Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/008371-1589-4465-a656-d05dd1f3943d/1/kSSNnHDqQhv9SQtDxC3zLDSp7Z4.roa
File: kSSNnHDqQhv9SQtDxC3zLDSp7Z4.roa (raw, json)
Hash identifier: wTVEQmvAL/Pj96d/OpdYOlx2VBOAzTLbaLRdvqzvph4=
Subject key identifier: 91:24:8D:9C:70:EA:42:1B:FD:49:0B:43:C4:2D:F3:2C:34:A9:ED:9E
Certificate issuer: /CN=33d18bd110c2abed247e42b1ad939d6fad817743
Certificate serial: 01856B80F0F3835FC17C1E71FDAE92F65373
Authority key identifier: 33:D1:8B:D1:10:C2:AB:ED:24:7E:42:B1:AD:93:9D:6F:AD:81:77:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M9GL0RDCq-0kfkKxrZOdb62Bd0M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/008371-1589-4465-a656-d05dd1f3943d/1/kSSNnHDqQhv9SQtDxC3zLDSp7Z4.roa
Signing time: Sun 01 Jan 2023 04:04:50 +0000
ROA not before: Sun 01 Jan 2023 04:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 37.77.151.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:80:f0:f3:83:5f:c1:7c:1e:71:fd:ae:92:f6:53:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33d18bd110c2abed247e42b1ad939d6fad817743
Validity
Not Before: Jan 1 04:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=91248d9c70ea421bfd490b43c42df32c34a9ed9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3d:c7:fc:54:91:7f:f5:0d:cb:9d:ef:08:cd:
b8:5a:b0:6b:76:e9:27:03:0d:56:c1:c4:e6:1e:f5:
3c:dd:a8:85:23:9b:f4:b5:03:7a:6d:8f:1d:13:aa:
c5:b1:98:b9:a0:80:a7:23:07:e0:c1:d4:ad:da:1e:
07:ad:67:3a:31:89:2c:86:d7:b5:d6:98:45:2f:0e:
6a:39:a2:b8:a8:7a:d9:84:bb:ff:3f:5b:09:2a:97:
45:07:e0:2b:f0:03:ba:39:53:a8:4c:31:02:0f:28:
dc:c8:9b:3e:63:c2:33:0a:fd:82:2f:c6:38:47:b7:
ac:4c:ed:b2:48:b6:e0:06:12:25:0b:e6:ee:e0:ff:
86:de:45:35:78:9d:8c:a8:20:bc:25:e0:fc:a0:a9:
dd:6e:d3:65:2a:ed:75:c9:80:98:73:d6:5b:f4:a0:
e4:09:27:e0:79:f1:5e:5d:f9:60:3d:b8:14:62:b2:
3c:c2:e7:a1:d2:9d:01:67:2b:65:87:18:3f:97:a9:
a8:85:37:92:4a:be:cb:30:07:0a:45:c4:a7:26:b4:
e1:38:0b:3f:c7:50:75:7b:d8:9c:8d:33:45:c4:c5:
3d:b4:58:99:e3:8d:04:f5:04:87:8d:26:43:bb:61:
f2:be:9a:b1:ee:31:ef:8d:81:bd:d2:05:ce:d6:03:
8b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:24:8D:9C:70:EA:42:1B:FD:49:0B:43:C4:2D:F3:2C:34:A9:ED:9E
X509v3 Authority Key Identifier:
keyid:33:D1:8B:D1:10:C2:AB:ED:24:7E:42:B1:AD:93:9D:6F:AD:81:77:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M9GL0RDCq-0kfkKxrZOdb62Bd0M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/008371-1589-4465-a656-d05dd1f3943d/1/kSSNnHDqQhv9SQtDxC3zLDSp7Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/008371-1589-4465-a656-d05dd1f3943d/1/M9GL0RDCq-0kfkKxrZOdb62Bd0M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.151.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:d7:8a:b5:c6:6f:f2:bb:6f:09:97:4e:7b:85:11:7c:24:97:
c9:86:5b:6b:4e:bf:4c:ef:6f:a3:68:b5:42:68:5d:d4:bf:99:
6f:73:ce:9e:a6:41:1a:30:c9:1a:ee:5e:31:e1:00:57:46:37:
15:a5:fa:9f:de:4b:d8:87:d6:8a:38:0f:28:f3:a6:15:f4:6e:
ff:ed:e4:e1:3b:4a:dd:c8:7a:98:74:3a:87:40:02:5a:87:d3:
e3:3a:01:5a:b1:ff:2a:65:78:a2:fc:d3:72:d3:86:86:f5:28:
29:b9:ca:10:51:de:c5:5f:d0:a3:89:cd:9d:76:73:1f:8d:56:
85:7c:d5:ab:ec:67:06:5a:3c:a0:fb:fe:14:20:43:f4:58:7b:
48:b0:47:a8:a0:b9:c8:12:8e:90:8a:31:2e:7c:36:1d:cb:cb:
3b:63:90:1a:f2:4a:91:c6:17:e9:11:77:bd:b1:88:da:8c:66:
ed:d8:cd:53:e0:a1:ba:09:63:36:bd:c6:12:2f:3c:07:49:27:
aa:9d:a5:f0:27:0b:94:05:15:a2:47:8e:6e:97:52:85:3c:e6:
70:24:4f:e8:42:a3:c0:85:af:5f:69:bc:ed:1a:17:c2:ad:e0:
ce:74:59:d3:9e:29:cb:dd:f9:3a:6d:2d:85:f8:36:94:9e:a6:
be:6f:f4:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:33 2023 by rpki-client on console-ams.rpki-client.org