Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/r7HUiUTtqlUE_-a2NBWhPLGjmGs.roa
File: r7HUiUTtqlUE_-a2NBWhPLGjmGs.roa (raw, json)
Hash identifier: EkNhTH6fiPbFqzvI44U8bJbT+b4rBEPQoI3gVb8pphU=
Subject key identifier: AF:B1:D4:89:44:ED:AA:55:04:FF:E6:B6:34:15:A1:3C:B1:A3:98:6B
Certificate issuer: /CN=aa4943183b611be3a0775382509490048b0ad738
Certificate serial: 0185733135764B41F4F9DF27D7D60831CD69
Authority key identifier: AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/r7HUiUTtqlUE_-a2NBWhPLGjmGs.roa
Signing time: Mon 02 Jan 2023 15:54:42 +0000
ROA not before: Mon 02 Jan 2023 15:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34509
IP address blocks: 84.205.160.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:31:35:76:4b:41:f4:f9:df:27:d7:d6:08:31:cd:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa4943183b611be3a0775382509490048b0ad738
Validity
Not Before: Jan 2 15:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=afb1d48944edaa5504ffe6b63415a13cb1a3986b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2a:75:96:dd:3f:00:0b:8f:a8:6c:b9:2f:bd:
66:9f:55:44:ae:41:aa:29:a3:1b:84:be:56:38:f7:
99:5f:b2:08:bc:b5:64:26:cb:84:8e:80:3e:cc:7e:
72:ac:b8:01:81:27:6a:f3:c3:dd:dc:cc:c7:a2:4d:
29:a4:b2:86:74:c3:c9:69:cd:a0:e4:9b:34:6a:1b:
a0:2b:8b:7c:7d:06:0d:47:81:a4:06:de:4a:90:ea:
64:03:16:ff:f0:52:7d:8d:58:c9:15:6e:1c:78:98:
f9:12:ea:85:78:dc:bf:3b:6c:6b:93:b4:44:c2:da:
43:eb:b0:31:be:ff:b5:9e:1b:65:b0:82:89:10:bd:
3d:92:08:07:4f:c7:4a:59:0b:44:e3:01:d6:8c:4a:
7a:f8:59:7f:66:6f:7f:c3:6c:0d:41:5c:a0:1d:0a:
60:bd:b7:ae:97:eb:b6:43:ee:e7:38:54:06:5b:aa:
e4:79:e6:83:4b:26:bd:f1:20:27:a3:3c:dd:56:c7:
5b:5c:2c:88:e4:3b:ab:0b:dd:27:fb:dc:7c:5e:d2:
6d:08:ad:6e:3d:3c:ad:51:19:b0:83:58:9e:75:4d:
b1:1d:83:bd:33:d1:ec:e6:56:79:b0:9a:08:d7:74:
05:81:c7:77:1a:bc:6b:6f:89:6b:b6:0f:fd:5a:48:
d4:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B1:D4:89:44:ED:AA:55:04:FF:E6:B6:34:15:A1:3C:B1:A3:98:6B
X509v3 Authority Key Identifier:
keyid:AA:49:43:18:3B:61:1B:E3:A0:77:53:82:50:94:90:04:8B:0A:D7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qklDGDthG-Ogd1OCUJSQBIsK1zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/r7HUiUTtqlUE_-a2NBWhPLGjmGs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/7bb038-01bc-4d85-9f04-d22274bba713/1/qklDGDthG-Ogd1OCUJSQBIsK1zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.205.160.0/24
Signature Algorithm: sha256WithRSAEncryption
50:9c:89:40:41:b6:4d:2a:13:72:c8:67:40:e0:22:46:89:05:
14:42:d1:8e:39:98:21:f0:fb:fc:b8:26:77:1f:d4:16:23:cb:
ab:af:30:82:d3:d7:65:f2:ed:d3:fd:63:3a:73:0b:71:1b:87:
34:34:7a:0a:11:54:c5:fc:10:35:29:58:68:66:37:f9:3e:8b:
b6:f0:02:19:a5:73:0a:3c:ac:a1:27:18:99:4b:3e:26:ce:5d:
21:34:52:5d:94:dd:8e:0d:e3:e8:3d:39:e3:b2:22:8b:46:bc:
71:26:58:0e:46:59:03:4e:30:9d:4b:96:f2:81:0b:d3:e8:60:
68:be:26:37:ff:46:41:e6:35:97:68:e0:43:cc:ee:f1:f4:f5:
9d:3a:44:be:87:18:b9:5e:40:ac:e5:48:aa:e1:32:cb:36:1e:
4e:e9:78:12:ac:3c:e4:32:9a:33:f0:32:e5:78:a4:3a:b2:6b:
47:71:0e:05:c8:d4:65:a9:37:0c:20:e8:f5:7c:21:e4:82:f0:
92:2f:f4:f0:36:5e:02:ff:69:e1:63:dc:e9:30:77:87:1d:29:
2e:71:66:15:13:36:ea:2a:43:a2:6b:77:7d:0e:99:21:e4:46:
0b:52:79:1e:c0:c9:19:ec:8b:5a:18:6d:4b:00:9d:70:0e:6c:
ee:31:ca:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:41 2024 by rpki-client on console-fra.rpki-client.org