Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/8Ye60hxvd9xI_eB4rhmdI0ORzEM.roa
File: 8Ye60hxvd9xI_eB4rhmdI0ORzEM.roa (raw, json)
Hash identifier: 3ooz6tKgSRCEb0ugI1RTtJe/BWR5cv6rYa3mJI1IllE=
Subject key identifier: F1:87:BA:D2:1C:6F:77:DC:48:FD:E0:78:AE:19:9D:23:43:91:CC:43
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 018570F0C196F7F20DE4DA27C41C6EC3ACED
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/8Ye60hxvd9xI_eB4rhmdI0ORzEM.roa
Signing time: Mon 02 Jan 2023 05:25:04 +0000
ROA not before: Mon 02 Jan 2023 05:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205017
IP address blocks: 82.177.58.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:f0:c1:96:f7:f2:0d:e4:da:27:c4:1c:6e:c3:ac:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 2 05:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f187bad21c6f77dc48fde078ae199d234391cc43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:46:bb:cd:e1:67:cf:53:04:ce:c6:01:88:01:
79:56:d6:23:f4:55:da:30:40:5d:f6:57:2d:db:31:
51:a7:1a:06:49:8e:f7:32:02:e5:df:4b:f4:df:08:
0f:14:99:4c:29:33:f4:29:c2:fd:db:39:f9:bc:df:
03:c2:d2:0f:5f:88:1e:c6:36:1d:2c:28:62:b3:ff:
df:53:67:52:86:12:11:08:c6:bc:51:b7:34:79:c7:
eb:f2:fd:a2:80:5c:ae:4e:66:f1:02:1a:26:a4:58:
52:8c:80:b1:53:fa:7c:d5:a2:52:53:b5:3f:ed:c8:
93:24:db:fa:d4:43:b0:64:62:c6:ae:bd:77:d8:3a:
12:db:51:89:b1:54:15:ef:b4:6f:e6:73:0e:31:82:
f8:0d:73:59:60:d2:df:14:34:8a:9c:80:e1:4f:05:
82:ea:c3:62:6c:3c:7a:46:2d:ad:ef:da:85:bc:f1:
7f:fa:ee:1a:94:b8:1c:66:24:34:1b:36:82:e9:c5:
ad:e6:57:ce:9c:44:e3:e8:a9:f4:89:28:8a:35:31:
b8:a1:0f:b1:88:ff:9c:43:22:4b:9f:d1:62:af:18:
a1:6c:a1:5f:0b:fa:e1:85:03:d9:b4:90:92:c6:38:
27:b3:03:97:fa:3a:60:96:53:fc:ec:97:b1:eb:7a:
1d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:87:BA:D2:1C:6F:77:DC:48:FD:E0:78:AE:19:9D:23:43:91:CC:43
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/8Ye60hxvd9xI_eB4rhmdI0ORzEM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.177.58.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:3b:20:9f:40:2e:61:11:21:05:d8:c8:ab:da:7e:04:f3:a0:
ba:1d:33:c4:d7:9c:75:0f:11:e3:ef:30:95:18:7c:56:22:7c:
74:be:08:36:df:62:31:4b:2f:c8:42:f4:5a:de:d5:58:98:a4:
79:cc:29:c2:82:71:3d:f0:70:3b:aa:1f:ae:a3:c4:35:71:2d:
6c:76:0c:93:08:65:5c:a2:e6:f6:53:a8:14:be:58:4a:f2:35:
1c:43:72:2d:28:7d:34:28:b3:95:dc:dd:ba:3b:37:6e:8d:34:
34:5e:ea:33:bc:ec:05:55:b8:e3:da:2c:8e:88:e7:4f:91:86:
fa:d9:da:7e:d2:e0:55:aa:49:c2:0e:05:fa:b1:2d:4e:d4:38:
3c:87:5b:11:64:35:ea:d9:eb:57:ff:77:4d:38:7e:95:a4:a2:
61:8e:73:0f:91:52:36:8c:98:8b:c0:d1:6b:bb:a9:cc:21:d0:
8b:19:87:74:b2:17:72:2a:9a:66:91:dd:31:11:4b:e6:65:1c:
c0:8b:91:5c:15:aa:8b:65:39:9f:43:ee:2a:f0:08:70:1d:6e:
17:e5:c9:6c:a3:5e:28:de:ac:8e:04:e5:b6:61:51:fd:84:63:
57:61:1f:51:64:50:cf:19:2c:70:cb:fa:53:50:e8:8c:3e:0b:
29:a3:a9:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:56:36 2024 by rpki-client on console-fra.rpki-client.org