Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/8Uo0LY2afqaHgXnWLoZ9Jpw_S5U.roa
File: 8Uo0LY2afqaHgXnWLoZ9Jpw_S5U.roa (raw, json)
Hash identifier: r5W1izmaDKyb/jHh8PPJ/houXGBMXu3ldholAO37odE=
Subject key identifier: F1:4A:34:2D:8D:9A:7E:A6:87:81:79:D6:2E:86:7D:26:9C:3F:4B:95
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01872EF091D294E3EF65A93843C50B07C9CA
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/8Uo0LY2afqaHgXnWLoZ9Jpw_S5U.roa
Signing time: Wed 29 Mar 2023 19:55:30 +0000
ROA not before: Wed 29 Mar 2023 19:55:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209043
IP address blocks: 79.175.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2e:f0:91:d2:94:e3:ef:65:a9:38:43:c5:0b:07:c9:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Mar 29 19:55:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f14a342d8d9a7ea6878179d62e867d269c3f4b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:27:f9:9c:c0:62:9a:41:e0:69:6b:71:b9:1a:
50:23:d3:99:d2:23:74:08:ff:38:35:b4:a5:1c:4c:
12:c1:fd:ca:23:05:4e:65:96:f2:e0:d3:8c:e6:e1:
0b:95:8b:e7:ba:60:a2:e0:67:c2:0c:20:28:38:a5:
40:3b:5d:49:a9:2a:63:bb:3f:1d:4d:7d:f4:f1:62:
68:f6:a2:8e:8a:a8:e4:37:43:8d:64:dd:23:15:a6:
16:6c:37:82:73:19:16:a0:0a:9d:d1:e1:6d:a2:b4:
5c:39:c5:2f:28:0f:77:e0:9c:b2:98:23:dc:4b:30:
9d:33:65:61:f0:d3:cd:ad:01:12:8d:56:94:73:77:
7a:be:f9:14:75:7e:49:82:e5:ad:43:cc:c9:26:77:
47:10:e8:aa:27:a1:d0:18:33:54:54:f0:98:99:57:
c4:95:5d:2d:3b:5c:10:74:20:1a:56:81:30:07:fa:
f5:06:1b:ec:f2:5b:a5:06:b6:8d:97:1b:60:a3:97:
24:c8:40:49:f7:9e:e5:df:3e:ec:bc:f2:f0:32:4e:
21:fc:5b:8c:88:3a:fe:78:af:ba:d1:48:7a:6a:df:
a5:47:aa:14:ce:95:cd:e6:be:27:e2:e1:15:58:d6:
93:5e:90:ae:0f:68:83:47:5c:d1:68:6e:8b:7c:10:
7a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:4A:34:2D:8D:9A:7E:A6:87:81:79:D6:2E:86:7D:26:9C:3F:4B:95
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/8Uo0LY2afqaHgXnWLoZ9Jpw_S5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.175.117.0/24
Signature Algorithm: sha256WithRSAEncryption
16:3e:0b:43:af:3e:cd:28:ac:9a:3c:02:5b:2c:45:e6:2e:be:
fb:d7:f9:11:3e:e7:52:0c:34:7b:53:e2:f7:f8:65:82:d4:01:
e2:9c:e7:1a:48:d0:58:5b:94:9e:3c:9e:8d:26:52:d7:6d:35:
07:ef:4a:88:56:17:9d:1b:5d:03:40:34:4d:b0:a0:c8:43:83:
47:1c:17:8f:79:9b:2d:44:c3:bf:84:71:68:d3:e2:e5:b1:73:
ad:b0:d3:42:c0:80:e3:0f:5e:10:04:48:6a:95:80:57:19:f6:
cf:be:8a:15:60:6e:61:55:b0:5d:84:42:57:14:28:24:81:1d:
52:69:f1:3b:a0:49:46:b7:b0:c8:2e:57:21:d7:fe:4e:b1:e5:
54:ea:cc:e7:f0:3c:a8:e8:63:6c:95:3e:e1:02:98:e5:24:af:
e8:dd:cc:ed:84:27:0f:c2:37:af:c2:a1:42:01:9f:1a:88:da:
80:a5:02:6a:b6:74:a2:07:3b:e9:27:f7:7d:a0:34:42:8e:1a:
bd:11:3d:de:4f:64:30:2d:d1:11:61:a6:0a:66:c9:1f:69:2b:
f8:3b:4e:9c:4c:33:13:cc:9c:8e:bb:0d:7b:cf:1c:79:4f:6a:
83:91:c5:c7:31:8f:97:8d:40:6a:27:fe:0f:f3:90:b9:33:c2:
1c:22:d4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:57 2024 by rpki-client on console-ams.rpki-client.org