Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/DSqMYjdXpjH1YHcdT7_aZyNK1lI.roa
File: DSqMYjdXpjH1YHcdT7_aZyNK1lI.roa (raw, json)
Hash identifier: X6vb30pDGSAR0AhhFmSV66h6mjN/JJNSu/qrIhu/6xg=
Subject key identifier: 0D:2A:8C:62:37:57:A6:31:F5:60:77:1D:4F:BF:DA:67:23:4A:D6:52
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570950CBF7FD335C216033A512ADBCEF2
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/DSqMYjdXpjH1YHcdT7_aZyNK1lI.roa
Signing time: Mon 02 Jan 2023 03:44:54 +0000
ROA not before: Mon 02 Jan 2023 03:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29035
IP address blocks: 93.170.4.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:0c:bf:7f:d3:35:c2:16:03:3a:51:2a:db:ce:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0d2a8c623757a631f560771d4fbfda67234ad652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:37:11:00:db:2a:9a:2e:f0:ad:10:4c:e8:11:
74:b4:1f:d0:a1:39:07:5e:3b:d0:a4:ad:0c:e2:b2:
a6:47:ff:bf:91:a6:c8:8b:f0:99:21:a9:a1:79:df:
08:18:91:c4:0d:78:57:eb:d9:31:c8:cf:5e:41:89:
6a:9e:fb:c4:f8:12:ab:fa:98:bf:c0:af:aa:af:f1:
f9:10:cf:42:0e:5c:75:4d:c7:fd:c5:70:75:9c:ef:
11:75:6a:e7:19:18:ec:10:6d:65:21:d2:93:24:53:
f8:f6:46:3e:4a:89:e1:f2:1e:44:7c:42:4d:fe:1b:
a1:b2:c6:78:96:53:33:93:67:a8:83:c8:b3:4c:65:
3a:c0:6d:a2:f4:60:b4:7f:89:17:82:bc:b5:e5:ce:
b2:59:90:6a:10:6d:7b:29:67:e8:06:11:d6:4c:f4:
a7:a2:25:71:52:96:4f:e1:87:04:b1:60:3e:07:78:
c1:44:6a:1a:b8:d2:74:1e:a1:39:c5:b6:2d:df:5a:
92:55:9f:70:b7:98:ff:df:96:89:b2:ed:2a:b4:ca:
f6:0d:95:56:5a:c1:a2:b3:f9:6b:32:ca:ab:9a:da:
47:10:db:5d:df:39:ea:49:4c:49:61:8b:0c:96:05:
2e:c2:e9:08:3d:70:d9:6d:d0:49:92:56:2e:c2:97:
32:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:2A:8C:62:37:57:A6:31:F5:60:77:1D:4F:BF:DA:67:23:4A:D6:52
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/DSqMYjdXpjH1YHcdT7_aZyNK1lI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.4.0/24
Signature Algorithm: sha256WithRSAEncryption
66:89:2e:83:d2:cc:e8:31:ed:7a:7c:2e:5b:f4:9d:61:18:57:
d4:99:f5:59:bf:27:6e:f7:4d:74:83:37:fa:28:c2:8a:c2:36:
34:36:6a:af:88:6d:8c:4f:1b:5a:87:04:3a:29:70:06:21:84:
eb:d6:37:da:17:3f:c1:86:a2:7b:09:17:84:36:02:c3:e7:bf:
9e:2d:5f:de:6a:58:f7:08:36:86:bd:e0:73:a5:a1:7f:be:f7:
ef:69:40:d8:78:df:0e:20:e6:26:5a:3b:2f:f5:20:2a:dd:33:
d3:b8:9b:39:d3:19:bf:a1:f1:92:b7:a0:5e:c0:90:60:eb:57:
7a:fa:f1:b3:33:53:b1:5f:97:a7:09:8c:ad:54:24:44:04:7b:
7f:e8:28:1f:40:aa:a6:0f:3b:24:1c:91:de:c3:19:f3:b9:be:
e4:9a:1e:4f:62:f1:10:f1:c8:c8:c5:f4:ff:32:34:e8:af:ac:
68:37:14:3d:96:3c:a8:34:62:5f:91:69:13:fc:37:02:91:3d:
f5:16:a4:8d:5b:f0:65:6b:ce:13:52:94:61:69:f0:9f:37:0b:
c1:38:bd:32:67:41:2c:36:87:be:0c:83:9b:17:d2:8d:cb:56:
21:05:7c:8c:70:ab:3c:4b:5d:9c:37:02:b1:8c:6a:75:4c:9a:
d9:2a:4c:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:31 2024 by rpki-client on console-fra.rpki-client.org