Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/rXaEHzjHvam95NxgqkTTtHLVoJk.roa
File: rXaEHzjHvam95NxgqkTTtHLVoJk.roa (raw, json)
Hash identifier: vEAn7DrHIUJu7a6IQylRMZgAKnVSk3pPhubNqOTghQ8=
Subject key identifier: AD:76:84:1F:38:C7:BD:A9:BD:E4:DC:60:AA:44:D3:B4:72:D5:A0:99
Certificate issuer: /CN=8f3818554a51808eefb829ec7465a3222f270123
Certificate serial: 01856C53CE11658FF35A73BE48C48CC3445C
Authority key identifier: 8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/rXaEHzjHvam95NxgqkTTtHLVoJk.roa
Signing time: Sun 01 Jan 2023 07:55:09 +0000
ROA not before: Sun 01 Jan 2023 07:55:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199145
IP address blocks: 84.47.173.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ce:11:65:8f:f3:5a:73:be:48:c4:8c:c3:44:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3818554a51808eefb829ec7465a3222f270123
Validity
Not Before: Jan 1 07:55:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad76841f38c7bda9bde4dc60aa44d3b472d5a099
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:6c:6a:0a:ba:9e:7e:a1:cc:91:50:a3:3d:9b:
28:e2:71:e0:68:65:23:38:1f:76:34:40:a5:d0:6d:
8e:63:d4:6d:50:ce:1a:f6:74:aa:41:69:2d:b7:3a:
31:fc:84:1a:21:3b:50:9e:6e:cc:60:61:a0:bb:4a:
1f:49:0e:94:37:17:37:c5:83:12:04:ff:d5:84:e8:
ff:0c:f8:3a:a5:80:01:f5:dc:50:a4:68:de:8b:da:
3e:cc:10:04:23:c3:c0:ad:31:3c:09:56:71:88:5c:
15:67:f7:98:19:c9:49:22:98:6c:75:17:a6:d1:ea:
ad:09:ba:58:22:0b:51:c6:17:34:1b:98:64:0d:24:
cb:5c:90:a0:84:43:63:f8:6d:9d:fa:79:89:cb:32:
c3:6b:de:aa:fc:56:be:1e:14:ac:16:60:51:72:50:
a4:44:3e:20:02:43:c3:60:a5:0b:6c:31:6c:54:28:
ca:26:33:69:db:0e:63:7a:a7:e3:0d:1a:a8:77:28:
b1:5c:0b:4c:44:13:9d:b8:03:d4:35:fa:55:d6:26:
a3:be:f1:00:1f:c3:3f:e9:1c:e0:c0:b1:28:c2:54:
ce:a8:c9:5a:22:4e:f0:24:78:60:d5:e2:c8:f2:7d:
77:8a:d8:9c:13:db:d6:f0:dc:9e:df:5f:f2:26:0e:
62:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:76:84:1F:38:C7:BD:A9:BD:E4:DC:60:AA:44:D3:B4:72:D5:A0:99
X509v3 Authority Key Identifier:
keyid:8F:38:18:55:4A:51:80:8E:EF:B8:29:EC:74:65:A3:22:2F:27:01:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzgYVUpRgI7vuCnsdGWjIi8nASM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/rXaEHzjHvam95NxgqkTTtHLVoJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/09dba4-1c93-49d6-8888-bfb4ba30e45a/1/jzgYVUpRgI7vuCnsdGWjIi8nASM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.47.173.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f8:19:70:1d:6b:ae:8b:bd:ea:87:d7:44:4a:e7:df:24:c8:
b9:91:2f:86:20:b6:83:d9:16:a0:5e:ab:7e:08:1e:bb:45:0a:
67:c3:fd:12:ca:05:dc:71:79:84:23:56:88:fe:2f:31:3b:fe:
9d:da:69:67:3e:dc:66:98:19:9e:1f:1c:5a:3b:2a:3a:17:d2:
72:22:75:2d:09:33:cf:3e:dc:2f:39:0b:c2:cd:6a:ee:00:23:
ce:dc:61:03:fb:62:84:44:d7:42:cf:f4:f7:e9:f4:a8:0d:41:
8b:f3:a3:e0:7f:72:60:31:03:a7:53:f1:9f:66:1b:01:29:79:
ad:5d:eb:50:e2:68:a7:ad:e4:a0:4a:1f:e1:6d:c2:24:34:d4:
53:61:8e:e3:4b:b1:3e:92:3e:c5:7f:ee:6b:f2:9a:55:0e:34:
64:e0:3d:47:b7:a7:5e:3c:56:af:7b:d8:be:52:09:30:43:90:
5c:c5:d4:1c:38:bb:d2:ab:b7:b8:04:8d:78:fc:39:ef:b9:0c:
5f:ba:b9:78:5d:ac:fd:96:f6:30:94:11:a6:29:10:12:48:99:
1b:74:4d:d5:43:b4:db:c5:a6:06:27:66:06:2e:b3:31:07:27:
7e:ec:86:bd:b1:c8:19:28:b3:f4:06:03:2e:fc:61:51:03:a7:
70:b8:40:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:32:14 2024 by rpki-client on console-ams.rpki-client.org