw, json)
Hash identifier: VO4ZOIR9tIFr9vkVKCPg12Kj8q0/R7bl9iBhTseHcSg=
Subject key identifier: 0F:F8:65:52:40:48:4C:36:E6:13:49:81:7D:3A:C0:22:05:43:51:58
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018B090E74C24E138C4282B6E55EDEF39FCF
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/D_hlUkBITDbmE0mBfTrAIgVDUVg.roa
Signing time: Sat 07 Oct 2023 07:33:44 +0000
ROA not before: Sat 07 Oct 2023 07:33:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 79.98.244.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:09:0e:74:c2:4e:13:8c:42:82:b6:e5:5e:de:f3:9f:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Oct 7 07:33:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0ff8655240484c36e61349817d3ac02205435158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:76:fd:c6:9d:1d:7e:dd:e2:19:b5:cd:23:03:
30:31:e9:c8:ef:e1:9e:92:1c:9d:df:7e:7f:ac:c3:
b1:7f:9a:91:e6:a3:e7:6f:8f:d4:f2:fa:78:2e:5a:
3c:d2:30:a1:fb:6a:a5:93:c1:b5:c6:d2:7b:4c:08:
a9:24:30:8b:a2:7c:18:20:36:64:47:8f:b9:ad:4f:
5d:6f:60:32:ca:eb:ba:91:cd:83:15:59:e5:ac:b3:
30:69:f8:66:32:5b:83:6b:f3:e3:03:da:bb:30:71:
d4:6f:b5:aa:90:2c:3d:d0:81:78:d0:53:b5:3c:e8:
4d:ab:8b:16:9b:b1:44:6e:6b:bd:5b:f3:3b:55:0b:
1c:02:dc:85:17:76:b1:61:26:d6:30:1c:03:df:2d:
f7:b3:5b:4c:c4:3b:0b:f5:2f:d1:3d:72:08:65:a7:
14:6d:6d:1b:50:6f:d4:19:bd:76:fa:62:c0:52:45:
e6:8e:c0:de:48:f4:47:2c:e9:f6:5d:0c:1d:35:56:
09:9d:d3:e2:ee:85:fa:db:3d:a8:a6:99:4b:a1:70:
c3:f8:ae:17:ae:84:2b:61:06:2b:10:de:d0:e3:15:
5d:7f:f0:d3:54:5b:2c:8d:8e:00:8a:2b:e6:4d:ee:
51:f4:ce:b5:33:a7:6f:51:74:a5:2c:26:13:1e:7d:
a2:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:F8:65:52:40:48:4C:36:E6:13:49:81:7D:3A:C0:22:05:43:51:58
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/D_hlUkBITDbmE0mBfTrAIgVDUVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.244.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:91:65:f4:e4:34:df:e0:08:eb:d3:0b:a9:a4:cd:47:ae:15:
60:7d:23:05:2d:e9:05:8e:4f:15:cc:4f:d0:88:44:d9:84:af:
6d:39:1d:85:7c:ec:21:70:0b:3a:a5:10:28:50:99:29:c0:d5:
7b:ad:51:c6:d2:01:d3:23:c4:10:56:aa:a5:b9:69:15:30:d8:
42:89:97:2c:3d:fb:94:e3:a4:da:fd:96:36:54:00:f0:7a:5c:
dd:54:bb:26:f9:ed:71:a4:b2:d0:5d:2b:d3:df:4e:3a:9c:b0:
a4:88:51:b1:41:c8:e0:09:c4:16:76:9c:6f:48:4f:5f:55:fd:
02:00:d8:71:86:64:f4:ba:a6:df:e0:f0:a1:73:4f:b3:f2:f7:
de:34:79:b4:6e:42:17:fc:19:9f:06:15:cd:d5:49:2e:34:50:
44:f5:f3:70:09:3d:c5:14:f9:cd:6c:d1:28:48:67:6d:05:7f:
fa:34:50:dc:39:54:1c:76:01:28:b2:71:84:3d:70:da:3f:a6:
2c:6b:1e:5b:ce:d3:f4:24:21:74:c8:39:fa:e0:85:f9:97:10:
7b:b4:d8:61:83:fd:89:36:d6:ce:4a:99:af:16:5e:e5:f2:37:
d3:d7:79:36:b8:a6:94:a1:05:a0:bc:d6:8f:b6:fe:2a:91:c6:
59:56:e3:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 20:13:42 2023 by rpki-client on console-fra.rpki-client.org