Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/41b82b-cde0-4af6-952c-7e0c7d352671/1/dcqII2AMNt5Yi73YhyS613j3sDk.roa
File: dcqII2AMNt5Yi73YhyS613j3sDk.roa (raw, json)
Hash identifier: gUBwRxD6fYtrz3RpovdAQNr9s+fBVuByLn5BCaXYZmc=
Subject key identifier: 75:CA:88:23:60:0C:36:DE:58:8B:BD:D8:87:24:BA:D7:78:F7:B0:39
Certificate issuer: /CN=dec756af77dafebca10684d68556baacd7173617
Certificate serial: 0185708C93A017900AD539E0C9A95CA5E701
Authority key identifier: DE:C7:56:AF:77:DA:FE:BC:A1:06:84:D6:85:56:BA:AC:D7:17:36:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3sdWr3fa_ryhBoTWhVa6rNcXNhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/41b82b-cde0-4af6-952c-7e0c7d352671/1/dcqII2AMNt5Yi73YhyS613j3sDk.roa
Signing time: Mon 02 Jan 2023 03:35:39 +0000
ROA not before: Mon 02 Jan 2023 03:35:39 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39732
IP address blocks: 195.60.72.0/23 maxlen: 23
2001:67c:20f4::/48 maxlen: 48
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:93:a0:17:90:0a:d5:39:e0:c9:a9:5c:a5:e7:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dec756af77dafebca10684d68556baacd7173617
Validity
Not Before: Jan 2 03:35:39 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75ca8823600c36de588bbdd88724bad778f7b039
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:70:93:e4:c7:d9:51:f1:f9:03:09:a0:d8:f1:
62:18:35:ba:50:7a:ef:5b:2a:00:6a:b9:bd:73:d2:
8b:0c:db:a6:2d:70:78:b1:97:3e:59:90:d3:e2:22:
bc:e1:10:ce:0f:2f:d5:37:ac:36:9e:1b:3c:55:6e:
f9:a7:7d:2a:02:91:b5:e8:30:6a:de:bf:b9:88:d9:
ab:76:72:c1:b4:60:da:aa:57:4a:1c:bc:af:9f:4b:
46:61:74:08:f4:24:2a:2d:c8:eb:4c:f9:3e:44:8d:
c6:53:0b:b7:e1:69:18:b2:a4:4a:e2:c7:71:ef:60:
d1:3b:1b:eb:8f:dd:24:1a:d9:6d:be:02:f1:be:c0:
16:b7:68:c6:fa:12:a4:74:d8:77:c4:c5:9c:51:46:
86:6b:24:7a:0c:fd:40:07:1b:65:d8:55:6f:61:43:
3c:11:1e:55:87:29:be:cb:07:a7:cd:76:c0:1c:72:
c6:e9:00:9e:bf:28:ed:f4:47:9d:b8:4d:41:7f:c6:
2c:ef:99:ec:6f:73:3b:15:88:29:24:2a:93:ae:e9:
75:1f:88:2a:11:d2:af:b9:05:96:e7:b4:0c:1a:1e:
1d:a6:3d:f2:e9:6a:2f:76:ba:87:12:4d:8d:ed:75:
94:cb:68:23:d2:00:6b:15:ba:d5:a0:bd:fd:fd:f1:
0f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:CA:88:23:60:0C:36:DE:58:8B:BD:D8:87:24:BA:D7:78:F7:B0:39
X509v3 Authority Key Identifier:
keyid:DE:C7:56:AF:77:DA:FE:BC:A1:06:84:D6:85:56:BA:AC:D7:17:36:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3sdWr3fa_ryhBoTWhVa6rNcXNhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/41b82b-cde0-4af6-952c-7e0c7d352671/1/dcqII2AMNt5Yi73YhyS613j3sDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/41b82b-cde0-4af6-952c-7e0c7d352671/1/3sdWr3fa_ryhBoTWhVa6rNcXNhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.72.0/23
IPv6:
2001:67c:20f4::/48
Signature Algorithm: sha256WithRSAEncryption
91:1f:32:44:65:c4:ea:da:24:40:f8:66:cf:1e:93:20:96:4d:
dd:0f:70:b5:23:17:b3:ae:f5:d7:21:b1:89:e9:01:d3:79:39:
0f:af:94:8d:be:2c:9e:81:05:ac:f3:ac:f1:df:95:12:50:73:
df:e1:8c:f9:5c:ea:19:0d:4c:ac:79:04:3e:82:63:80:ff:c5:
07:7c:db:64:d7:29:bb:96:37:c9:09:20:0c:f0:e6:07:ff:0c:
2e:34:2f:34:76:d0:2f:a2:cc:c9:11:4a:0a:31:5e:f3:db:dc:
0a:79:bf:3d:21:cf:1c:83:4c:e8:c7:c0:ab:f4:fe:0f:44:ab:
b2:2c:1e:09:d3:dd:b8:88:70:1e:1b:cd:9d:b2:f7:61:70:49:
4b:03:df:6d:90:11:b2:f4:3a:ce:24:65:4d:3d:17:51:55:ae:
e6:1f:56:0b:a2:ee:85:1b:56:db:c5:16:5c:95:fb:a6:66:65:
d3:af:65:80:8b:44:5a:4f:07:66:82:1f:df:5b:de:7e:32:aa:
43:cd:c3:98:b1:53:0c:13:06:f0:60:f8:ea:ea:00:3f:69:ab:
26:91:ee:90:a5:52:93:1f:cd:93:50:e2:4f:a1:a3:f1:ee:31:
c5:65:f2:05:e7:27:47:b9:55:b8:72:6c:76:1c:a2:0e:a2:7b:
51:c0:9f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:34:43 2024 by rpki-client on console-fra.rpki-client.org