Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/5xoE0pzZSYvreTBkEDBWJ1FTbXo.roa
File: 5xoE0pzZSYvreTBkEDBWJ1FTbXo.roa (raw, json)
Hash identifier: 4W5TNEGAvuSHzBHVCKpWfdskMuxLV5MkZci/fA5UhEk=
Subject key identifier: E7:1A:04:D2:9C:D9:49:8B:EB:79:30:64:10:30:56:27:51:53:6D:7A
Certificate issuer: /CN=8db34774b01979284fd9e754fea68fa3c61783d0
Certificate serial: 01857169E20C76B3AD87D9181716625AE58E
Authority key identifier: 8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/5xoE0pzZSYvreTBkEDBWJ1FTbXo.roa
Signing time: Mon 02 Jan 2023 07:37:22 +0000
ROA not before: Mon 02 Jan 2023 07:37:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42926
IP address blocks: 86.104.14.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:e2:0c:76:b3:ad:87:d9:18:17:16:62:5a:e5:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8db34774b01979284fd9e754fea68fa3c61783d0
Validity
Not Before: Jan 2 07:37:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e71a04d29cd9498beb7930641030562751536d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:14:cc:6f:c8:b0:c6:a9:07:34:72:36:33:2b:
9d:b2:38:0c:9d:c7:1a:e7:1e:0a:39:a5:b9:17:10:
3d:87:b2:2f:6a:9e:66:a9:cd:06:27:db:e3:64:f4:
e3:f0:e6:31:c1:ba:42:a1:a1:f8:f8:0c:1f:51:8f:
0a:fb:c4:a7:4a:7e:ef:c8:c1:f3:15:1f:93:7a:5a:
f9:82:e9:b7:ca:ae:d7:60:41:15:3d:98:8f:53:e8:
3c:47:20:d0:c2:dc:25:26:a5:59:86:17:44:01:35:
0a:e3:78:8e:3e:01:66:0d:85:40:97:4b:f9:b3:e6:
6b:b3:ef:c4:58:34:e5:4e:76:bf:5b:30:bb:f4:05:
6a:2b:44:d4:2c:b0:48:4c:80:07:d7:4e:cb:b4:74:
68:60:ac:ac:20:7c:73:6f:2d:e2:7b:7e:96:80:8f:
79:44:5e:15:36:46:02:6f:b7:1d:be:81:a4:f8:bb:
e7:e3:cb:c2:c6:c4:85:2b:a6:16:a1:4d:11:14:fa:
7d:8c:d6:91:00:56:48:2c:c8:ac:17:9e:ad:7d:4c:
67:1f:fd:9d:14:bc:90:4f:8a:88:0c:e0:f8:5a:a8:
3a:09:40:f3:d6:b7:07:e1:fc:05:90:36:d4:49:74:
9d:53:24:10:d8:a8:62:94:1c:c5:29:e0:59:b8:e6:
9e:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:1A:04:D2:9C:D9:49:8B:EB:79:30:64:10:30:56:27:51:53:6D:7A
X509v3 Authority Key Identifier:
keyid:8D:B3:47:74:B0:19:79:28:4F:D9:E7:54:FE:A6:8F:A3:C6:17:83:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jbNHdLAZeShP2edU_qaPo8YXg9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/5xoE0pzZSYvreTBkEDBWJ1FTbXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/70a8f1-d8eb-42b5-bddb-6265521f6df7/1/jbNHdLAZeShP2edU_qaPo8YXg9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.14.0/24
Signature Algorithm: sha256WithRSAEncryption
e2:40:b3:2c:a4:fe:48:8c:6e:d0:0a:5b:e0:74:a1:17:22:06:
cb:18:b5:b4:3e:73:a9:ab:83:86:6f:15:1c:87:fd:09:10:f0:
5b:21:cc:c1:8d:91:3a:7e:a7:2d:a1:01:ac:21:b5:11:27:50:
11:d2:a9:1c:63:3e:fb:d1:d7:c4:8a:dd:d8:9c:e8:3b:dd:15:
3e:b4:db:69:82:e9:8c:f6:dc:c3:9a:e2:40:9a:e4:62:c5:61:
4e:f4:94:2a:73:64:5c:9d:b3:6e:f9:a7:3a:ba:0a:8e:dc:c9:
a8:72:81:76:fd:ae:73:ce:5a:58:d4:5a:37:1e:51:68:c9:eb:
41:d8:be:10:a7:64:ff:0a:68:bf:9d:af:a8:68:9f:ca:1a:d1:
0b:71:f5:fb:0e:6c:fc:73:3f:bd:93:98:ed:2f:c6:2c:f3:78:
94:0d:43:7e:42:81:29:f6:59:bc:9b:cd:0d:11:a8:8e:2f:c8:
0d:ee:21:b0:c3:6d:28:97:d3:4a:89:e6:03:e1:fc:91:73:a2:
0d:9f:62:5b:3f:1b:19:59:7d:dc:13:53:b9:b7:e0:68:03:77:
a5:4b:8d:79:84:98:e3:30:f5:30:c4:1d:e4:55:ef:5c:d8:48:
a8:1f:55:c5:09:6f:f6:37:b4:a3:1f:af:c9:b7:76:0c:db:52:
86:df:bc:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-fra.rpki-client.org