Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/14zV50c91pA00R4XZBMy45ylByo.roa
File: 14zV50c91pA00R4XZBMy45ylByo.roa (raw, json)
Hash identifier: QzOKtKN+Rucy2MXH1lHANXZ7EaT5/fyrHitJNxtnFmo=
Subject key identifier: D7:8C:D5:E7:47:3D:D6:90:34:D1:1E:17:64:13:32:E3:9C:A5:07:2A
Certificate issuer: /CN=64347465bc925c8e756ddfaa609eda02cc52d031
Certificate serial: 018C548F34D55BFF5E7B0BC2D5F04FF578C7
Authority key identifier: 64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/14zV50c91pA00R4XZBMy45ylByo.roa
Signing time: Sun 10 Dec 2023 16:28:40 +0000
ROA not before: Sun 10 Dec 2023 16:28:40 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215978
IP address blocks: 85.114.121.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:54:8f:34:d5:5b:ff:5e:7b:0b:c2:d5:f0:4f:f5:78:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64347465bc925c8e756ddfaa609eda02cc52d031
Validity
Not Before: Dec 10 16:28:40 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d78cd5e7473dd69034d11e17641332e39ca5072a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:19:27:cc:d4:eb:ec:c3:1d:a3:77:da:80:2a:
2a:fd:04:d4:9b:ed:17:75:d1:8a:8e:02:38:76:09:
14:25:ae:47:39:e1:8d:d8:d2:e3:21:9f:ba:5b:e5:
54:c3:8c:52:34:c8:8a:93:a7:fc:bc:9f:54:06:6e:
96:b6:35:81:f0:94:5e:b8:6f:1e:84:57:8e:a2:68:
d3:96:fc:83:ea:96:22:88:b2:5d:16:df:41:27:f6:
c3:0b:da:f0:53:e9:0a:0c:e3:bc:45:c7:74:7f:0f:
a8:cf:6c:f7:7d:26:7b:99:90:04:57:42:8e:f0:4c:
6d:04:d5:bb:e6:f2:01:a8:eb:ce:59:f4:9d:6e:e9:
6b:4d:df:dd:fc:38:09:5d:0c:67:9d:11:ab:a4:91:
bb:e0:6c:c1:56:b3:d0:12:95:cf:3c:fb:05:f0:14:
4a:d9:2f:0a:11:2c:0a:e7:3f:13:eb:17:13:e0:e8:
9b:08:69:ec:90:24:37:92:82:96:1c:0d:ad:03:90:
94:cd:01:78:69:b3:54:88:8a:11:6e:06:dd:8a:a1:
5b:1c:8f:ed:0c:4c:54:e1:cd:93:b3:2a:b7:91:dd:
11:19:81:2e:34:bd:9e:f7:4e:ce:46:1f:5e:78:5e:
73:fe:85:67:98:d8:79:a6:09:e7:b1:92:aa:84:ad:
76:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:8C:D5:E7:47:3D:D6:90:34:D1:1E:17:64:13:32:E3:9C:A5:07:2A
X509v3 Authority Key Identifier:
keyid:64:34:74:65:BC:92:5C:8E:75:6D:DF:AA:60:9E:DA:02:CC:52:D0:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/14zV50c91pA00R4XZBMy45ylByo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/b1ff7b-b766-47c7-be0d-c0a7b7377eab/1/ZDR0ZbySXI51bd-qYJ7aAsxS0DE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.114.121.0/24
Signature Algorithm: sha256WithRSAEncryption
41:bb:22:37:97:68:51:6b:0d:2b:60:27:16:b9:ea:7a:59:d3:
c0:c1:37:e4:97:d0:97:39:a1:fd:87:7a:62:35:a6:be:fe:8a:
79:17:e7:fc:5c:68:db:0a:37:89:a5:0b:34:55:8f:3a:74:69:
19:c6:24:57:d5:15:1b:a2:f2:28:ee:13:a3:f6:b8:93:05:08:
9e:d7:8a:a9:b0:e4:c8:3b:fb:9f:cf:75:a4:3f:a9:d4:fe:a9:
d2:bf:5a:15:65:0b:cd:6e:e0:20:b3:6f:5b:0a:d0:bc:f8:2c:
dc:4e:68:b3:a6:de:01:a4:a0:6e:f9:82:e6:30:f6:20:1d:76:
f2:43:b9:c6:8c:50:10:60:16:05:b1:5e:18:6a:38:20:21:1f:
18:f3:e2:71:31:a8:07:00:68:8c:da:6d:0f:87:3f:1a:a5:7c:
cf:a7:f7:6c:66:0d:92:a8:8e:ec:68:e4:ad:d0:13:01:ec:07:
d5:de:7e:31:97:fd:c9:1f:2e:a1:b3:df:bc:2d:a6:d5:2f:9d:
2d:0c:33:b7:7e:4c:71:55:71:27:f8:64:c8:ee:3d:4c:55:a0:
0f:b8:ef:26:f7:d6:25:75:e1:13:ae:99:c7:94:41:d8:23:9a:
7d:c1:d3:aa:31:db:7b:ed:ca:26:59:98:aa:dc:14:92:12:e5:
92:77:c7:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:31:18 2024 by rpki-client on console-fra.rpki-client.org