Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/c71c12-7cae-44d6-b9b0-2771fba79a07/1/yrukPeKan7jSaYMmIxCVjcJCxIs.roa
File: yrukPeKan7jSaYMmIxCVjcJCxIs.roa (raw, json)
Hash identifier: IxZj+gvei5+fwO0J4HZ5gcdZ3z0NTksBmYrCRuKnPIA=
Subject key identifier: CA:BB:A4:3D:E2:9A:9F:B8:D2:69:83:26:23:10:95:8D:C2:42:C4:8B
Certificate issuer: /CN=e7159d07b5f6372c86e396a0aa6400a8faa6d531
Certificate serial: 01856B4A32F71315FDB165BFFB6D341EB07F
Authority key identifier: E7:15:9D:07:B5:F6:37:2C:86:E3:96:A0:AA:64:00:A8:FA:A6:D5:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5xWdB7X2NyyG45agqmQAqPqm1TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/c71c12-7cae-44d6-b9b0-2771fba79a07/1/yrukPeKan7jSaYMmIxCVjcJCxIs.roa
Signing time: Sun 01 Jan 2023 03:05:02 +0000
ROA not before: Sun 01 Jan 2023 03:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41547
IP address blocks: 195.138.203.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:32:f7:13:15:fd:b1:65:bf:fb:6d:34:1e:b0:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7159d07b5f6372c86e396a0aa6400a8faa6d531
Validity
Not Before: Jan 1 03:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cabba43de29a9fb8d26983262310958dc242c48b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:40:4e:07:da:a5:87:58:96:88:94:10:d0:8e:
1e:48:38:d5:66:ab:ab:38:2a:0b:0e:04:3b:73:22:
78:c4:f0:b6:b4:c7:d4:49:cb:a1:bb:11:88:b9:2a:
88:57:8a:4e:94:26:f6:34:5e:d9:92:82:2c:5d:42:
83:9d:a7:02:ea:54:e8:95:a3:ef:d5:7a:84:50:66:
7c:1c:0a:4a:c2:a6:cc:31:4a:00:56:28:26:55:f1:
48:0c:66:6c:61:66:3c:d6:97:41:0b:34:b4:af:ee:
23:6c:cb:4a:77:e1:be:d5:1e:a2:51:a8:64:f7:9c:
c8:59:aa:fb:11:3f:36:f0:20:08:58:97:e7:0a:80:
b1:f5:f0:aa:8b:86:ce:5a:52:32:e3:07:9f:5e:8e:
8c:04:44:65:92:c8:70:dc:7d:a5:c2:66:e5:22:de:
84:fc:c6:da:3f:9a:c7:82:f7:0c:e6:c2:fa:4c:ee:
57:ef:a8:b9:37:5a:d5:5b:f1:66:e1:c6:8b:71:e3:
1f:5a:1b:75:26:96:48:66:69:c9:e8:ea:78:c6:b5:
9a:db:63:fd:55:1e:dd:d4:7d:ed:45:ae:f4:c3:c2:
40:c5:fd:37:b1:e0:38:a1:e0:47:a4:51:ac:0e:7d:
50:7b:3c:1f:8a:e8:22:6b:82:0a:ac:dd:82:dc:4f:
21:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:BB:A4:3D:E2:9A:9F:B8:D2:69:83:26:23:10:95:8D:C2:42:C4:8B
X509v3 Authority Key Identifier:
keyid:E7:15:9D:07:B5:F6:37:2C:86:E3:96:A0:AA:64:00:A8:FA:A6:D5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5xWdB7X2NyyG45agqmQAqPqm1TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/c71c12-7cae-44d6-b9b0-2771fba79a07/1/yrukPeKan7jSaYMmIxCVjcJCxIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/c71c12-7cae-44d6-b9b0-2771fba79a07/1/5xWdB7X2NyyG45agqmQAqPqm1TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.203.0/24
Signature Algorithm: sha256WithRSAEncryption
23:51:13:7c:0c:49:a8:13:0b:6c:80:61:af:97:3d:38:2e:c7:
4d:57:ed:b2:b6:26:e7:56:49:54:ed:ee:08:6d:d2:a1:a1:d6:
02:e5:c2:01:a6:62:df:12:40:84:8a:b3:00:a6:33:57:83:7b:
55:65:d8:ad:3b:49:7d:e0:cd:e3:97:2e:aa:2f:6f:3d:d5:5e:
86:50:f0:99:07:71:9e:18:4b:04:f7:b3:9a:99:9e:8a:77:41:
90:ab:e1:24:94:bf:8b:f4:b7:88:a3:3d:80:5e:75:75:83:18:
47:34:1b:5c:f1:89:c9:ff:cd:63:a4:6d:b6:d0:5c:4e:25:5c:
5e:9e:0f:c8:e2:f6:37:af:98:64:d7:51:b5:a8:d8:bd:e3:20:
6c:ee:e4:b6:7f:14:f5:06:d8:f0:13:41:85:15:b2:43:63:3c:
9d:12:e7:9c:9d:d1:b5:45:c3:63:de:ff:9e:ca:d6:20:66:19:
3e:4a:04:ae:fa:76:f4:ba:4b:56:80:20:1d:e3:0a:d4:59:b9:
12:c3:05:c1:0c:ed:a9:e7:72:61:84:60:c0:63:00:98:df:31:
cd:89:ca:4d:27:9d:2a:5a:b4:c5:81:ca:c8:03:59:12:e2:68:
58:db:e4:4e:7f:b9:92:45:e2:b1:44:c0:62:40:9b:b5:85:9e:
c4:21:f2:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:36 2024 by rpki-client on console-fra.rpki-client.org