Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/yMBLr0XCDhIQ--9bRb3Z4wG6dac.roa
File: yMBLr0XCDhIQ--9bRb3Z4wG6dac.roa (raw, json)
Hash identifier: AE2JD8qSdLyrHPIoojlMP8gPz7qlKe8WKn9d45IL47A=
Subject key identifier: C8:C0:4B:AF:45:C2:0E:12:10:FB:EF:5B:45:BD:D9:E3:01:BA:75:A7
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018570950A0AC3605EA4EB97FB7FA085B360
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/yMBLr0XCDhIQ--9bRb3Z4wG6dac.roa
Signing time: Mon 02 Jan 2023 03:44:53 +0000
ROA not before: Mon 02 Jan 2023 03:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16227
IP address blocks: 93.171.244.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:0a:0a:c3:60:5e:a4:eb:97:fb:7f:a0:85:b3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 03:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c8c04baf45c20e1210fbef5b45bdd9e301ba75a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c4:4f:4e:3e:04:99:5b:0d:eb:c2:ac:77:27:
f9:c5:ff:36:d2:bd:f4:12:e7:8c:33:f8:c0:3a:df:
8c:11:d9:0f:4e:4a:01:2f:2d:02:b9:3b:52:a3:10:
ec:7d:d3:66:d6:5c:2b:81:fb:fe:2f:a8:e7:ee:e0:
51:c0:7f:45:81:1e:5d:93:36:6c:d8:5f:b6:e4:ac:
2a:46:55:23:9e:43:07:b9:e7:5b:28:cd:97:ca:f8:
6e:cf:91:92:53:5a:97:98:f1:cb:2f:74:6c:6f:35:
f2:29:e1:b8:63:26:bc:20:fe:1a:66:c2:1a:5e:af:
a7:d9:ea:09:ae:27:ce:da:e1:9e:97:32:14:a4:f0:
5a:80:4b:39:6b:17:c0:c6:2a:e7:7e:9c:a6:71:4a:
0c:53:8a:b1:bc:15:ce:8a:16:cc:02:70:86:04:8a:
dd:a2:34:7b:e4:99:60:3c:e1:b1:20:fb:ba:4a:ad:
b6:f9:f6:60:d3:c3:cd:d9:fc:a6:ef:b0:b4:fa:a6:
45:2a:c9:86:dc:16:27:10:bf:05:79:2b:4b:a0:f9:
6e:9c:dc:f7:02:df:33:ca:46:36:b4:3d:50:c7:f6:
69:e4:e3:b5:2f:e3:62:37:6e:f6:0a:95:98:7f:85:
05:4e:04:0e:5a:16:d3:4b:f3:13:f7:4a:d6:0c:d7:
da:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:C0:4B:AF:45:C2:0E:12:10:FB:EF:5B:45:BD:D9:E3:01:BA:75:A7
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/yMBLr0XCDhIQ--9bRb3Z4wG6dac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.244.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:a1:19:24:d3:c5:3c:b0:46:b7:14:de:51:bb:60:e6:6f:f5:
c6:8a:32:34:84:3e:1f:52:27:a7:ac:29:cc:ed:5f:ea:33:20:
03:c3:79:e5:0d:95:10:63:3a:0a:4f:10:8d:d6:d0:27:ed:86:
09:fd:ca:0f:46:8a:39:fc:7a:19:dc:07:54:a3:47:4e:27:be:
15:e3:60:8a:5c:b5:25:cb:a0:1a:2b:5c:7a:ba:a6:35:82:bd:
a4:f3:80:54:c1:b7:c6:2d:a3:a3:b0:6e:bd:c0:f1:d9:52:1a:
64:81:2e:67:1f:ac:79:15:91:d9:ce:51:a9:08:3d:98:b0:51:
90:9b:09:86:b4:cc:82:3f:3b:14:bd:46:61:b5:e8:2e:c0:0c:
fe:68:20:45:dc:08:61:8b:29:33:37:b5:8c:6b:a3:32:fe:bb:
10:ab:cb:99:76:e0:3b:55:66:33:bf:71:77:65:4c:cd:a5:cb:
e9:56:61:f9:b4:e4:24:4b:a5:ff:09:a3:8d:4b:7d:3e:05:bb:
b1:d2:00:95:ca:b8:d9:72:e5:31:10:0c:d4:ce:17:db:b2:33:
58:b6:db:16:89:13:c3:28:70:72:a4:72:a5:dc:41:24:d5:48:
e3:ec:4a:c8:84:86:23:99:5a:ba:21:de:19:e7:ab:b5:da:61:
88:22:e6:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:32 2024 by rpki-client on console-fra.rpki-client.org